Date: Tue, 30 May 2006 19:28:01 +1000 From: Mikhail Goriachev <mikhailg@webanoide.org> To: Marwan Sultan <dead_line@hotmail.com> Cc: freebsd@amadeus.demon.nl, questions@freebsd.org, dimitar.vassilev@gmail.com, gil@asol.com.ph Subject: Re: User Access restriction. Message-ID: <447C1021.1070209@webanoide.org> In-Reply-To: <BAY20-F581481997A7225DDC07E69A920@phx.gbl> References: <BAY20-F581481997A7225DDC07E69A920@phx.gbl>
next in thread | previous in thread | raw e-mail | index | archive | help
Marwan Sultan wrote: > Hello, > > Yes, I understand that To lockup a user from navigating outside their > home directories through > ftp, I simply can add them to /etc/ftpchroot and when a user connects > It wont allow him > to go any level higher than his Home Directory. > No need for proftpd as additional port, because the base system will do > it throu /etc/ftpchroot > > BUT!! > The user can connect through SSH and navigate, > Here where my information stops, > 2 questions, > 1) How do I have a list from few users to disallow them using SSH? > is there any where i add a user to disallow him from using SSH? man sshd_config and see AllowUsers/DenyUsers sections. > > 2) If I want to lock the user through his SSH session not FTP session > whats the way? > Is jail the only way? no easier way? chroot can do it? how if yes? or > whats the alternatives? > > Thank you guys for following up with me. > > Marwan Cheers, Mikhail. -- Mikhail Goriachev Webanoide Telephone: +61 (0)3 62252501 Mobile Phone: +61 (0)4 38255158 E-Mail: mikhailg@webanoide.org Web: http://www.webanoide.org PGP Key ID: 0x4E148A3B PGP Key Fingerprint: D96B 7C14 79A5 8824 B99D 9562 F50E 2F5D 4E14 8A3B
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?447C1021.1070209>