Re: SSH access restrictions

To: debian-isp@lists.debian.org
Subject: Re: SSH access restrictions
From: "Rudi Starcevic" <rudi@oasis.net.au>
Date: Tue, 21 Oct 2003 22:44:24 +1000
Message-id: <[🔎] 20031021124424.M8509@oasis.net.au>
In-reply-to: <[🔎] 3F95235A.17194.7C42EA@localhost>
References: <[🔎] 3F9095FF.4050202@oasis.net.au> <[🔎] 3F95235A.17194.7C42EA@localhost>

Hi Ian,

> We have a set-up that uses "rbash". The client gets "rbash" as a 
> login shell and his path is preset to a directory that has a few 
> chosen executables in it.

Most interesting.
Sounds like it would do just what I want.
I'm on to it.

> I suspect a determined hacker could get around this, but it 
> discourages most abusers.

<sigh>
We can only try.

If they do get out I still try and catch 'em with Firewall rules,
hashed log files, Tripwire, Snort packet sniffing/logging.

Plus those trusty back ups come in handy sometimes :-)

Many thanks,
Best regards
Rudi.

Reply to:

References:
- SSH access restrictions
  - From: Rudi Starcevic <rudi@oasis.net.au>
- Re: SSH access restrictions
  - From: "I. Forbes" <iforbes@zsd.co.za>

Prev by Date: Re: SSH access restrictions
Next by Date: Re: SSH access restrictions
Previous by thread: Re: SSH access restrictions
Next by thread: Re: SSH access restrictions
Index(es):
- Date
- Thread