Lars Reimann
2010-May-27 16:34 UTC
Limit number of simultaneous sftp-server connections from same ip
Hello all, I would like to ask a short question about the configuration capabilities of sshd / sftp-server. I want to limit the number of connections (or instances) to an sftp-server a user can spawn from the same ip address. The reason is that multiple connections overload by box (connection). My first idea was to move control of sftp-server to xinetd. There I could maintain control of such things. However, since sftp-server depends on a parent sshd, I was not successful. Maybe there is a way? While limiting the use of sftp-server I want to retain _full_ access to normal (shell-like) connections over sshd without limits. Are such things even possible or should I switch to FTP w/ SSL? By the way, how can I disable sftp-server completely (e.g. if I want to work fast on the net and not allow any file transfers over sftp-server)? Thanks for any replies, LR ps. openssh version is: latest.
Peter Stuge
2010-May-27 19:20 UTC
Limit number of simultaneous sftp-server connections from same ip
Lars Reimann wrote:> I want to limit the number of connections (or instances) to an > sftp-server a user can spawn from the same ip address.Wouldn't a simple wrapper (as opposed to xinetd) work?> sftp-server depends on a parent sshdHow is that, exactly?> While limiting the use of sftp-server I want to retain _full_ > access to normal (shell-like) connections over sshd without limits.Add the wrapper to the subsystem directive in sshd_config.> By the way, how can I disable sftp-server completelyRemove the subsystem directive from sshd_config. //Peter
Apparently Analagous Threads
- psftp (win32 sftp client) wont connect to external ssh/sftp box from private ip shorewall protected lan
- Cannot get sftp transfers to log in the systemd journal
- [Q] SSH have two entries on /var/log/secure on CENTOS 4.4???
- SFTP &
- [Bug 761] sftp not exiting in batch mode