Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Restrict service account from direct interactive sessions
Top Forums UNIX for Advanced & Expert Users Restrict service account from direct interactive sessions Post 303024298 by Peasant on Friday 5th of October 2018 12:16:58 PM
Old 10-05-2018
Looks unreasonably complex to implement yes, with requests for functionality overlapping.

Is there another approach for desired outcome ?
Perhaps some web server and actual application....

You will have many issues with implementing your entire functionality using one user and SSH protocol.
If you manage to do that in the end you will have a hacky mess.

Perhaps more service users with separated privileges.
Linux and unix systems are multi user environments in their essence, so exploit that as much as you can.

Hope that helps
Regards
Peasant.
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

How to restrict account to one log-in?

Our users have the tendency to use only one login account, to do their jobs. Obvious itīs a matter of training our users. But our internal audit team insists on restrictions from our system. So is there an option to restrict an account to only login once into the system? We use HP-UX 11.0. ... (0 Replies)
Discussion started by: Egroman
0 Replies

2. Homework & Coursework Questions

Help with Interactive / Non Interactive Shell script

Q. Write a script that behaves both in interactive and non interactive mode. When no arguments are supplied it picks up each C program from the directory and prints first 10 lines. It then prompts for deletion of the file. If user supplies arguments with the script , then it works on those files... (1 Reply)
Discussion started by: rits
1 Replies

3. Homework & Coursework Questions

How to write script that behaves both in interactive and non interactive mode

Q. Write a script that behaves both in interactive and non interactive mode. When no arguments are supplied it picks up each C program from the directory and prints first 10 lines. It then prompts for deletion of the file. If user supplies arguments with the script , then it works on those files... (8 Replies)
Discussion started by: rits
8 Replies

4. Solaris

Direct/scsu access to unix account

Hey Is there any way to differentiate if a user is logged directly into a UNIX functional account or if they have scsu'ed into the functional account? Cheers Paul (2 Replies)
Discussion started by: runnerpaul
2 Replies

5. Shell Programming and Scripting

Manipulating sed Direct Input to Direct Output

Hi guys, been scratching round the forums and my mountain of resources. Maybe I havn't read deep enough My question is not how sed edits a stream and outputs it to a file, rather something like this below: I have a .txt with some text in it :rolleyes: abc:123:xyz 123:abc:987... (7 Replies)
Discussion started by: the0nion
7 Replies

6. Red Hat

Su-only account with ssh capability and no interactive login

Hello experts, Is it possible to have an user account on RHEL 6.3 as a su-only account, but with ssh capability and no interactive login? Let me elaborate. Say, we have a cluster of 5 RHEL 6.3 servers and an user account (strmadmin) on each of the server as an su-only... (1 Reply)
Discussion started by: naveendronavall
1 Replies

7. AIX

Can I restrict IP and AIX account at the same time?

Hi Everyone, I want to know is it possible, restrict user login to AIX by IP and user name? e.g. user alice can login to AIX (via ssh or telnet) from 192.168.1.100 user alice can not login to AIX (via ssh or telnet) from 172.16.1.100 user bob can not login to AIX (via ssh or telnet)... (6 Replies)
Discussion started by: nnnnnnine
6 Replies

8. AIX

Procedure to restrict direct access as root

Hello, I would like to confirm whether the below procedure is correct. disabled direct super user access on AIX server using below procedure. Please let me know if there is any additional step. 1) confirm the access to HMC, console to reach the LPARs 2) chuser rlogin=false root ... (3 Replies)
Discussion started by: dio34
3 Replies

9. UNIX for Beginners Questions & Answers

Allow AD service account SSH to Linux systems without 2FA

I have Windows AD server and all of the linux computers are joined to AD. Recently, 2FA has been activated, I wish to exclude some of the domain service accounts from 2FA # less /etc/pam_radius_acl.conf sshd:* # /etc/pam.d/sshd auth required pam_sepermit.so auth requisite... (0 Replies)
Discussion started by: davidpar007
0 Replies

LEARN ABOUT REDHAT

http::message

HTTP::Message(3)					User Contributed Perl Documentation					  HTTP::Message(3)

NAME

       HTTP::Message - Class encapsulating HTTP messages

SYNOPSIS

	package HTTP::Request;	# or HTTP::Response
	require HTTP::Message;
	@ISA=qw(HTTP::Message);

DESCRIPTION

       An "HTTP::Message" object contains some headers and a content (body).  The class is abstract, i.e. it only used as a base class for
       "HTTP::Request" and "HTTP::Response" and should never instantiated as itself.

       The following methods are available:

       $mess = HTTP::Message->new
	   This is the object constructor.  It should only be called internally by this library.  External code should construct "HTTP::Request"
	   or "HTTP::Response" objects.

       $mess->clone()
	   Returns a copy of the object.

       $mess->protocol([$proto])
	   Sets the HTTP protocol used for the message.  The protocol() is a string like "HTTP/1.0" or "HTTP/1.1".

       $mess->content([$content])
	   The content() method sets the content if an argument is given.  If no argument is given the content is not touched.	In either case the
	   previous content is returned.

       $mess->add_content($data)
	   The add_content() methods appends more data to the end of the current content buffer.

       $mess->content_ref
	   The content_ref() method will return a reference to content buffer string.  It can be more efficient to access the content this way if
	   the content is huge, and it can even be used for direct manipulation of the content, for instance:

	     ${$res->content_ref} =~ s/foo/bar/g;

       $mess->headers;
	   Return the embedded HTTP::Headers object.

       $mess->headers_as_string([$endl])
	   Call the as_string() method for the headers in the message.	This will be the same as:

	    $mess->headers->as_string

	   but it will make your program a whole character shorter :-)

       All unknown "HTTP::Message" methods are delegated to the "HTTP::Headers" object that is part of every message.  This allows convenient
       access to these methods.  Refer to HTTP::Headers for details of these methods:

	 $mess->header($field => $val);
	 $mess->push_header($field => $val);
	 $mess->init_header($field => $val);
	 $mess->remove_header($field);
	 $mess->scan(&doit);

	 $mess->date;
	 $mess->expires;
	 $mess->if_modified_since;
	 $mess->if_unmodified_since;
	 $mess->last_modified;
	 $mess->content_type;
	 $mess->content_encoding;
	 $mess->content_length;
	 $mess->content_language
	 $mess->title;
	 $mess->user_agent;
	 $mess->server;
	 $mess->from;
	 $mess->referer;
	 $mess->www_authenticate;
	 $mess->authorization;
	 $mess->proxy_authorization;
	 $mess->authorization_basic;
	 $mess->proxy_authorization_basic;

COPYRIGHT

       Copyright 1995-2001 Gisle Aas.

       This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself.

libwww-perl-5.65						    2001-11-15							  HTTP::Message(3)
All times are GMT -4. The time now is 07:20 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy