|
|
| Applications |
| Mailing Lists |
| Miscellaneous |
| Operating Systems |
| Programming |
RE: restricted users
Date: Wed Feb 26 2003 - 21:10:09 EST
Hong,
Here's an entry from the manpage.
AllowUsers
This keyword can be followed by a list of user name patterns, separated by spaces. If specified, login is allowed only for users names that match one of the patterns. `*' and `'? can be used as wildcards in the patterns. Only user names are valid; a numerical user ID is not recognized. By default, login is allowed for all users. If the pattern takes the form USER@HOST then USER and HOST are separately checked, restricting logins to particular users from particular hosts.
So,
AllowUsers jamesr
in the config file *should* (seems to on Debian) allow jamesr and no-one else to log in via ssh.
Cheers,
Jamie
-- James Riden / james.riden@xtra.co.nz / jamesr@security-solutions.co.nz http://www.security-solutions.co.nz/ -----Original Message----- From: Hong Tian [mailto:htian@ias.edu] Sent: Thursday, 27 February 2003 1:51 p.m. To: 'secureshell@securityfocus.com' Subject: FW: restricted users Jamie, On my RedHat 7.3, there is no manual entry for sshd_config. But I try AllowUsers and DenyUsers. It works good. The question now is that I have to deny more than 200 users and allow 10 users. I can't put so many users names on deny lists in sshd_config. I try to deny everyone then allow someone. But I don't know how to deny all. I try the followings, no one can deny all: DenyUsers all => not works DenyUsers ALL => not works DenyUsers everyone => not works DenyUsers user1 => works! AllowUsers user2 user3 user4 => works! Do you know how to use DenyUsers to deny everyone? Thanks, HongReceived on Wed Feb 26 21:26:58 2003
This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:55 EDT
|
Contact Us Legal Notices Order Services Online Pantek Home Privacy Policy IT news Site Map Pantek Library |