[Wylug-help] Smoothwall with UPS

Daniel Walker danielwalker at fastmail.fm
Sat, 1 Feb 2003 08:35:12 +0000


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Friday 31 January 2003 9:38 am, Gary Stainburn wrote:
> On Friday 31 Jan 2003 10:26 am, Phil Driscoll wrote:
> I and many others use passphrase-less ssh on a regular basis.  It make
> things a bit more secure, you could TCPWrap the ssh so it only accepts
> connections from your internal box.
You don't need to do this. Put a listen directive in your sshd_config which
tell it to only listen on the internal interface.

ListenAddress host|IPv4_addr:port



You could also set it up to only perform a partocular command if connected to
as a apecific user (usually used for backup commands as root)

PermitRootLogin forced-commands-only

Not quite sure wheree you set up the forced commands, admittedly.

Dan
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQE+O4bGC2kcpPIIs7gRAhnYAJ9NujIEr1QfO9jm8zYp6X4UTMYWtACfatZr
potYAs6FffXzOfUbwrK+urM=
=BN2M
-----END PGP SIGNATURE-----