Re: Need help securing SFTP inbound (virtual root equivalent)

• Previous message: Gary R. Hook: "Re: AIX shared libraries and lazyloading."
• In reply to: ron: "Need help securing SFTP inbound (virtual root equivalent)"
• Next in thread: Erik C.J. Laan: "Re: Need help securing SFTP inbound (virtual root equivalent)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Wed, 5 May 2004 18:15:26 +0200

"ron" <rarms@adelphia.net> schreef in bericht
news:903c07a0.0405050546.167f8f1b@posting.google.com...
> Installed Openssl and ssh and have setup public key authentication.
> Looking to automate an inbound file transfer using SFTP. Everything
> is working fine, however, I need to lock the user down to a specific
> directory, basically a restricted user account, or virtual root.
>
> Does SCP/SFTP use ftp where I could setup anonymous ftp maybe. I
> tried a restricted shell, but that broke the public key
authentication
> and this needs to be an automated process.
>
> Basically the other vendor needs to send a daily file, and I want to
> make sure they can't run around on the system from the SFTP shell as
> some directory permissions are open.
>
> Currently running AIX 5.2 with openssl 0.9.6m and openssh3.6.1p2_52
> with all the native AIX utilities such as FTP. Can the equivalent
of
> virtural root be setup for sftp or do I need to load a third party
ftp
> utility or something to accomplish what I'd like.
>
> Thanks for your input,
> Ron

Ron,
Use a SSH-agent (program that caches the key, recommended method) or a
plaintext key or a passphraseless key (less secure) or trusted host
authentication.
Jan Willem

• Previous message: Gary R. Hook: "Re: AIX shared libraries and lazyloading."
• In reply to: ron: "Need help securing SFTP inbound (virtual root equivalent)"
• Next in thread: Erik C.J. Laan: "Re: Need help securing SFTP inbound (virtual root equivalent)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]