Re: Access control by host and user //Re: time control for remote ssh/sftp access

To: debian-edu@lists.debian.org
Subject: Re: Access control by host and user //Re: time control for remote ssh/sftp access
From: RalfGesellensetter <rgx@gmx.de>
Date: Thu, 17 Dec 2009 20:32:54 +0100
Message-id: <200912172032.54297.rgx@gmx.de>
In-reply-to: <20091217094621.GZ26960@jones.dk>
References: <200912081551.23608.rgx@gmx.de> <200912170954.06112.rgx@gmx.de> <20091217094621.GZ26960@jones.dk>

Am Donnerstag, 17. Dezember 2009 schrieb Jonas Smedegaard:
> As discussed already you can limit login via PAM settings.  That can
>  be  circumvented by clever users, however.
> 

You mean in case they are able to change the machine's IP?
In this case, netgroups can be evaded as well.

Anyway: can you tell out from your forehead (...) 
where and how to tell pam (or more general: the system) 
that the user bib01 may only login from machine static101?

Regards
Ralf

Reply to:

Follow-Ups:
- Re: Access control by host and user //Re: time control for remote ssh/sftp access
  - From: Jonas Smedegaard <dr@jones.dk>

References:
- time control for remote ssh/sftp access
  - From: RalfGesellensetter <rgx@gmx.de>
- Re: Access control by host and user //Re: time control for remote ssh/sftp access
  - From: RalfGesellensetter <rgx@gmx.de>
- Re: Access control by host and user //Re: time control for remote ssh/sftp access
  - From: Jonas Smedegaard <dr@jones.dk>

Prev by Date: [Bug 1405] cronjob needed to update trunk/src/debian-edu-install/pxe-lenny-extra-udeb
Next by Date: Re: Extending range of Statics
Previous by thread: Re: Access control by host and user //Re: time control for remote ssh/sftp access
Next by thread: Re: Access control by host and user //Re: time control for remote ssh/sftp access
Index(es):
- Date
- Thread