Grant Peel wrote: > Is there a quick - secure way to allow the sshd sFTP subsystem to allows > sftp connections without allowing shell accounts? Create the account and set its shell to /sbin/nologin. You can safely add that to /etc/shells: it does its name and just prints a terse message before booting the user if he tries to connect via vanilla SSH.