[Gllug] Limiting SSH access

French, Alastair Alastair.French at racalinstruments.com
Thu Apr 3 10:44:45 UTC 2003 

I had suggested this, but as the machine is behind the firewall and I
believe we are running NAT, this won't work as it will have to allow
connections from the firewall and that could then be anyone. 

This won't stop anyone who has accessed the box, access to other machines
though would it?

(Excuse the lack of grammer, it's been one of those weeks)

Alastair

> -----Original Message-----
> From: Kristian Davies [mailto:kristian at ELIXIR-STUDIOS.CO.UK]
> Sent: Thursday, April 03, 2003 11:10 AM
> To: 'gllug at linux.co.uk'
> Subject: RE: [Gllug] Limiting SSH access 
> 
> 
> If the only people who need to use it are the one company 
> with static IP
> then you could use hosts_allow.
> 
> Not sure if know what im talking about but it's something i 
> sorted out the
> other day...
> 
> 
> Kristian 'linux newb' Davies
> 
> -----Original Message-----
> From: French, Alastair [mailto:Alastair.French at racalinstruments.com]
> Sent: 03 April 2003 11:02
> To: 'gllug at linux.co.uk'
> Subject: RE: [Gllug] Limiting SSH access 
> 
> 
> Thanks for all the replies
> 
> I have passed the details onto our sysadmins.
> 
> They only asked me as they know I run linux at home and they 
> are all Windows
> people.
> 
> The machine in question will be running accounts s/w and need to be
> accessible by the external company that do our accounts 
> (thats why they
> don't want in the DMZ). They supplied the box and set it up 
> intially. I get
> the feeling that our guys would like to secure it a bit more 
> and would like
> to have some ideas before going back to the accounts lots 
> with some ideas.
> 
> Most of the NT boxes have the appropriate restrictions in 
> place to stop
> unauth access to critical stuff, but I guess this is just an extra
> precaution.
> 
> Thanks for all the ideas
> 
> Alastair
> 
> 
> *********************************************************************
> IMPORTANT NOTICE
> 
> The information contained in this e-mail is confidential. It may also
> be legally privileged. It is intended only for the stated
> addressee(s) and access to it by any other person is unauthorised. If
> you are not an addressee, you must not disclose, copy, circulate or
> in any other way use or rely on the information contained in this
> e-mail. Such unauthorised use may be unlawful.
> 
> If you have received this e-mail in error, please inform Racal
> Instruments Ltd. immediately by emailing
> postmaster at racalinstruments.com or phoning +44 (0)1628 604455 (ask
> for the I.T. Dept.) and delete it and all copies from your system.
> 
> www.racalinstruments.com
> 
> *********************************************************************
> 
> 
> -- 
> Gllug mailing list  -  Gllug at linux.co.uk
> http://list.ftech.net/mailman/listinfo/gllug
> 
> 
> --------------------------------------------------------------
> -------------
> The information transmitted is intended only for the
> person or entity to which it is addressed and may
> contain confidential and/or privileged material. 
> Any review, retransmission, dissemination or other
> use of, or taking of any action in reliance upon, this
> information by persons or entities other than the
> intended recipient is prohibited.  If you received this
> in error, please contact the sender and delete the
> material from any computer.
> --------------------------------------------------------------
> -------------
> 
> 
> -- 
> Gllug mailing list  -  Gllug at linux.co.uk
> http://list.ftech.net/mailman/listinfo/gllug
> 


*********************************************************************
IMPORTANT NOTICE

The information contained in this e-mail is confidential. It may also
be legally privileged. It is intended only for the stated
addressee(s) and access to it by any other person is unauthorised. If
you are not an addressee, you must not disclose, copy, circulate or
in any other way use or rely on the information contained in this
e-mail. Such unauthorised use may be unlawful.

If you have received this e-mail in error, please inform Racal
Instruments Ltd. immediately by emailing
postmaster at racalinstruments.com or phoning +44 (0)1628 604455 (ask
for the I.T. Dept.) and delete it and all copies from your system.

www.racalinstruments.com

*********************************************************************


-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug

More information about the GLLUG mailing list