comp.os.linux.networking
back to index
From: Robert Heller
Date: Monday, April 07, 2008 4:01 PM
Subject: Re: How to PREVENT a user from logging in through SSH
At Mon, 07 Apr 2008 10:10:03 -0500 Ignoramus10392
>
> On 2008-04-07, Peter Ludikovsky
> > Ignoramus10392 wrote:
> >> Given prevalence of SSH dictionary attacks, I want to fortify my
> >> systems a little.
> >>
> >> I have several local (inside the house) users who I do NOT want to be
> >> able to log on from outside via ssh.
> >>
> >> I would like to disable any remote SSH logins for these users.
> >>
> >> How can I do that?
> >>
> >> thanks
> >
> > man 5 sshd_config
> > Look at the AllowUsers / DenyUsers entries
>
> Looks great to me. Thanks. I assume that if I say AllowUsers
> ...,root,... then, on conjunctions with PermitRootLogin
> without-password the passworded root login will not be allowed.
You generally should not allow root logins, passworded or otherwise.
Just some (non-priviliged) user(s) (you and other 'trusted' users) who
might have suitable sudo access, as appropriate.
>
> I will try to verify everything.
>
> i
>
--
Robert Heller -- Get the Deepwoods Software FireFox Toolbar!
Deepwoods Software -- Linux Installation and Administration
http://www.deepsoft.com/ -- Web Hosting, with CGI and Database
heller@deepsoft.com -- Contract Programming: C/C++, Tcl/Tk
