comp.os.linux.networking
back to index
From: Ignoramus9437
Date: Friday, April 11, 2008 1:10 PM
Subject: Re: How to PREVENT a user from logging in through SSH
On 2008-04-11, Jurgen Haan
> Ignoramus6985 wrote:
>> On 2008-04-11, Jurgen Haan
>>> Jurgen Haan wrote:
>>>> Use groups.
>>>> use DenyGroups in your sshd conf to deny them access.
>>> rectification:
>>> Use AllowGroups.
>>> It's much cleaner. :)
>>
>> I simply use AllowUsers. Does exactly what I want. I am happy. Yes, I
>> verified it.
>>
>> i
>
> Same principle, with the difference that for every new user, you need to
> change your sshd_config if you want them able to log in through ssh.
> With groups you can just assign the user to the appropriate group.
>
> But indeed. AllowUsers will do aswell.
>
Yes, but, I do not get new users often. I have a list of users in a
"system-night" shell script that sets sshd_config to that list. So
things are easy to change. I just change the night script and it takes
care of everything on all my machines.
i
