How to create SFTP-only user accounts to kill SSH access
Problem Statement
We wanted to create SFTP-only user accounts that cannot SSH into the server to run commands. There is no built-in approach to this problem that we can find so we created a simple shell script to solve it. Here we will discuss how it works.
Step 1: Create a shell script to run as the user’s shell
Create a shell script called /sbin/sftp-only as follows:
#!/bin/sh if [ "$*" != "-c /usr/libexec/sftp-server" ] then echo “Sorry, ssh access not allowed.” exit fi exec /usr/libexec/sftp-server
Step 2: Edit user accounts to use this shell script as user’s shell
Modify user accounts using usermod to set the shell to /sbin/sftp-only so that when user tries to SSH to the server, the shell script will display the “Sorry, ssh access not allowed.” message. And when the user tries to connect to the server via a SFTP client, the shell script will get executed and it will start the SFTP server for the user.
Fix write access problem for Mac OS X 10.6.x to Samba share on FreeBSD or Linux
Nothing is more irritating than not being able to copy the files you want to a share.
This problem has been bugging me since the release of Mac OS X 10.6.
The fix seems to be quite simple, I added the following to my global block in smb.conf:
[global] dos charset = UTF8 unix charset = UTF8 display charset = UTF8 unix extensions = no
Now we can work without errors again. 
Ps. Don't forget to unmount and re-mount your share before the changes take effect.
Donations
Follow Me!
Categories
- BSD / Linux / Unix (76)
- Fun (1)
- General (4)
- How to (95)
- Lovebirds (6)
- Mac OS X (24)
- Webdevelopment (31)
Random Quote
doe_wat_ik_wil($hiermee) { #FIXME }