Re: SSH access restrictions
Hi,
Though I'd post something I found on the net about rbash.
I haven't tested it yet.
[quote]
But it's possible to get out from this chroot.
woockie_at_twoflower:~$ cd ..
rbash: cd: restricted
woockie_at_twoflower:~$ vi foo
in vi:
:set shell=/bin/sh
:shell
woockie_at_twoflower:~$ cd ..
woockie_at_twoflower:/home$
[end quote]
It's disappointing if it's that easy.
Still if they do get out and misbehave you could catch them
with monitoring.
For stronger restrictions PAM chroot and http://www.grsecurity.org
is a class option.
Cheers
Rudi.
Reply to: