For When You Can't Have The Real Thing
[ start | index | login ]
start > SSH Key Limiting

SSH Key Limiting

Created by dave. Last edited by dave, 15 years and 138 days ago. Viewed 2,956 times. #2
[diff] [history] [edit] [rdf]
labels
attachments

Limiting SSH Keys

You can define keys in .ssh/authorized_keys so that when they are used, only one command is permitted to be run:

# Comments allowed at start of line
AAAAB2...19Q== john@example.net command="dump /home",no-pty,no-port-forwarding ssh-dss

You can also limit the source IP for the key use and other things.

See the man page for sshd under AUTHORIZED_KEYS FILE FORMAT.

no comments | post comment
This is a collection of techical information, much of it learned the hard way. Consider it a lab book or a /info directory. I doubt much of it will be of use to anyone else.

Useful:


snipsnap.org | Copyright 2000-2002 Matthias L. Jugel and Stephan J. Schmidt