Robert, Thank you for your explanation, as you say easy to
get confused. If I can get the Chroot jail for SFTP to work
that's probably my best bet. Meanwhile I'd like to get
Proftpd working. I assume that it will work alongside
Openssh (SFTP)? I have CoreFTP lite, which is free, which
according to your guidance should be a suitable client for
Proftpd. Tried with AUTH SSL ticked but it wouldn't
connect; got following message "Can't establish
connection --> 192.168.1.77:21  Fri Feb 23 19:43:16 2007
(10054-38). An existing connection was forcibly closed by
the remote host. Any thoughts. I have set TLSRequired on
and TLSVerifyClient off and just entered username and
password. The username was set via the linksys web gui and
have also tried adding /::/share/flash/data/steve to
/etc/passwd file. Contrary, to comments in the guide these
changes remain after reboot without doing anything!! Should
I also create /home/steve? Any help would be appreciated.
Regards
Steve
----- Original Message -----
From: Robert Hammond
To: nslu2-general@yahoogroups.com
Sent: Thursday, February 22, 2007 9:05 PM
Subject: Re: [nslu2-general] Re: Any experience with
chroot jail for SFTP with unslung6?
In message <BAY102-DAV16FE192132666FC55842DA918F0phx.gbl>, steve pegg
hotmail <SJP700HOTMAIL.COM> writes
>Thanks Robert, on closer inspection I see the sftp
server line is also
>uncommented. I tried 644 but, still didn't work. In
desperation I
>deleted the .ssh directory and built again from telnet
and this time it
>works -at last! I can't spot the difference but it
works. Last time I
>accessed root using WinSCP and made some changes in
this environment,
>is that a problem? Moving on to my real aim access by
selected users
>to restricted home directory using authentication
/encription. I have
>installed Proftpd and configured the proftpd-conf file
and configured
>for SSL/TLS -made error with email address hope won't
cause problem.
>Signed server key etc. However, when I try to access
using WinSCP set
>to SFTP and enter user name and password I get
authentication failed!
>I'm new to sftp, does it use a public key like
openssh? what is the
>certificate all about? What does the client need to
get access other
>than the username/password? Any help would be
appreciated.
>
I think that you may be getting confused between FTP/SSL
and SFTP (also
there is FTPS).
Proftpd can be configured for FTP/SSL i.e. is an FTP
server that can be
configured to encript it's data transmissions using SSL.
There are a
number of Windows clients that support this such as
smartftp and I think
WsFTP. Note that Proftpd does not support Implicit mode
i.e. called
FTPS, (FTPS also uses SSL but there is a difference
between this and
FTP/SSL, all very confusing).
For just up and down loading files this works just fine.
SFTP is different, FTP over SSH, it's just another way of
encrypting
the data transfer. Most Windows users use Putty and WinSCP
as clients.
It's an ideal program combination for configuring the
NSLU2.
.
--
Robert Hammond
PGP:0x154144DA
[Non-text portions of this message have been removed]
------------------------ Yahoo! Groups Sponsor
--------------------~-->
Check out the new improvements in Yahoo! Groups email.
http://us.click.yahoo.com/4It09A/fOaOAA/yQLSAA/CFFolB/TM
------------------------------------------------------------
--------~->
Yahoo! Groups - Join or create groups, clubs, forums
& communities. Links
<*> To visit your group on the web, go to:
http://g
roups.yahoo.com/group/nslu2-general/
<*> Your email settings:
Individual Email | Traditional
<*> To change settings online go to:
http
://groups.yahoo.com/group/nslu2-general/join
(Yahoo! ID required)
<*> To change settings via email:
mailto:nslu2-general-digest@yahoogroups.com
mailto:nslu2-general-fullfeatured@yahoogroups.com
<*> To unsubscribe from this group, send an email to:
nslu2-general-unsubscribe@yahoogroups.com
<*> Your use of Yahoo! Groups - Join or create groups,
clubs, forums & communities. is subject to:
http://docs.yahoo.c
om/info/terms/
|
