rssh - restricted shell for scp/sftp

rssh is a restricted shell for use with OpenSSH, allowing only scp and/or sftp. It now also includes support for rdist, rsync, and cvs. For example, if you have a server which you only want to allow users to copy files off of via scp, without providing shell access, you can use rssh to do that. For a list of platforms on which rssh is known to work, see the Platform Support Page.

Before installing rssh, please read the FAQ! See link at left.

Important Security Notice:

There are some potentially serious security implications involved with running rssh. Please be sure to read about them in the security section.

A note about versions: The v2.3.4 release is the only release anyone should be running at this point, regardless of what version you were running before and why you were running that version. If you're not running v2.3.4, please download it now.

News and updates

Nov 27, 2012

rssh v2.3.4 released today!

Security Notice:

A couple of issues have been discovered with command line parsing and validation, which allow rssh to be bypassed.

CVE-2012-3478: Improper filtering of environment variables
CVE-2012-2252: Improper filtering of rsync command line

Please download the latest tarball or packages today!

April 11, 2003

New rssh mailing list!
I've set up a project for rssh on Sourceforge, and created the new rssh-discuss mailing list. This is where you can post your questions about building, configuring, and running rssh.

Please do not use the bug tracker or patch manager on the sourceforge website! I do not monitor these, so posting patches or bug reports there is a waste of your time. Please only use the mailing list for all forms of communication regarding rssh.