Re: Remote login access
- From: "Richard E. Silverman" <res@xxxxxxxx>
- Date: 24 Apr 2006 17:25:06 -0400
"kedar" == kedar <kedar.shetye@xxxxxxxxx> writes:
kedar> We have a unique situation here - we don't want people to login
kedar> directly to a user-id, say userA. We only want them to login
kedar> to their personal IDs and then su - to userA. This can be
kedar> easily achieved by setting rlogin to false and su=true.
Well, if you don't take any special pains, they will *not* be able to log
into a different account than their own. And su(do) is configured
separately.
kedar> However we also want our scripts to be able to execute commands
kedar> remotely, like "ssh host2 <command>"
You can use publickey authentication with forced commands.
http://www.snailbook.com/faq/no-passphrase.auto.html
http://www.snailbook.com/faq/restricted-scp.auto.html
--
Richard Silverman
res@xxxxxxxx
.
- References:
- Remote login access
- From: kedar
- Remote login access
- Prev by Date: Re: Remote login access
- Next by Date: Re: allow ssh on particular port....
- Previous by thread: Re: Remote login access
- Index(es):
