Re: Restricitng SSH for CVS user
From: Andreas Mueller (nospam_at_home.de)
Date: 07/24/03
- Next message: luke: "Re: Blocking Chat Saga 3"
- Previous message: Keith Keller: "Re: How to block Kazaa v2.x with iptables??"
- In reply to: Denice DEATRICH: "Re: Restricitng SSH for CVS user"
- Next in thread: Peter Ashford: "Re: Restricitng SSH for CVS user"
- Reply: Peter Ashford: "Re: Restricitng SSH for CVS user"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 24 Jul 2003 21:07:51 +0200
Denice DEATRICH wrote:
> Peter Ashford <me@here.there.com> writes:
>
>>I have a RH 8 CVS server which allows our office to use CVS over SSH.
>>The problem is that we have a seperate repository that we want to allow
>>an external user to use (we've generated an account and SSH rsa key for
>>him) but we don't want him to be able to access the server using a
>>shell. How do we allow the remote SSH/CVS access but disallow any shell
>>access?
>
> Lock the account.
>
> It's also best to only make the account on the cvs server (ie. the account
> is not part of a global NIS setup, for example).
>
> If you want to be paranoid, you could also think about chown-ing the home
> directory of the account, so that no files could ever be created in it
> (being careful of course to not nuke permissions on the .ssh tree).
>
> --
> denice.deatrich @ epfl.ch, DSC / LTHC-LTHI, E.P.F.L. PH: +41 (21) 693 76
> 67 <*> This moment's fortune cookie:
> Since aerosols are forbidden, the police are using roll-on Mace!
Hi, how could one lock the cvs-account ?
-- Regards Andy
- Next message: luke: "Re: Blocking Chat Saga 3"
- Previous message: Keith Keller: "Re: How to block Kazaa v2.x with iptables??"
- In reply to: Denice DEATRICH: "Re: Restricitng SSH for CVS user"
- Next in thread: Peter Ashford: "Re: Restricitng SSH for CVS user"
- Reply: Peter Ashford: "Re: Restricitng SSH for CVS user"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
