From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1P48hf-0006qK-3d for garchives@archives.gentoo.org; Fri, 08 Oct 2010 08:53:23 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 25B6DE078C; Fri, 8 Oct 2010 08:53:15 +0000 (UTC) Received: from mail.digimed.co.uk (82-69-83-178.dsl.in-addr.zen.co.uk [82.69.83.178]) by pigeon.gentoo.org (Postfix) with ESMTP id E6882E078C for ; Fri, 8 Oct 2010 08:53:14 +0000 (UTC) Received: from zaphod.digimed.co.uk (zaphod.digimed.co.uk [192.168.1.1]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by mail.digimed.co.uk (Postfix) with ESMTPSA id 470EF6CD401 for ; Fri, 8 Oct 2010 09:53:14 +0100 (BST) Date: Fri, 8 Oct 2010 09:53:13 +0100 From: Neil Bothwick To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Copying a file via ssh with no password, keeping the system safe Message-ID: <20101008095313.29df4fac@zaphod.digimed.co.uk> In-Reply-To: <480216.76297.qm@web51905.mail.re2.yahoo.com> References: <20101007184549.65756vlexbx2u7sw@momessonet.ath.cx> <4CAE141F.7040904@alyf.net> <20101007235946.82345qfl96r2s7i8@momessonet.ath.cx> <5682.1286490075@ccs.covici.com> <480216.76297.qm@web51905.mail.re2.yahoo.com> Organization: Digital Media Production X-Mailer: Claws Mail 3.7.6cvs54 (GTK+ 2.20.1; x86_64-pc-linux-gnu) X-GPG-Fingerprint: 7260 0F33 97EC 2F1E 7667 FE37 BA6E 1A97 4375 1903 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=PGP-SHA1; boundary="Sig_/z_NpNx16OcjU_jUj./sm+ME"; protocol="application/pgp-signature" X-Archives-Salt: 96dd9520-afe1-4fb4-8591-10060644b015 X-Archives-Hash: 3694b68088447fb8b27ed74aed697ef7 --Sig_/z_NpNx16OcjU_jUj./sm+ME Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable On Thu, 7 Oct 2010 15:38:24 -0700 (PDT), BRM wrote: > > I think for ssh to work the user needs a valid shell, not nologin, so > > you can't do both of those suggestions.] =20 >=20 > Wouldn't a shell-less account per just provide the ability to use > SFTP/SCP? Those don't require a shell to operate. Yes, and also things like rsync. --=20 Neil Bothwick In plumbing, a straight flush is better than a full house. --Sig_/z_NpNx16OcjU_jUj./sm+ME Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (GNU/Linux) iEYEARECAAYFAkyu2/kACgkQum4al0N1GQP6cgCfVgpDTpXl6Ya6HMocqmmHcw07 tDQAoMnFJ8z6vwmg2rpJFPTVHCG/pv7j =ZJNU -----END PGP SIGNATURE----- --Sig_/z_NpNx16OcjU_jUj./sm+ME--