Re: SSH package concerns...

To: Adam Skutt <askutt@wnec.edu>
Cc: debian-amd64@lists.debian.org
Subject: Re: SSH package concerns...
From: harlan@artselect.com (Pete Harlan)
Date: Tue, 10 May 2005 10:09:59 -0500
Message-id: <[🔎] 20050510150959.GA25034@artselect.com>
In-reply-to: <[🔎] 42801978.8070306@wnec.edu>
References: <[🔎] 42800F6C.8010005@dragunenterprises.com> <[🔎] 42801978.8070306@wnec.edu>

On Mon, May 09, 2005 at 10:16:24PM -0400, Adam Skutt wrote:
> Nathan Dragun wrote:
> > While setting up PAM in conjunction with SSH I included the following
> > line to deny access unless found in the following file:
> > 
> > auth    required        pam_listfile.so sense=allow onerr=fail item=user
> > file=/etc/sshloginusers
> > 
> > Which works, sort of.
> Don't use it.  sshd(8) lets you deny and allow users via
> /etc/ssh/sshd_config.
> 
> Reading the daemon documentation before doing something like this is
> always good idea.

He didn't say there wasn't another way to do it, he said there was a
security hole.

--Pete

Reply to:

Follow-Ups:
- Re: SSH package concerns...
  - From: lsorense@csclub.uwaterloo.ca (Lennart Sorensen)
- Re: SSH package concerns...
  - From: Adam Skutt <askutt@wnec.edu>

References:
- SSH package concerns...
  - From: Nathan Dragun <ndragun@dragunenterprises.com>
- Re: SSH package concerns...
  - From: Adam Skutt <askutt@wnec.edu>

Prev by Date: Re: Debian AMD64 Archive Move
Next by Date: Re: Debian AMD64 Archive Move
Previous by thread: Re: SSH package concerns...
Next by thread: Re: SSH package concerns...
Index(es):
- Date
- Thread