sftp with no login
Lets say I have a server with a few virtual domains on one box. I would like to setup sftp so when someone logs in with a particular account they are chrooted within their virtual domain (ie /var/www/domain.com ).
Appears easy enough but I dont want them to be able to log in via ssh. Is this a oxymoron (log in with sftp but not ssh)?
Also, if possible I would like to limit as many of the default files (.font, .local, .kde etc) copied over just to keep things clean in the event there are multiple users for this one domain?