restricting TCP forwarding

---

• From: Steven Mocking <ufo@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Tue, 09 May 2006 23:32:52 +0200

---

Any user with an existing file as a shell entry in /etc/passwd can use
ssh forwarding. This rather defeats the purpose of scponly.

Is it possible to restrict this on a per-group or per-user basis? Or is
running a second ssh server the only solution?

Steven
.

---

• Follow-Ups:
  • Re: restricting TCP forwarding
    • From: Richard E. Silverman

• Prev by Date: Re: ssh Tunneling For Specific IP:port combo
• Next by Date: Re: ssh Tunneling For Specific IP:port combo
• Previous by thread: ssh Tunneling For Specific IP:port combo
• Next by thread: Re: restricting TCP forwarding
• Index(es):
  • Date
  • Thread

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)