Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

locking down ssh (vpn) account

  • 21-08-2005 8:17pm
    #1
    voxpop
    Registered Users, Registered Users 2 Posts: 2,800 ✭✭✭


    Im currently using ssh to our firewall as a simple mans vpn. Unfortunately I cant figure out how to lock down the ssh user to either no logon (ideal) only port forwarding or restrict the user to its own home dir and nothing else. I dont want the vpn users messing with the linux box at all. Anybody got any idea ?


Comments

  • #2
    Red Alert
    Hosted Moderators Posts: 7,486 ✭✭✭Red Alert


    There is an SSH-only shell but i can't remember the name of it - google is your friend.

    Alternatively set their shell to something like tetris.


  • #3
    randomhuman
    Registered Users, Registered Users 2 Posts: 88 ✭✭randomhuman


    Looks like the -N option might do what you want.


  • #4
    voxpop
    Registered Users, Registered Users 2 Posts: 2,800 ✭✭✭voxpop


    Red Alert : Tried setting their shell to sbin/nologin but then ssh wouldnt connect at all.

    The -N option looks the business, cheers randomhuman :)


  • #5
    niallb
    Registered Users, Registered Users 2 Posts: 2,755 ✭✭✭niallb


    There's interesting things to be done by setting the shell to pppd...

    NiallB


Advertisement