Hello all: I am running suse 10.0. ssh is enabled so that users can login the computer through ssh. But there are a few users who has weak passwords. How can I block these users from being able to login the computer through the network? Login at the console should not be blocked. Can sshd be controlled through inetd/xinetd? Thanks, IG _______________________________________________________________________ 3 könyv = 15+5% kedvezmény! http://www.bookline.hu/control/news?newsid=351&affiliate=fre3kokar2230
List the ssh allowed users in /etc/ssh/sshd_config and exclude these users.
----- Original Message -----
From: "Istvan Gabor"
List the ssh allowed users in /etc/ssh/sshd_config and exclude these users.
Ooops. I should have thought of this. Thank you very much. Cheers, IG _______________________________________________________________________ 3 könyv = 15+5% kedvezmény! http://www.bookline.hu/control/news?newsid=351&affiliate=fre3kokar2230
I use a different method.
I do the following:
1) Create Group “remotesh”,
Add users that are allowed remote access to the group.
2) In file /etc/ssh/sshd_config
add the following lines to bottom of file:
#
# Westrick GmbH Configuration
#
Port
List the ssh allowed users in /etc/ssh/sshd_config and exclude these users.
----- Original Message ----- From: "Istvan Gabor"
To: Sent: Monday, April 10, 2006 5:38 PM Subject: [SLE] How to control ssh login? Hello all:
I am running suse 10.0. ssh is enabled so that users can login the computer through ssh. But there are a few users who has weak passwords. How can I block these users from being able to login the computer through the network? Login at the console should not be blocked. Can sshd be controlled through inetd/xinetd? Thanks, IG
Istvan Gabor wrote:
Hello all:
I am running suse 10.0. ssh is enabled so that users can login the computer through ssh. But there are a few users who has weak passwords. How can I block these users from being able to login the computer through the network? Login at the console should not be blocked. Can sshd be controlled through inetd/xinetd?
I don't recall the details, but you can configure ssh to required keys, instead of passwords.
participants (4)
-
Andre Venter
-
Istvan Gabor
-
James Knott
-
Jerry Westrick