Re: Controlling server access
On Tue, Sep 12, 2006 at 04:41:17PM +0200, Simon Tennant wrote:
> Dan MacNeil wrote:
> >
> > man sshd_config says:
> >
> > AllowGroups
> > [...]
>
> I am aware of that but that would imply having POSIX groups which list
> who can log into which boxes. A user could do a "getent group
> groupname" to see who can access boxes which worries me somewhat.
OTOH, only those who can login can do this - and if you can't trust them
not to abuse the priviledge then they shouldn't be able to login.
craig
--
craig sanders <cas@taz.net.au> (part time cyborg)
Reply to: