[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: More SSH 'trolling'



On Thu, 2004-10-14 at 13:07 -0400, Scot L. Harris wrote:
> In /etc/sshd/sshd_config you want to have the following lines:
> 
> PermitRootLogin no
> 
> AllowUsers  selectusernames

You can also create a 'remote' group, add only those users who need
remote access and then add this to sshd_config:
  AllowGroups remote

That way you can specify who can login remotely via SSH with any of the
user management tools.  I think it would be nice if this was the
default.  FirstBoot could add the first normal user to the remote group
automatically, for example.

-- 
 David Norris
  http://www.webaugur.com/dave/
  ICQ - 412039

Attachment: signature.asc
Description: This is a digitally signed message part


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]