[lugm.org] SSH Tunneling vs VPN
Dafilix
dafilix at yahoo.fr
Sat May 23 19:48:44 UTC 2015
Hello logan,
Its david, Abc motors, do you remember me?.
David
Envoyé de mon iPhone
> Le 19 mai 2015 à 23:18, Keshwarsingh Nadan <Keshwarsingh.Nadan at servihoo.net> a écrit :
>
> "Is there any way to create a very limited user on linux for this purpose?”
>
> Your can accomplish your wishes by following;
>
> http://olivier.sessink.nl/jailkit/index.html#intro
>
> Regards,
> K
>
> On 5/18/15, 20:09, "Yuv Joodhisty" <locustv2 at gmail.com> wrote:
>
> What do you mean by a jailkit Keshwarsingh?
>
> @Loganaden - actually its just a ubuntu server running on my VM and im using putty on windows to ssh to the server. everything works until i add the PermitTTY 0 to my sshd config and putty cant open the ssh connection.
>
>> On Mon, May 18, 2015 at 1:42 PM, Keshwarsingh Nadan <Keshwarsingh.Nadan at servihoo.net> wrote:
>> And who is "puffy software" ?
>>
>> Sent from my iPhone
>>
>>> On May 18, 2015, at 12:08, Loganaden Velvindron <gnukid1 at yahoo.co.uk> wrote:
>>>
>>> Is this a server in production ?
>>>
>>> I can answer this question through my own company (Puffy software).
>>>
>>>
>>>
>>> On Monday, 18 May 2015, 10:29, Yuv Joodhisty <locustv2 at gmail.com> wrote:
>>>
>>>
>>> Hey guys,
>>>
>>> I looked at your suggested methods and it seems that the PermitTTY is a much cleaner solution.
>>>
>>> I just tried using this method by adding a group 'sshusers' which then i allowed using AllowGroups sshusers followed by PermitTTY 0.
>>> When i try to ssh using this config, i am getting a connection error. It doesn't even prompt for the user's password. Any idea?
>>>
>>> Also how can i have PermitTTY 0 for only a specific group while the rest can run a shell?
>>>
>>> Thanks
>>> Yuv
>>>
>>> On Fri, May 15, 2015 at 8:15 PM, Keshwarsingh Nadan <Keshwarsingh.Nadan at servihoo.net> wrote:
>>> Chroot ? Much better?
>>>
>>> Sent from my iPhone
>>>
>>>> On May 15, 2015, at 20:09, Loganaden Velvindron <gnukid1 at yahoo.co.uk> wrote:
>>>>
>>>> Dear Yuv,
>>>>
>>>> Please set a User/Match rule in sshd for this user and disable PTY allocation using:
>>>>
>>>> PermitTTY 0.
>>>>
>>>> No TTY allocation doesn't allow a user to run a shell. He can only tunnel :)
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> On Thursday, 14 May 2015, 14:01, Yuv Joodhisty <locustv2 at gmail.com> wrote:
>>>>
>>>>
>>>> I prefer SSH Tunneling also and it is easier to configure than a VPN.
>>>>
>>>> But i have some question though. Let's say you have a small server and other users need to access it via ssh tunneling. Is there any way to create a very limited user on linux for this purpose? A user who cannot do any root commands, sudo su, etc.., or even cannot do anything at all. I don;t know much about user administration on linux.
>>>>
>>>> Thanks
>>>> Yuv
>>>>
>>>> On Thu, May 7, 2015 at 10:24 AM, selven <pcthegreat at gmail.com> wrote:
>>>> I prefer to do tunneling via ssh that to fiddle with anything vpn, though i don't do these for users. Mostly for private use.
>>>>
>>>> On Wed, May 6, 2015 at 8:04 PM, Yuv Joodhisty <locustv2 at gmail.com> wrote:
>>>> Hey guys, what do you think about SSH Tunneling, a.k.a Poor Techie's VPN vs VPN. Anyone here got experience in using any of these want to share some thoughts?
>>>>
>>>> Regards
>>>> Yuv
>>>>
>>>> __________________________________________________________
>>>> Linux User Group of Mauritius (LUGM) Discuss mailing list
>>>> Website: http://lugm.org
>>>> Mailing list archive: http://discuss.lugm.org/pipermail/discuss_discuss.lugm.org/
>>>> Forum: http://lugm.org/forum/
>>>> IRC: #linux.mu on Freenode
>>>>
>>>>
>>>>
>>>> --
>>>> Pirabarlen Cheenaramen | $3|v3n
>>>> L'escalier
>>>> mobile: +230 549 24 918
>>>> blog || fb || pgp
>>>> /*memory is like prison*/ (user==selven)?free(user):user=malloc(sizeof(brain));
>>>> P Save electricity & disk space. Cat this mail to >/dev/null 2>&1 after use.
>>>>
>>>> __________________________________________________________
>>>> Linux User Group of Mauritius (LUGM) Discuss mailing list
>>>> Website: http://lugm.org
>>>> Mailing list archive: http://discuss.lugm.org/pipermail/discuss_discuss.lugm.org/
>>>> Forum: http://lugm.org/forum/
>>>> IRC: #linux.mu on Freenode
>>>>
>>>>
>>>> __________________________________________________________
>>>> Linux User Group of Mauritius (LUGM) Discuss mailing list
>>>> Website: http://lugm.org
>>>> Mailing list archive: http://discuss.lugm.org/pipermail/discuss_discuss.lugm.org/
>>>> Forum: http://lugm.org/forum/
>>>> IRC: #linux.mu on Freenode
>>>>
>>>>
>>>> __________________________________________________________
>>>> Linux User Group of Mauritius (LUGM) Discuss mailing list
>>>> Website: http://lugm.org
>>>> Mailing list archive: http://discuss.lugm.org/pipermail/discuss_discuss.lugm.org/
>>>> Forum: http://lugm.org/forum/
>>>> IRC: #linux.mu on Freenode
>>>
>>> __________________________________________________________
>>> Linux User Group of Mauritius (LUGM) Discuss mailing list
>>> Website: http://lugm.org
>>> Mailing list archive: http://discuss.lugm.org/pipermail/discuss_discuss.lugm.org/
>>> Forum: http://lugm.org/forum/
>>> IRC: #linux.mu on Freenode
>>>
>>>
>>>
>>> __________________________________________________________
>>> Linux User Group of Mauritius (LUGM) Discuss mailing list
>>> Website: http://lugm.org
>>> Mailing list archive: http://discuss.lugm.org/pipermail/discuss_discuss.lugm.org/
>>> Forum: http://lugm.org/forum/
>>> IRC: #linux.mu on Freenode
>>
>> __________________________________________________________
>> Linux User Group of Mauritius (LUGM) Discuss mailing list
>> Website: http://lugm.org
>> Mailing list archive: http://discuss.lugm.org/pipermail/discuss_discuss.lugm.org/
>> Forum: http://lugm.org/forum/
>> IRC: #linux.mu on Freenode
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://discuss.lugm.org/pipermail/discuss_discuss.lugm.org/attachments/20150523/b3210a4e/attachment.html>
More information about the Discuss
mailing list