Use rssh

home

http://www.cyberciti.biz/tips/rhel-centos-linux-install-configure-rssh-shell.html

Supported operations using rssh
scp - Secure file copy sftp - Secure FTP cvs - Concurrent Versions System ~ you can easily retrieve old versions to see exactly which change caused the bug rsync - Backup and sync file system rdist - Backup / RDist program maintains identical copies of files on multiple hosts.

Install rssh
Visit Dag's repo to grab rssh package # cd /tmp # wget http://dag.wieers.com/rpm/packages/rssh/rssh-2.3.2-1.2.el5.rf.i386.rpm # rpm -ivh rssh-2.3.2-1.2.el5.rf.i386.rpm

Make sure you build binary with rsync support.

rssh configuration file
Default configuration file is located at /etc/rssh.conf (FreeBSD - /usr/local/etc/rssh.conf) Default rssh binary location /usr/bin/rssh (FreeBSD - /usr/local/bin/rssh) Default port none - ( openssh 22 port used - rssh is shell with security features)

How to: Configure User Account to Use a Restricted Shell ( rssh )

http://www.cyberciti.biz/tips/linux-unix-restrict-shell-access-with-rssh.html

Create a new user with /usr/bin/rssh

Type the following command to create a new user called didi:
# useradd -m -d /home/didi -s /usr/bin/rssh didi # passwd didi

Change existing user shell to /usr/bin/rssh
# usermod -s /usr/bin/rssh old-user-name # usermod -s /usr/bin/rssh vivek # chsh -s /usr/bin/rssh vivek

Try login via ssh or sftp
$ sftp didi@my.backup.server.com

Grant access to sftp and scp for all users

allowscp
allowsftp

Save and close the file. rssh reads configuration file on fly (there is no rssh service exists). Now user should able to run scp and sftp commands, but no shell access is granted:
$ scp /path/to/file didi@my.backup.server.com:/