similar to: Restrict commands available in an SFTP session

https://bugzilla.mindrot.org/show_bug.cgi?id=1979 Bug #: 1979 Summary: Enhancement patch: Restrict sftp-server to basic commands, by user or group Classification: Unclassified Product: Portable OpenSSH Version: 5.9p1 Platform: All OS/Version: All Status: NEW Severity: enhancement

Hi, We do a lot of automated file transfers with SFTP, and found this small patch very helpful. The main effect is to tell the underlying SSH client that it's operating in batch mode. Patch is against 3.9p1. Thanks, Jeremy Monin Sysadmin and open-source developer diff -ur openssh-3.9p1-orig\sftp.c openssh-3.9p1\sftp.c --- openssh-3.9p1-orig\sftp.c Sat Jul 17 02:12:08 2004 +++

Hai - kann mir jemand sagen, wie ich den Modalwert in R berechne?! IRgendwie finde ich den Befehl nicht.... greetz und herzlichen Dank Sonja

Nico Kadel-Garcia wrote: > in places where I do not want OpenSSH server's tendency ro let > people with access look around the rest of the filesystem. If you want users to be able to use *only* SFTP then set a ChrootDirectory and ForceCommand internal-sftp in a Match for the user in sshd_config. //Peter

Hi, This is either a query or a feature request. I have a system where sftp users are chrooted using scponly, which while requiring much more setup than OpenSSH's internal-sftp method, has the useful feature of allowing an initial chroot to a subdirectory, typically the one used for file exchange. I've searched for a way to do the same thing with OpenSSH. So far haven't found it. If

On Tue, May 5, 2020 at 4:31 AM Peter Stuge <peter at stuge.se> wrote: > > Matthieu Hautreux wrote: > > The change proposed by Cyril in sftp is a very pragmatic approach to > > deal with parallelism at the file transfer level. It leverages the > > already existing sftp protocol and its capability to write/read file > > content at specified offsets. This enables

Hi, I've encountered a strange issue, difficult to reproduce for now. I'm searching from where it comes. Here are some facts: - all programs are compiled from sources using gcc 2.95.3/glibc2.2.x and run on a i686 LFS linux system. - rsync doesn't run above ssl. - using rsync 2.5.4 as server to backup mailboxes on another computer. rsync daemon is launched from xinetd, rsync

Le 10/04/2020 ? 01:55, Darren Tucker a ?crit?: > On Thu, 9 Apr 2020 at 01:34, Cyril Servant <cyril.servant at gmail.com> wrote: > [...] >> Each of our front >> nodes has an outgoing bandwidth limit (let's say 1Gb/s each, generally more >> limited by the CPU than by the network bandwidth), > You might also want to experiment with the Ciphers and MACs since >

Hi, I wonder if sftp-server could encrypt files before writing to disc. This would make sshd a poor man's alternative for an encrypting filesystem on a server. How to get the crypto key from a client to be used by sftp-server? Upload the key to a /well/defined/key.pem virtual location? Or can you access the ssh client certificate from sftp-server? Can sftp-server call a filter? Or would one

Hai, Great to hear i could help one with a gluster problem :-) And ofcourse your allowed to keep us up2date. So yes, plese, by doing that and sharing the configs it might help other people. Greetz, Louis > -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Benedikt Kale? via samba > Verzonden: woensdag 28 augustus 2019 17:37

I did not find any clues when 'googling' and could not find any search options on the archives. So, your answer does really not help. If you can help me with some reference, then it is highly appreciated. I would like to understand the rationaly. Not why 'it is just like it is'. No, why. What is the reasoning behind it. I speak Dutch, English, some Japanese and C. So, I can

Hi again, regarding my post "plenty of vacuuuming process" a "gluster volume heal" seems to improve the situation. But I still have a strange problem: Sometimes a user don't have permissions to? a restricted folder when h connects to a share or logs in at a windows client. In some times all permissions are granted. If the user creates a file, the user and group is

Hi Martin, > Does a useful ps command (e.g. ps auxww) show smbd running? What do > the smbd logs say? no, root at ctdb-<HOST>:~# ps auxwww | grep smbd root     13192  0.0  0.0  12780   940 pts/0    S+   13:05   0:00 grep smbd There is no smbd, nmbd is running. Ahh, but the log says: [2019/05/16 11:26:38.702593,  0] ../source3/smbd/server.c:1519(smbd_claim_version)  

Hi ya'll- I'm having this weird problem with the new version of OpenSSH compiled on Solaris, version 4.3p2. SSH and SSHD work fine, all is well. But when I try to sftp or scp something I get this: % sftp bullitt Connecting to bullitt... command-line: line 0: Bad configuration option: PermitLocalCommand Connection closed % "PermitLocalCommand" doesn't appear in

I am currently running OpenSSH 4.3. I would like to restrict the commands SFTP users can run to a list. For example, "put, get, mput, mget, mkdir, rmdir, and rm". Is this possible with OpenSSH? I have seen many posts concerning chroot'ing and the Forced Command option, but none of these solution address restricting the commands actually available inside the SFTP subsystem. Any

https://bugzilla.mindrot.org/show_bug.cgi?id=1979 Damien Miller <djm at mindrot.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED CC| |djm at mindrot.org Resolution|---

Hi OpenSSH developers, I'm using OpenSSH on a daily basis and I'm very pleased with the work you've done. I am contributing to some Open Source software hosted at Savannah https://savannah.nongnu.org/projects/tsp and we recently hit some sftp unexpected behavior: https://savannah.gnu.org/support/?105838 when using chmod sftp client command it appears that setuid / setgid bits are

Hi, I have a ctdb cluster with 3 nodes and 3 glusterfs (version 6) nodes up and running. I observe plenty of these situations: A connected Windows-10 client doesn't react anymore. I use forder redirections.? - Smbstatus shows up some (auth in progress) processes. - In the logs of a ctdb node I get: Aug 23 10:12:29 ctdb-1 ctdbd[2167]: Ending traverse on DB locking.tdb (id 568831), records

Is it possible to have a simple table but without using <th> and the long ----- ? Sonja

Hi Tim, What we did: setting "log level = 10" in smb.conf then exdcute the following command: ------ samba-tool domain backup online --server=addc3 --targetdir=/root -k yes >backup.txt 2>&1 ------ Then we grep for the message with "call_nt_transact_query_security_desc" ------ grep call_nt_transact_query_security_desc backup.txt ------ And got nothing :-( still the