Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Securing remote connections
Operating Systems Linux Securing remote connections Post 302357367 by Radar on Tuesday 29th of September 2009 01:08:55 PM
Old 09-29-2009
Quote:
Originally Posted by AlbertGM
The account I use to login is a sudoer user. So, I want to connect with an unprivileged user, and then, only if I need, reconnect with that user inside my linux. I'd like to disable that account (root is always disabled) from remote connections. How can I do that? or Where can I find some information to disable that account from remote connections?
You can use the AllowUsers directive of sshd_config

Quote:
AllowUsers
This keyword can be followed by a list of user name patterns, separated by spaces. If specified, login is allowed only for user
names that match one of the patterns.
 

8 More Discussions You Might Find Interesting

1. Cybersecurity

securing a remote box

someone has access to my server... I've got a solaris 7 box with remote access only. many of the services don't have passwords and someone recently messed with the shadow file -the root: line was changed: . password field was changed to NP . the number after that was changed too The... (8 Replies)
Discussion started by: sphiengollie
8 Replies

2. Shell Programming and Scripting

Securing arguments

OK here is my problem. Ive been trying to write a script where i use the order "find". For example if i wont to find some file in the sql_work directory using the script. You use the command: loc sql_work "q*" in order to find all the queries in the directory. Is there any other way to do it,... (0 Replies)
Discussion started by: SolidSnake
0 Replies

3. AIX

securing a shell

I would like to secure a shell script from being broken out of with Ctrl-C or equivalent. Once a user logs in, he should not be able to exit to the command prompt. any ideas. Thank you J (1 Reply)
Discussion started by: jhansrod
1 Replies

4. Solaris

Unable to open remote connections

Hello everybody, This is an unusual problem that I am facing on my Solaris 9 on Sun Blade 150 workstation. I can ping remote machines (outside subnet) but I can't open up a connection/port on those machines. For example, `ping ftp.xyz.com` gives ftp.xyz.com is alive but if I do a `ftp... (1 Reply)
Discussion started by: red_crab
1 Replies

5. Cybersecurity

Securing Passwords

Hi All, I'd like to give you an example of what I am trying to achieve and perhaps you might be able to help me along. I would like to add the following criteria to new servers, from a password aging and lockout standpoint. -Number of failed logins before lockout: = 5 -Number of Passwords... (1 Reply)
Discussion started by: mkono
1 Replies

6. BSD

Remote connections unable after power falls

Hi everyone: I have a server used for testing running FreeBSD, last weekend we had power cuts in my job and our server was constantly rebooting. since then the network connections are very slow, it's almost impossible establish a remote connection with the server, however running any... (2 Replies)
Discussion started by: edgarvm
2 Replies

7. AIX

Securing AIX

Guys, i want to securing AIX after install by scratch. Is anybody can inform about the standard port which used by AIX? (4 Replies)
Discussion started by: michlix
4 Replies

8. UNIX for Advanced & Expert Users

See AIX server remote connections

Good morning, Is there any command to view remote conxiones an AIX server? Thank you very much and best regards. (1 Reply)
Discussion started by: systemoper
1 Replies

LEARN ABOUT DEBIAN

netrc

NETRC(5)						      BSD File Formats Manual							  NETRC(5)

NAME

     netrc -- user configuration for ftp

SYNOPSIS

     ~/.netrc

DESCRIPTION

     This file contains configuration and autologin information for the File Transfer Protocol client ftp(1).

     The .netrc file contains login and initialization information used by the auto-login process.  It resides in the user's home directory.  The
     following tokens are recognized; they may be separated by spaces, tabs, or new-lines:

     machine name
	       Identify a remote machine name.	The auto-login process searches the .netrc file for a machine token that matches the remote
	       machine specified on the ftp command line or as an open command argument.  Once a match is made, the subsequent .netrc tokens are
	       processed, stopping when the end of file is reached or another machine or a default token is encountered.

     default   This is the same as machine name except that default matches any name.  There can be only one default token, and it must be after
	       all machine tokens.  This is normally used as:

		     default login anonymous password user@site

	       thereby giving the user automatic anonymous ftp login to machines not specified in .netrc.  This can be overridden by using the -n
	       flag to disable auto-login.

     login name
	       Identify a user on the remote machine.  If this token is present, the auto-login process will initiate a login using the specified
	       name.

     password string
	       Supply a password.  If this token is present, the auto-login process will supply the specified string if the remote server requires
	       a password as part of the login process.  Note that if this token is present in the .netrc file for any user other than anonymous,
	       ftp will abort the auto-login process if the .netrc is readable by anyone besides the user.

     account string
	       Supply an additional account password.  If this token is present, the auto-login process will supply the specified string if the
	       remote server requires an additional account password, or the auto-login process will initiate an ACCT command if it does not.

     macdef name
	       Define a macro.	This token functions like the ftp macdef command functions.  A macro is defined with the specified name; its con-
	       tents begin with the next .netrc line and continue until a null line (consecutive new-line characters) is encountered.  If a macro
	       named init is defined, it is automatically executed as the last step in the auto-login process.

SEE ALSO

     ftp(1), ftpd(8)

Linux NetKit (0.17)						September 23, 1997					       Linux NetKit (0.17)
All times are GMT -4. The time now is 10:04 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy