Hosting Provided By

RE: DenyUsers syntax

From: Jon Pastore <jpastore(at)idetech.net>
Date: Fri Apr 25 2003 - 15:33:06 EDT

Couldn't you just use the /etc/hosts.deny file? Or better yet iptables rules?

With iptables (as with hosts.allow and deny but I think iptables is better since it works on a lower level) you can allow all ip addresses and deny just a few a networks...then your user rules would get used on anything that got passed iptables...

Jon Pastore, President
IDE Tech, Inc.
(954) 360-0393 Office
(954) 428-0442 Fax

-----Original Message-----
From: Y.E. Tan [mailto:yetan79@yahoo.com] Sent: Friday, April 25, 2003 4:57 AM
To: secureshell@securityfocus.com
Subject: DenyUsers syntax

Hi,

How do I deny a user coming in from specific network? I would like to allow a user to access only from the office network but not from other network. For this reason, I would need to negate the IP address of my office network, correct? I have tried the following setting but it doesn't work.

DenyUsers       foobar@!192\.168\.100.*
DenyUsers       ^[foobar@192\.168\.100.*]

__________________________________________________

Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo http://search.yahoo.com Received on Sat Apr 26 17:20:00 2003

This message: [ Message body ]
Next message: Jon Pastore: "RE: auto save password"
Previous message: Jennifer Fountain: "public/private keys on openssh for windows"
In reply to: Y.E. Tan: "DenyUsers syntax"
Next in thread: bidibulle: "Re: DenyUsers syntax"
Reply: Jon Pastore: "RE: auto save password"
Reply: bidibulle: "Re: DenyUsers syntax"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:58 EDT