Re: Non-shell accounts and scp/sftp

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



On Mon, 11 Dec 2023, Philip Prindeville wrote:

> 
> 
> > On Dec 10, 2023, at 10:41 PM, Damien Miller <djm@xxxxxxxxxxx> wrote:
> > 
> > On Fri, 8 Dec 2023, Darren Tucker wrote:
> > 
> >> On Fri, 8 Dec 2023 at 07:39, Philip Prindeville
> >> <philipp_subx@xxxxxxxxxxxxxxxxxxxxx> wrote:
> >> [...]
> >>> Problem is that if their default shell isn't sh, ash, dash, bash, zsh, etc. then things break.
> >>> Is there a workaround to allow scp/sftp to continue to work even for non-shell accounts?
> >> 
> >> sftp should work regardless of the user's shell since it is invoked as
> >> a ssh subsystem which is independent of the shell channel.
> > 
> > I'm pretty sure sshd executes subsystems using the user's configured
> > shell.
> > 
> > You should be able to use "Subsystem sftp internal-sftp" to skip the
> > shell though.
> > 
> > -d
> 
> 
> I configured the server for "Subsystem sftp sftp-internal" but still not working:
> 
> 
> pprindeville@ubuntu-ng:~/work/tnsr-pkgs$ scp -s -vvvv Makefile pprindeville2@172.21.12.17:/tmp/

yeah, because you're 1) using scp and not sftp and 2) using an old (OpenSSH
<9.0) version of scp that doesn't use the SFTP protocol under the hood. 
protocol. That changed in OpenSSH 9.0.

> OpenSSH_8.9p1 Ubuntu-3ubuntu0.4, OpenSSL 3.0.2 15 Mar 2022
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev




[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux