09-29-2009
Quote:
Originally Posted by
AlbertGM
The account I use to login is a sudoer user. So, I want to connect with an unprivileged user, and then, only if I need, reconnect with that user inside my linux. I'd like to disable that account (root is always disabled) from remote connections. How can I do that? or Where can I find some information to disable that account from remote connections?
You can use the AllowUsers directive of sshd_config
Quote:
AllowUsers
This keyword can be followed by a list of user name patterns, separated by spaces. If specified, login is allowed only for user
names that match one of the patterns.
8 More Discussions You Might Find Interesting
1. Cybersecurity
someone has access to my server...
I've got a solaris 7 box with remote access only.
many of the services don't have passwords
and someone recently messed with the shadow file
-the root: line was changed:
. password field was changed to NP
. the number after that was changed too
The... (8 Replies)
Discussion started by: sphiengollie
8 Replies
2. Shell Programming and Scripting
OK here is my problem. Ive been trying to write a script where i use the order "find".
For example if i wont to find some file in the sql_work directory using the script. You use the command: loc sql_work "q*" in order to find all the queries in the directory.
Is there any other way to do it,... (0 Replies)
Discussion started by: SolidSnake
0 Replies
3. AIX
I would like to secure a shell script from being broken out of with Ctrl-C or equivalent.
Once a user logs in, he should not be able to exit to the command prompt.
any ideas.
Thank you
J (1 Reply)
Discussion started by: jhansrod
1 Replies
4. Solaris
Hello everybody,
This is an unusual problem that I am facing on my Solaris 9 on Sun Blade 150 workstation. I can ping remote machines (outside subnet) but I can't open up a connection/port on those machines.
For example, `ping ftp.xyz.com` gives ftp.xyz.com is alive but if I do a `ftp... (1 Reply)
Discussion started by: red_crab
1 Replies
5. Cybersecurity
Hi All,
I'd like to give you an example of what I am trying to achieve and perhaps you might be able to help me along.
I would like to add the following criteria to new servers, from a password aging and lockout standpoint.
-Number of failed logins before lockout: = 5
-Number of Passwords... (1 Reply)
Discussion started by: mkono
1 Replies
6. BSD
Hi everyone:
I have a server used for testing running FreeBSD, last weekend we had power cuts in my job and our server was constantly rebooting.
since then the network connections are very slow, it's almost impossible establish a remote connection with the server, however running any... (2 Replies)
Discussion started by: edgarvm
2 Replies
7. AIX
Guys, i want to securing AIX after install by scratch. Is anybody can inform about the standard port which used by AIX? (4 Replies)
Discussion started by: michlix
4 Replies
8. UNIX for Advanced & Expert Users
Good morning,
Is there any command to view remote conxiones an AIX server?
Thank you very much and best regards. (1 Reply)
Discussion started by: systemoper
1 Replies
NETRC(5) BSD File Formats Manual NETRC(5)
NAME
netrc -- user configuration for ftp
SYNOPSIS
~/.netrc
DESCRIPTION
This file contains configuration and autologin information for the File Transfer Protocol client ftp(1).
The .netrc file contains login and initialization information used by the auto-login process. It resides in the user's home directory. The
following tokens are recognized; they may be separated by spaces, tabs, or new-lines:
machine name
Identify a remote machine name. The auto-login process searches the .netrc file for a machine token that matches the remote
machine specified on the ftp command line or as an open command argument. Once a match is made, the subsequent .netrc tokens are
processed, stopping when the end of file is reached or another machine or a default token is encountered.
default This is the same as machine name except that default matches any name. There can be only one default token, and it must be after
all machine tokens. This is normally used as:
default login anonymous password user@site
thereby giving the user automatic anonymous ftp login to machines not specified in .netrc. This can be overridden by using the -n
flag to disable auto-login.
login name
Identify a user on the remote machine. If this token is present, the auto-login process will initiate a login using the specified
name.
password string
Supply a password. If this token is present, the auto-login process will supply the specified string if the remote server requires
a password as part of the login process. Note that if this token is present in the .netrc file for any user other than anonymous,
ftp will abort the auto-login process if the .netrc is readable by anyone besides the user.
account string
Supply an additional account password. If this token is present, the auto-login process will supply the specified string if the
remote server requires an additional account password, or the auto-login process will initiate an ACCT command if it does not.
macdef name
Define a macro. This token functions like the ftp macdef command functions. A macro is defined with the specified name; its con-
tents begin with the next .netrc line and continue until a null line (consecutive new-line characters) is encountered. If a macro
named init is defined, it is automatically executed as the last step in the auto-login process.
SEE ALSO
ftp(1), ftpd(8)
Linux NetKit (0.17) September 23, 1997 Linux NetKit (0.17)