SV: Restrictions for password logins

walter harms wharms at bfs.de
Fri May 19 23:00:39 AWST 2017


Am 19.05.2017 16:34, schrieb Henrik Uggla:
> Permission to run one command, everything else should be denied.

why not modify .profile (or /bin/sh in /etc/profile) ?
anything else feels complicated.

re,
 wh


> 
> /HU
> ________________________________________
> Från: Matt Johnston <matt at ucc.asn.au>
> Skickat: den 19 maj 2017 14:46
> Till: Henrik Uggla
> Kopia: dropbear at ucc.asn.au
> Ämne: Re: Restrictions for password logins
> 
> On Fri, May 19, 2017 at 07:42:21AM +0000, Henrik Uggla wrote:
>> Hi!
>>
>>
>> How can I set restrictions, like those given in authorized_keys, to all password logins?
> 
> Hi Henrik,
> 
> You can't set all of those restrictions like command= though
> you can disable TCP forwarding at compile time in options.h
> 
> What restrictions were you looking at?
> 
> Cheers,
> Matt


More information about the Dropbear mailing list