Re: SSH access restrictions
On 18 Oct 2003 at 11:23, Rudi Starcevic wrote:
> Is there anyway to resistict a non-root user's shell account ?
> For example once he/she is logged in is there any way to deny, say,
> reading the /etc/passwd file ?
We have a set-up that uses "rbash". The client gets "rbash" as a
login shell and his path is preset to a directory that has a few
chosen executables in it. (In our case this is not much more than
I suspect a determined hacker could get around this, but it
discourages most abusers.
Ian Forbes ZSD
Office: +27 21 683-1388 Fax: +27 21 674-1106
Snail Mail: P.O. Box 46827, Glosderry, 7702, South Africa