Through ssh whole directory structure from / is shared
regardless the user we have connected with ....... how do i
prevent sharing ??
Answers were Sorted based on User's Feedback
Answer / manoj
i am not agree with above answer i think it shows hoe to
configure ssh.. u have to define indivisual security with
permission to a file & directory..
its benefitial to use setfacl command for secure your
stuff..
Is This Answer Correct ? | 7 Yes | 1 No |
Answer / parveen khera
Hi,
You can use any of these below mentioned:
1. Use restricted bash(rbash), which not only restricts
users to their home directory but also provides other
required restrictions. http://www.wlug.org.nz/rbash%281%29
or
http://pizzashack.org/rssh/
2. Use SSH Jail with PAM_ChRoot:
http://singe.za.net/blog/archives/378-Linux-SSH-Jail-with-pam_chroot.html
3. Use Jail Kit Chroot:
http://olivier.sessink.nl/jailkit/jk_chrootsh.8.html
Thanks.
Is This Answer Correct ? | 0 Yes | 0 No |
vi /etc/ssh/sshd_config
"in last line enter the folowing entry"
AllowUsers "username"
And
vi /etc/hosts.deny
"in last line enter the folowing entry"
sshd: ALL EXCEPT "DOMAIN-NAME"
Is This Answer Correct ? | 6 Yes | 7 No |
Answer / susheel narayan singh
# vim /etc/host.deny
(press i)
sshd:ALL
wq:
Note: This is tcp_wrappers configuration by this way u can
prevent.
Is This Answer Correct ? | 0 Yes | 2 No |
How to load the old kernel without rebooting server
What is the difference between ext3 and ext4?
How to convert an IP address to a Domain name using Unix ?
what is memory mapped / IO mapped ? Which calls used for this to access any hardware address in linux device driver ?
Give a Linux shell command to find all files in a directory which contain ip addresses.
How to send automated email to a set of people at fixed time ?
1 which file contains information about os wether it's 32 bit or 64 bit os 2 difference between logical block and physical block?? 3 what is the size of logical block and physical block?? 4 daemon for nfs on client end as well as server end??? 5 how to confirm from client end about nfs server sharing?? 6 what contains information about file and directory creating time or modification time??
there are many IPC mechanisms available in Linux ? Which one is best to use and when ?
How to know what are the packages required for any service? Example: How to know what are the package required for send mail services. using any command it is passable are not?
How to check all open ports on linux machine and block unsed ports????????
what are the steps for Password-less ssh
I want to configure production interface and manage interface, how to configure both interfaces in Linux. please post the answers