On 07/11/2013 11:39 PM, KodaK wrote:
This only works for sshd, obviously. We do currently have ftp and telnet open (yeah, I know) but I'm trying to get those turned off. In the meantime I can use tcp-wrappers to only allow those machines that need to connect. This is sub-optimal, since unauthorized users may be able to telnet in from those machines.
tcp wrappers support netgroups (iirc), you could use that too (you cannot mix hosts and users though, so you should create netgroups of users. -- groet, natxo _______________________________________________ Freeipa-users mailing list [email protected] https://www.redhat.com/mailman/listinfo/freeipa-users
