Re: Restrict account to scp only to user directory.

• Previous message: mika: "Re: SSH logins only"
• In reply to: Darren Tucker: "Re: Restrict account to scp only to user directory."
• Next in thread: Nico Kadel-Garcia: "Re: Restrict account to scp only to user directory."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 14 Feb 2005 09:41:30 -0800

Thanks. I didn't consider that. Although they can't rename anything.
They can't login interactively and they don't have access to the "mv"
command over ssh the way it's setup.

I was more concerned that in the good old days. You could hit ctrl-c
really quickly during login and break out of the startup scripts with
default settings for everything. But that doesn't seem to be the case
any longer.

David

Darren Tucker wrote:
> On 2005-02-11, puppy_friend@yahoo.com <puppy_friend@yahoo.com> wrote:
> > I forget to say that I set ownership of all the .bash* files and
> > everything in $user/bin to nobody. I also made them read only so
the
> > user shouldn't be able to overwrite them.
>
> Don't forget that you need to make sure they don't have write
permission
> on $HOME too, otherwise they can, eg, rename the .bash* files and
create
> new ones. This probably means that $HOME should not be owned by the
user
> either.
>
> --
> Darren Tucker (dtucker at zip.com.au)
> GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
> Good judgement comes with experience. Unfortunately, the
experience
> usually comes from bad judgement.

• Previous message: mika: "Re: SSH logins only"
• In reply to: Darren Tucker: "Re: Restrict account to scp only to user directory."
• Next in thread: Nico Kadel-Garcia: "Re: Restrict account to scp only to user directory."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Running ssh cmd on cron -- debug2: channel 0: read failed ... It works fine if I manually run it on command line but it ... > does not run right if I run it as a cron job. ... You don't happen to have 2 copies of ssh installed in separate paths, ... Good judgement comes with experience. ... (SSH) Re: SSH execute remote command on a windows system ... > but when it runs the command on the remote machine it says the command ... It seems OT for this group but anyway, what SSH server are you running? ... it might be giving you a bash shell where "rename" ... (comp.unix.solaris) Re: pseudo-terminal will not be allocated because stdin is not a terminal error message when trying ... >i'm trying to run a remote X app via ssh by assigning a function key. ... Try adding another "-t" to your ssh command line for force the ... "Multiple -t options force tty allocation, even if ssh has no local ... Good judgement comes with experience. ... (comp.security.ssh) Re: ssh does not execute with remote vars... ... The shell expands the variables on the command line before ssh sees ... echo ssh -i key ip.21 echo $var ... Good judgement comes with experience. ... (comp.security.ssh) Re: Ret pally stats ... Crusader -> Seal of Command. ... This might help in my mana issues. ... entering combat, then judge it as my opening move, then switch to Seal ... damage of Seal of Command by more than the Judgement of Command that ... (alt.games.warcraft)