Re: SSH access restrictions
Hello Rudi
On 18 Oct 2003 at 11:23, Rudi Starcevic wrote:
> Is there anyway to resistict a non-root user's shell account ?
>
> For example once he/she is logged in is there any way to deny, say,
> reading the /etc/passwd file ?
We have a set-up that uses "rbash". The client gets "rbash" as a
login shell and his path is preset to a directory that has a few
chosen executables in it. (In our case this is not much more than
rsync).
I suspect a determined hacker could get around this, but it
discourages most abusers.
Regards
Ian
--
Ian Forbes ZSD
http://www.zsd.co.za
Office: +27 21 683-1388 Fax: +27 21 674-1106
Snail Mail: P.O. Box 46827, Glosderry, 7702, South Africa
Reply to: