Re: Tunnel-only SSH keys
From: David Wolfskill (david_at_catwhisker.org)
Date: 09/22/05
- Previous message: Jeremie Le Hen: "Re: Tunnel-only SSH keys"
- In reply to: markzero: "Tunnel-only SSH keys"
- Next in thread: markzero: "Re: Tunnel-only SSH keys"
- Reply: markzero: "Re: Tunnel-only SSH keys"
- Reply: Brian Reichert: "Re: Tunnel-only SSH keys"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 22 Sep 2005 09:22:38 -0700 To: freebsd-security@freebsd.org
On Thu, Sep 22, 2005 at 04:27:18PM +0100, markzero wrote:
> Hello.
>
> I once read somewhere that it's possible to limit SSH pubkeys to
> 'tunnel-only'. I can't seem to find any information about this
> in any of the usual places.
> ...
> Can this be done with OpenSSH? I'd like to try and stay away from
> the complexities of a chrooted-stunnel for now...
See the section "AUTHORIZED_KEYS FILE FORMAT" in the sshd man page.
There is also a discussion of this in the O'Reilly _SSH_ book.
Peace,
david
-- David H. Wolfskill david@catwhisker.org Prediction is difficult, especially if it involves the future. -- Niels Bohr See http://www.catwhisker.org/~david/publickey.gpg for public key. _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- Previous message: Jeremie Le Hen: "Re: Tunnel-only SSH keys"
- In reply to: markzero: "Tunnel-only SSH keys"
- Next in thread: markzero: "Re: Tunnel-only SSH keys"
- Reply: markzero: "Re: Tunnel-only SSH keys"
- Reply: Brian Reichert: "Re: Tunnel-only SSH keys"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
