Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: authentication method shell variable?

from [Greg Wooledge] Network Security [Permanent Link]
Subject: Re: authentication method shell variable?
Date: Mon, 28 Aug 2006 12:47:57 -0400 
On Mon, Aug 28, 2006 at 10:58:27AM -0400, Jaqui Greenlees wrote:

The fact that access to su is granted by
authentication to start the bash session, not when su
is invoked.


Nonsense.


the shell variable is only invoked by the shell during
the session start process to limit or allow the
access.


Gibberish.


In effect, I'm wanting to do exactly this, by using
the authentication method for the ssh tunnel to
determine the group membership. only thos using the ky
pair gt the access to admin tools.


That's what I just suggested.


This type of functionality would bnefit large networks
or web hosting companies that do allow ssh access to
account holders, yet not interfere with the remote
access for administration staff tasks. A trusted and
non trusted account holder status.
( trusted are the staff, non trusted ar the clients )


Just put the admin staff in the "wheel" group, and not the customers.
You don't need any fancy tricks here.  This is Unix 101 material.
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Permission denied (publickey,keyboard-interactive)., Pravin Jayakumar
Next by Date:  Re: Permission denied (publickey,keyboard-interactive), Holger van Lengerich
Previous by Thread:  Re: authentication method shell variable?, Jaqui Greenlees
Next by Thread:  Re: authentication method shell variable?, Atro Tossavainen
Indexes:  [Date] [Thread] [Top] [All Lists]