restricting ssh login based on IP
Smoot Carl-Mitchell
smoot at tic.com
Sat Feb 26 23:59:57 UTC 2011
On Sat, 2011-02-26 at 17:40 -0500, Verde Denim wrote:
>
>
> [snip]
>
> only be able to read and execute, but it would still be
> "their" home
> directory.
>
> Wouldn't this also mean that tester2 could not change anything about
> their environment (i.e. .bashrc)?
> Would they even be able to set an environmental variable for the
> purpose of the session?
Yes, the user would be able to set environment variables for the
specific session.
> Seems that might just go a little too restrictive...
> Reminds me of the restricted shell from old Unix machines - we'd set
> them up as a joke so that someone could log in but not do anything or
> change directories to anywhere - the only command they could execute
> would be to logout.
The restricted shell still exists. See the '-r' flag in the bash man
page. I never found the feature terribly useful.
--
Smoot Carl-Mitchell
System/Network Architect
voice: +1 480 922-7313
cell: +1 602 421-9005
smoot at tic.com
More information about the ubuntu-users
mailing list