Advertisement
Help Keep Boards Alive. Support us by going ad free today. See here: https://subscriptions.boards.ie/.
If we do not hit our goal we will be forced to close the site.

Current status: https://keepboardsalive.com/

Annual subs are best for most impact. If you are still undecided on going Ad Free - you can also donate using the Paypal Donate option. All contribution helps. Thank you.
https://www.boards.ie/group/1878-subscribers-forum

Private Group for paid up members of Boards.ie. Join the club.

locking down ssh (vpn) account

  • 21-08-2005 09:17PM
    #1
    voxpop
    Registered Users, Registered Users 2 Posts: 2,800 ✭✭✭


    Im currently using ssh to our firewall as a simple mans vpn. Unfortunately I cant figure out how to lock down the ssh user to either no logon (ideal) only port forwarding or restrict the user to its own home dir and nothing else. I dont want the vpn users messing with the linux box at all. Anybody got any idea ?


Comments

  • #2
    Red Alert
    Hosted Moderators Posts: 7,486 ✭✭✭Red Alert


    There is an SSH-only shell but i can't remember the name of it - google is your friend.

    Alternatively set their shell to something like tetris.


  • #3
    randomhuman
    Registered Users, Registered Users 2 Posts: 88 ✭✭randomhuman


    Looks like the -N option might do what you want.


  • #4
    voxpop
    Registered Users, Registered Users 2 Posts: 2,800 ✭✭✭voxpop


    Red Alert : Tried setting their shell to sbin/nologin but then ssh wouldnt connect at all.

    The -N option looks the business, cheers randomhuman :)


  • #5
    niallb
    Registered Users, Registered Users 2 Posts: 2,780 ✭✭✭niallb


    There's interesting things to be done by setting the shell to pppd...

    NiallB


Advertisement