|
|
Sponsored Content
Top Forums
UNIX for Dummies Questions & Answers
Force user to use ssh/prevent telnet access
Post 302354995 by peragin on Monday 21st of September 2009 07:14:19 AM
09-21-2009
|
|
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
Just took over a UNIX Server from someone who left our company.
Having problems with access by some existing users as well as new users.
I get the following message from telnet sessions, when attempting access at the "Login:" prompt:
"UX:in.login:ERRO: Login incorrect"
"telnetd:Unable to... (2 Replies)
Discussion started by: Vincent Garcia
2 Replies
2. Cybersecurity
Hi,
We have a user who needs to connect to us over the internet using an ssh client. We use HP-UX 11.00.
We set up a home directory with login and password for them. We would not want to give them full roaming access for the server ie, they should not be able to cd up the directory tree.
... (2 Replies)
Discussion started by: Bab00shka
2 Replies
3. Shell Programming and Scripting
Hi,
I am writing a script on Solaris 10 and want to execute a remote ssh command. Normally this command should just return the value 0000000000002356 but when using ssh it seems it is passing the result to the shell to execute.
ssh root@10.5.112.145 `/usr/bin/nawk -F\, '$1=="USG" && $2=="01"... (3 Replies)
Discussion started by: borderblaster
3 Replies
4. UNIX for Advanced & Expert Users
I have one shell script which is being accessed by many jobs at same time.
I want to make the script such that , other job should wait for the script if script is being used by some other job. Is there any way to implement it in script level ?
Gops (1 Reply)
Discussion started by: Gopal_Engg
1 Replies
5. Shell Programming and Scripting
Hi Team,
we have problem with sftp. Though SA team has setup the keys between 2 server, sftp still prompts for the password. After many attempt to rectify the problem, SA has asked us force the SSH key based authentication by using following command.
sftp2 --indetity="folder/private_key"... (6 Replies)
Discussion started by: ace_friends22
6 Replies
6. AIX
Hello everyone,
Can anyone help me please. I want to disable SSH direct access for an AIX user.
For example, if I have USER1 and USER2. I want to disactivate direct access for USER2. The user must enter his login (USER1) and his password and then he can do su - USER2 .
Thanks, (3 Replies)
Discussion started by: adilyos
3 Replies
7. Red Hat
does anyone know how to force ssh/ssl to use the hosts file instead of DNS? I have disabled the DNS servers but ssh still will not resolve a host in the hosts file.
thanks in advance for the help!
DS (3 Replies)
Discussion started by: derrell simpson
3 Replies
8. Shell Programming and Scripting
I want to test the effectiveness of sshguard on some of my systems so I'm trying to write a script that simulates a brute force attack by sending a bunch of different username and password combinations to the servers being tested. So far I have this:
#!/usr/local/bin/expect
set timeout 3... (5 Replies)
Discussion started by: ph0enix
5 Replies
9. IP Networking
I would like to disable X11 session forcefully. I have tried the following things:
1. Setting appropriate DISPLAY variable in the /etc/environment file to be "0.0"
2. I have tried setting the sshd_config parameter X11Forwarding to be "no"
This session communication is happening by exchanging... (2 Replies)
Discussion started by: vaibhavvsk
2 Replies
10. UNIX for Advanced & Expert Users
Hi Experts,
Need your support
Redhat 6.5
I want to create a user with all(read, write, execute) privileges except that user should not be able to create any new user from his login
to perform any task. (10 Replies)
Discussion started by: as7951
10 Replies
LEARN ABOUT DEBIAN
avc_av_stats
avc_cache_stats(3) SELinux API documentation avc_cache_stats(3) NAME
avc_cache_stats, avc_av_stats, avc_sid_stats - obtain userspace SELinux AVC statistics. SYNOPSIS
#include <selinux/selinux.h> #include <selinux/avc.h> void avc_av_stats(void); void avc_sid_stats(void); void avc_cache_stats(struct avc_cache_stats *stats); DESCRIPTION
The userspace AVC maintains two internal hash tables, one to store security ID's and one to cache access decisions. avc_av_stats and avc_sid_stats produce log messages indicating the status of the access decision and SID tables, respectively. The mes- sages contain the number of entries in the table, number of hash buckets and number of buckets used, and maximum number of entries in a single bucket. avc_cache_stats populates a structure whose fields reflect cache activity: struct avc_cache_stats { unsigned entry_lookups; unsigned entry_hits; unsigned entry_misses; unsigned entry_discards; unsigned cav_lookups; unsigned cav_hits; unsigned cav_probes; unsigned cav_misses; }; entry_lookups Number of queries made. entry_hits Number of times a decision was found in the aeref argument. entry_misses Number of times a decision was not found in the aeref argument. entry_discards Number of times a decision was not found in the aeref argument and the aeref argument was non-NULL. cav_lookups Number of cache lookups. cav_hits Number of cache hits. cav_misses Number of cache misses. cav_probes Number of entries examined while searching the cache. NOTES
When the cache is flushed as a result of a call to avc_reset or a policy change notification, the statistics returned by avc_cache_stats are reset to zero. The SID table, however, is left unchanged. When a policy change notification is received, a call to avc_av_stats is made before the cache is flushed. AUTHOR
Eamon Walsh <ewalsh@tycho.nsa.gov> SEE ALSO
avc_init(3), avc_has_perm(3), avc_context_to_sid(3), avc_add_callback(3) selinux(8) 27 May 2004 avc_cache_stats(3)