1. #Subsystem sftp /usr/lib/openssh/sftp-server
3. # Set this to 'yes' to enable PAM authentication, account processing,
4. # and session processing. If this is enabled, PAM authentication will
5. # be allowed through the ChallengeResponseAuthentication and
6. # PasswordAuthentication. Depending on your PAM configuration,
7. # PAM authentication via ChallengeResponseAuthentication may bypass
8. # the setting of "PermitRootLogin without-password".
9. # If you just want the PAM account and session checks to run without
10. # PAM authentication, then enable this but set PasswordAuthentication
11. # and ChallengeResponseAuthentication to 'no'.
12. UsePAM yes
14. Subsystem sftp internal-sftp
15. Match Group sftponly
16. ChrootDirectory %h
17. ForceCommand internal-sftp
18. AllowTcpForwarding no

#Subsystem sftp /usr/lib/openssh/sftp-server # Set this to 'yes' to enable PAM authentication, account processing, # and session processing. If this is enabled, PAM authentication will # be allowed through the ChallengeResponseAuthentication and # PasswordAuthentication. Depending on your PAM configuration, # PAM authentication via ChallengeResponseAuthentication may bypass # the setting of "PermitRootLogin without-password". # If you just want the PAM account and session checks to run without # PAM authentication, then enable this but set PasswordAuthentication # and ChallengeResponseAuthentication to 'no'. UsePAM yes Subsystem sftp internal-sftp Match Group sftponly ChrootDirectory %h ForceCommand internal-sftp AllowTcpForwarding no

Impressum
Quelltext