Re: SSH access restrictions
* Rudi Starcevic schrieb am 21.10.03 um 16:53 Uhr:
> > Our rbash shells don't have access to vi ... or much else! Their
> > path is set to "/usr/local/lib/rbash-bin/" and that directory has
> > sym-links to a few selected binaries.
> > Still I don't regard the rbash setup as secure.
> Yes but is sound OK for your needs.
> In this case I need, or want, to restrict a fully logged in user.
> So I can offer ftp and ssh access.
> To sumerize the options I've found so far:
> a) PAM chroot
> b) rbash - restricted shell
> c) SSH2 chroot access.
> In this case the machine in question is a remote virtual server with
> only SSH access. So I think c) may be the go.
> If I had local users I guess a) or b) with a) having stronger security.
but c) is not OpenSSH right?
+-O . . . o . . . O . . . o . . . O . . . ___ . . . O . . . o .-+
| Ein Service von Links2Linux.de: / o\ RPMs for SuSE |
| --> PackMan! <-- naeheres unter | __| and others |
| http://packman.links2linux.de/ . . . O \__\ . . . O . . . O . |