SSH tty allocation
From: JoeFSO (JoeFSO_at_hotmail.com)
Date: 04/29/04
- Next message: Darren Tucker: "Re: Putty: PSFTP connection without password prompt (CORRECT VERSION)"
- Previous message: jamiewalker_at_wp.shawcable.net: "Bin Laden Captured - photos and video"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 29 Apr 2004 07:11:53 -0700
Hi,
If you use chrsh to allow users shell access and use SSH, please be
aware that some versions of the SSH server can permit the remote user
to bypass their local shell setting ("ssh -l username -t hostname
/bin/sh") and still get access to a shell that is NOT chrooted. This
problem does NOT affect all users of SSH. Additionally, keep in mind
that SSH may also permit the user to use IP forwarding, enabling the
user to act as if he/she were connecting FROM the server where SSH
resides, or even operate IP services that get forwarded to the user's
computer.
How do I disable this function in ssh? Would it have any side affects?
Joe.
- Next message: Darren Tucker: "Re: Putty: PSFTP connection without password prompt (CORRECT VERSION)"
- Previous message: jamiewalker_at_wp.shawcable.net: "Bin Laden Captured - photos and video"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
