nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: FTP with authentication to RADIUS

From: woods () weird com (Greg A. Woods)
Date: Fri, 5 Jan 2001 17:04:59 -0500 (EST)

[ On Friday, January 5, 2001 at 15:34:59 (-0500), Steve Sobol wrote: ]

Subject: Re: FTP with authentication to RADIUS

SCP works well, and actually, the usage isn't that hard to figure out:

scp user@host:/path/to/file user@host:/path/to/file 


Indeed!  I don't know what could be any easier.  FTP is terribly arcane!


But it requires an active shell account on both ends.


With the basic configuration that's true -- but SSH can be configured in
such a way that only one "command" can be run, and with a minor patch to
sshd it's possible to set up file transfers only and to not ever allow
general shell access.  I've done this with rsync so people can update
their web sites on production machines while having FTP access only on a
less important system, and with a wee bit of innovation it'll work for
plain scp too.

-- 
                                                        Greg A. Woods

+1 416 218-0098      VE3TCP      <gwoods () acm org>      <robohack!woods>
Planix, Inc. <woods () planix com>; Secrets of the Weird <woods () weird com>
Previous By Date Next
Previous By Thread Next

Current thread: