I let my mom use scp to copy digital pictures to her account on my
server. Then I build a nice HTML index of pictures and thumnbnails
from cron.

Here's the problem: I am very concerned that her password would become
compromised. She uses an operating system called "Microsoft Windows
ME" and frequently gets infected by viruses.

So, I would like to severely limit her account privileges so that
hackers who steal her SSH passwords cannot crack my server. I want to
allow her to upload pictures, under her public_html, but no more (ie
no shell use, etc).

What is the "right" approach here?

thanks

i

Ignoramus18364 <ignoramus18364@NOSPAM.18364.invalid> writes:

> I let my mom use scp to copy digital pictures to her account on my
> server. Then I build a nice HTML index of pictures and thumnbnails
> from cron.
>
> Here's the problem: I am very concerned that her password would become
> compromised. She uses an operating system called "Microsoft Windows
> ME" and frequently gets infected by viruses.
>
> So, I would like to severely limit her account privileges so that
> hackers who steal her SSH passwords cannot crack my server. I want to
> allow her to upload pictures, under her public_html, but no more (ie
> no shell use, etc).
>
> What is the "right" approach here?

http://www.snailbook.com/faq/restricted-scp.auto.html



--
Todd H.
http://www.toddh.net/

Ignoramus18364 <ignoramus18364@NOSPAM.18364.invalid> wrote:

> I let my mom use scp to copy digital pictures to her account on my
> server. Then I build a nice HTML index of pictures and thumnbnails
> from cron.
>
> Here's the problem: I am very concerned that her password would become
> compromised. She uses an operating system called "Microsoft Windows
> ME" and frequently gets infected by viruses.
>
> So, I would like to severely limit her account privileges so that
> hackers who steal her SSH passwords cannot crack my server. I want to
> allow her to upload pictures, under her public_html, but no more (ie
> no shell use, etc).
>
> What is the "right" approach here?

google scp_only

On 17 Aug, 00:29, Anonymous <x...@hermetix.org> wrote:
> Ignoramus18364 <ignoramus18...@NOSPAM.18364.invalid> wrote:
> > I let my mom use scp to copy digital pictures to her account on my
> > server. Then I build a nice HTML index of pictures and thumnbnails
> > from cron.
>
> > Here's the problem: I am very concerned that her password would become
> > compromised. She uses an operating system called "Microsoft Windows
> > ME" and frequently gets infected by viruses.
>
> > So, I would like to severely limit her account privileges so that
> > hackers who steal her SSH passwords cannot crack my server. I want to
> > allow her to upload pictures, under her public_html, but no more (ie
> > no shell use, etc).
>
> > What is the "right" approach here?
>
> google scp_only

Google "WebDAV over HTTPS." You don't want SCP for this.

On 17 Aug, 00:29, Anonymous <x...@hermetix.org> wrote:
> Ignoramus18364 <ignoramus18...@NOSPAM.18364.invalid> wrote:
> > I let my mom use scp to copy digital pictures to her account on my
> > server. Then I build a nice HTML index of pictures and thumnbnails
> > from cron.
>
> > Here's the problem: I am very concerned that her password would become
> > compromised. She uses an operating system called "Microsoft Windows
> > ME" and frequently gets infected by viruses.
>
> > So, I would like to severely limit her account privileges so that
> > hackers who steal her SSH passwords cannot crack my server. I want to
> > allow her to upload pictures, under her public_html, but no more (ie
> > no shell use, etc).
>
> > What is the "right" approach here?
>
> google scp_only

Google "WebDAV over HTTPS." You don't want SCP for this.