How to limit ssh access to specific users or groups - 代码天地

How to limit ssh access to specific users or groups

编程语言 2018-05-14 11:36:07 阅读次数: 2

posted on may 6, 2008 in howto, linux with 1 comment
Its sometimes necessary to limit who has access to a server via SSH. Most Linux security hardening checklist today require this to be enforced.
Fortunately this can be easily done with openSSH. Just edit the /etc/ssh/sshd_config file and add the desired directives shown below. You don’t need them all, just use what suits you needs.
openSSH provides 4 directives, AllowUsers, AllowGroups, DenyUsers and DenyGroups
AllowUsers buddy john doe

Only users buddy, john and doe will be able to log in via ssh.
AllowGroups sysadmin bkpadmin

Only users within groups sysadmin and bkpadmin will be able to log in via ssh.
DenyUsers rambo tina

This is the opposite of AllowUsers. All users except for rambo and tina will be able to log in via ssh.
DenyGroups hr payroll

This is the opposite of AllowGroups. All groups except for hr and payroll will be able to log in via ssh.

猜你喜欢

转载自nathan-wu.iteye.com/blog/731676

How to limit ssh access to specific users or groups

How to get root access for other users with the visudo

users-and-groups-in-linux

How to Use SSH Tunneling to Access Restricted Servers and Browse Securely

[P/M/K] How to select specific columns

How to ssh

Function Module: get all users who have specific role

Enabling access for network/remote users

jQuery validate and groups - how to avoid errorPlacement usage?

[Gym-102091E] How Many Groups

DevExpress-How to keep all the groups expanded

CSE 390A, Spring 2014 Assignment 4: Users, Groups, Permissions

Limit Search To Specific Directory Level Using mindepth and maxdepth

How to add and delete users on an Ubuntu 16.04?

生成 App 专用密码 [How to generate an app-specific password]

Android - Access app-specific files（不完整）

How to configure kerberos and SSH

Groups

How to Access Virtual Table directly

How to fix GC overhead limit exceeded in Eclipse

AWS助理架构师认证培训实操练习 | IAM Users & Groups Hands on

mac ssh报错： Bad owner or permissions on /Users/xxx/.ssh/config

How to let normal users shut down the computer in Linux

How to Access the Exchange (2013/2016) Admin Cente

How to Enable Remote Access to MySQL (ubuntu)

What Is ACL (Access Control List) and How to Configure It?

How to restrict folder access in asp.net

How can I recursively delete all files of a specific extension in the current directory?

关于 SAP AMDP 调用错误消息 client-specific and restricts access to a client

How to Limit NodeRunner.exe High Memory, CPU Usage

今日推荐

基于大语言模型的开源知识库问答系统 MaxKB GitHub Star 数量突破 5,000 个！

美国拟限制 AI 大模型出口中国和俄罗斯

苹果将与 OpenAI 达成协议，将 ChatGPT 应用于 iPhone

openKylin 社区生态委员会第六次会议圆满召开

阿里云正式发布通义千问 2.5

Python 3.13 发布首个 Beta：实验性自由线程模式和 JIT、改进交互式解释器

Stack Overflow 拿我的代码去训练 AI 大模型，还封了我的账号

Pop!_OS 的 COSMIC 桌面完成 App Store 上架工作

《2024 年一季度互联网投融资运行情况》研究报告

报告：Django 仍然是 74% 开发者的首选

15 年前上了“FFmpeg 耻辱柱”，今天他还得谢谢咱——腾讯QQPlayer一雪前耻？

TIOBE 5 月榜单：Fortran “复活”进入 Top 10

周排行

记一下去大梅沙的准备（2018-05-26）

Spring 注解事务

基于HTTP协议的客户端缓存

阿里云rds 备份和还原

[PHP] 几个拖慢 PHP 程序/API 运行速度的点

python 代码风格------------PEP8规则

js控制json生成菜单——自制菜单（一）

将字符串: 'k:1|k1:2|k2:3|k3:4 ' ,处理成 python 字典: {'k':1, 'k1':2, ...}

微信小程序转支付宝小程序

Qt551.窗口滚动条

每日归档

更多

2024-05-13(18)

2024-05-12(0)

2024-05-11(38)

2024-05-10(38)

2024-05-09(35)

2024-05-08(42)

2024-05-07(14)

2024-05-06(40)

2024-05-05(0)

2024-05-04(7)