Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Limit commands

from [Jonathan Villa] Network Security [Permanent Link]
Subject: Limit commands
Date: Thu, 28 Apr 2005 16:35:14 -0500 (CDT) 

I've read over and over documentation concerning per-account server config and
forced commands...

Perhaps my understanding is incorrect, but I've gathered that I can force the
execution of a particular command upon login...

The command I want to execute is "/usr/bin/cvs server" although, for testing, 
I'm
simply trying /bin/echo a test

this is my setup

Fedora Code 3
OpenSSH_3.9p1, OpenSSL 0.9.7a Feb 19 2003
SSH 2 only allowed

Public key authentication works flawlessly for the past several months


On server I have following

~/.ssh/authorized_keys
~/.ssh2/myuser.pub
~/.ssh2/authorization

In ~/.ssh2/authorization I have
#SSH 2 only
Key myuser.pub
Command "/bin/echo a test"

and when I login in via putty... nothing happens... no logs, nothing...

ideally, once I get this set up, I would like to remove the .ssh2 directory and 
just
the .ssh.... Also, I though I read in O'Reilly's SSH book that "Your 
authorization
file can contain not only keys but also other keywords or options to control 
the SSH
server in powerful ways"

I don't see this happening...

Totally clueless right now...

-- 
Jonathan
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  scp and prompting for password, DDecounter
Next by Date:  Port forwarding to listen on designated interface, Josh Cole
Previous by Thread:  scp and prompting for password, DDecounter
Next by Thread:  Re: Limit commands, Darren Tucker
Indexes:  [Date] [Thread] [Top] [All Lists]