Nico De Ranter: > > The idea is to setup a server which is available from the Internet for 1 > specific user using scp only, but all other users can get full ssh > access when they are connecting from my internal network only.
See man 5 sshd_config for the option AllowUsers. You can qualify
usernames with a hostname like [EMAIL PROTECTED] Wildcards are allowed, too, so
it should be possible to do something like
AllowUsers scponly [EMAIL PROTECTED]
But I am not sure about the "localdomain" part. It might be easier to
run two instances of SSH on the machine. One of them listens on a local
interface, the other one on the public interface with the restriction
to the scponly user.
J.
--
When I get home from the supermarket I don't know what to do with all the
plastic.
[Agree] [Disagree]
<http://www.slowlydownward.com/NODATA/data_enter2.html>
signature.asc
Description: Digital signature
