From owner-freebsd-security@FreeBSD.ORG Tue Jan 24 23:07:12 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A4DA816A41F for ; Tue, 24 Jan 2006 23:07:12 +0000 (GMT) (envelope-from user@dhp.com) Received: from shell.dhp.com (shell.dhp.com [199.245.105.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id E484443D48 for ; Tue, 24 Jan 2006 23:07:11 +0000 (GMT) (envelope-from user@dhp.com) Received: by shell.dhp.com (Postfix, from userid 896) id 111D631311; Tue, 24 Jan 2006 18:07:09 -0500 (EST) Date: Tue, 24 Jan 2006 18:07:09 -0500 (EST) From: Ensel Sharon To: freebsd-security@freebsd.org Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Mailman-Approved-At: Tue, 24 Jan 2006 23:14:58 +0000 Subject: limiting concurrent scp/rsync sessions (over ssh) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Jan 2006 23:07:12 -0000 Hello, I have a file server that serves files over rsync and scp (all over ssh - in fact, ssh is the only service listening) I would like to limit each user to no more than X concurrent ssh sessions (regardless of what they are doing (interactive login, scp, rsync, etc.)) I have read the documentation and man pages and it looks like I need to set this in /etc/pam.d/sshd, but I don't know exactly what to put in place where. Can someone tell me the steps needed to do this ? Thank you very much.