From owner-freebsd-questions Fri Nov 30 11:40:55 2001 Delivered-To: freebsd-questions@freebsd.org Received: from symbion.srrc.usda.gov (symbion.srrc.usda.gov [199.133.86.40]) by hub.freebsd.org (Postfix) with ESMTP id D334837B417 for ; Fri, 30 Nov 2001 11:40:52 -0800 (PST) Received: from node7.cluster.srrc.usda.gov (node7.cluster.srrc.usda.gov [192.168.1.7]) by symbion.srrc.usda.gov (8.11.6/8.11.6) with ESMTP id fAUJepv01139 for ; Fri, 30 Nov 2001 13:40:51 -0600 (CST) (envelope-from gjohnson@srrc.ars.usda.gov) Received: (from glenn@localhost) by node7.cluster.srrc.usda.gov (8.11.6/8.11.6) id fAUJeoU01967 for questions@freebsd.org; Fri, 30 Nov 2001 13:40:50 -0600 (CST) (envelope-from glenn) From: Glenn Johnson Date: Fri, 30 Nov 2001 13:40:50 -0600 To: questions@freebsd.org Subject: ssh does not honor the nologin file Message-ID: <20011130134050.A1933@node7.cluster.srrc.usda.gov> Mail-Followup-To: glenn@FreeBSD.ORG, questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG The sshd manual says that sshd checks for /etc/nologin and /var/run/nologin and if either is found, the login is not allowed. This does not work. I have tried with the nologin file present in both /etc and /var/run but users can still login via ssh. I would like to be able to temporarily disable all logins via ssh from the outside. I can not simply kill the daemon because I need ssh on the inside network. According to the man page for sshd this should "just work". Does any one have any ideas? Thanks. -- Glenn Johnson USDA, ARS, SRRC Phone: (504) 286-4252 New Orleans, LA 70124 e-mail: gjohnson@srrc.ars.usda.gov To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message