How to limit to a single SFTP session only?

Advertisement

Kirk Wolf
Joined:
Posts:
5

How to limit to a single SFTP session only?

We have a SFTP server where we need to limit a given WinSCP user to a single ssh/sftp session.
Using WinSCP 4.1.9 Build 416, it seems to be impossible to prevent WinSCP from starting a second sftp session to the server for transfers. Is there a way around this?

Thanks,
Kirk Wolf

Reply with quote

Advertisement

Kirk Wolf

BTW - if we can resolve this issue, we can probably get WinSCP to work with z/OS (MVS) including not only the z/OS Unix filesystem but also MVS datasets via SSH/SFTP.

Reply with quote

martin
Site Admin
martin avatar
Joined:
Posts:
40,476
Location:
Prague, Czechia

Re: How to limit to a single SFTP session only?

Kirk Wolf wrote:

We have a SFTP server where we need to limit a given WinSCP user to a single ssh/sftp session.
Using WinSCP 4.1.9 Build 416, it seems to be impossible to prevent WinSCP from starting a second sftp session to the server for transfers. Is there a way around this?
What would prevent user to start another WinSCP instance? Or using another client?

You have to place such restrictions on the server side.

Reply with quote

Advertisement

Kirk Wolf
Joined:
Posts:
5

Re: How to limit to a single SFTP session only?

martin wrote:

Kirk Wolf wrote:

We have a SFTP server where we need to limit a given WinSCP user to a single ssh/sftp session.
Using WinSCP 4.1.9 Build 416, it seems to be impossible to prevent WinSCP from starting a second sftp session to the server for transfers. Is there a way around this?
What would prevent user to start another WinSCP instance? Or using another client?

You have to place such restrictions on the server side.

The problem is this:

When using WinSCP to a z/OS server, there are a bunch of z/OS-specific file transfer settings that are outside the SFTP spec. With WinSCP, you can set these options by creating (or renaming) files in a pseudo directory (/+). It is no problem doing this from WinSCP.

The problem is that once you have set those options, they affect only that sftp session. So if WinSCP insists on starting a new sftp session for doing file transfers, then the options are lost.

This is why we would like to have a single WinSCP "session" only start a single sftp session to z/OS.

Thanks,
Kirk Wolf

Reply with quote

martin
Site Admin
martin avatar

Re: How to limit to a single SFTP session only?

OK, I see. But unfortunately, WinSCP does not support that any more.

Reply with quote

Advertisement

You can post new topics in this forum