I have a problem to configure my OpenSSH:
I want allow root-access (and all other users) to a webserver from my firewall with a static IP. For all other IP's I want to create an user who has access to this machine, and no one else (no root-access!).
man sshd is your friend: snip ------ AllowUsers This keyword can be followed by a list of user names, separated by spaces. If specified, login is allowed only for users names that match one of the patterns. `*' and `?' can be used as wild� cards in the patterns. Only user names are valid; a numerical user ID is not recognized. By default login is allowed regard� less of the user name. If the pattern takes the form USER@HOST then USER and HOST are separately checked, restricting logins to particular users from particular hosts. ---- snip 4 /etc/ssh/sshd_config so you have to insert there AllowUsers *.IP.Fire.wall.X CertainUserName.* Yours Michael Appeldorn