Write only directory.
Frank Staals
frank at fstaals.net
Mon May 7 20:34:25 UTC 2012
Paul Halliday <paul.halliday at gmail.com> writes:
> On Mon, May 7, 2012 at 3:49 PM, Randal L. Schwartz
> <merlyn at stonehenge.com> wrote:
>>>>>>> "Paul" == Paul Halliday <paul.halliday at gmail.com> writes:
>>
>> Paul> Is it possible to let a user write to a directory but not access the
>> Paul> file after they write it?
>>
>> Paul> The file is being transferred via scp and after the transfer I don't
>> Paul> want them to be able to re-fetch or even get a directory listing.
>>
>> scp is via ssh. with ssh, they get a complete command line. how are
>> you going to prevent *that*?
>
> The users shell is /bin/false
>
> and sshd is setup like:
>
> Match User a_user
> ChrootDirectory %h
> ForceCommand internal-sftp
> AllowTcpForwarding no
There is also shells/scponly for this kind of thing. As for the file permissions
question: not sure how to tackle that.
--
- Frank
More information about the freebsd-questions
mailing list