Re: Server-wide no-pty
From: Rajkumar S (listuser_at_myrealbox.com)
Date: 05/21/03
- Previous message: alex one: "Fwd: RE: heimdal and ssh"
- In reply to: Rajkumar S: "Server-wide no-pty"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 21 May 2003 21:49:29 +0530 To: SSH Support <secureshell@securityfocus.com>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Rajkumar S wrote:
> similar) mode so that people can use the server for rsync and cvs but
> not shell or login access.
I got what I want in a truly bizzare way. Having failed deny shell I was
looking for restricted bash as a compromise. To enable restricted bash
bash has to be called as rbash. I edited the sources and changed that to
bash itself and compiled it with
$ ./configure --enable-minimal-config --enable-restricted
- --disable-disabled-builtins --disable-xpg-echo-default --enable-static-link
and put that as the shell for my (chrooted) ssh. and it worked!! login
is not allowed, while rsync and cvs is possible. But I have no idea how
it worked.
> My another question is how to enable logging for a chrooted sshd?
This question remains though !
raj
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQE+y6cWg/KquOAub0IRAhzHAKDaCKmFuku0LgDSaONDetYieF17/wCeK3mq
6/ajdoZHrvYvZ7/hF5246RU=
=WVMK
-----END PGP SIGNATURE-----
- Previous message: alex one: "Fwd: RE: heimdal and ssh"
- In reply to: Rajkumar S: "Server-wide no-pty"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
