Heres the deal: vi /etc/inetd.conf comment out the telnet line and uncomment the ssh line < out a '#' in front of telnet and remove the '#' from in fornt of ssh > then restart your net services at the command line: # killall -HUP inetd that should stop the telnet service and start the ssh service. next: if your guys have static IP's that they will be ssh'ing from .. use /etc/hosts.allow add like: ALL:xxx.xxx.xxx.xxx where xxx.xxx.xxx.xxx is the IP of your 'allowed people' add one per user. If they have dynamic IP's give a range like: ALL: xxx.xxx.xxx.0 <the zero will make it a range depending on the subnet mask> in /etc/hosts.deny add: ALL: ALL for safe keepers restart your net services again : killall -HUP inetd That should satisfy your needs . any more questions drop me a note [EMAIL PROTECTED] On 03-May-99 [EMAIL PROTECTED] wrote: > On a RedHat 5.1 Linux machine I have an accout that I want to be shared by > three people. This three people must have full access. > > I want to setup this account so the users can login only from their Linux > machines (host1.domain1, host2,domain2 and host3.domain3). Also, I want to > allow them to connect only ussing ssh, but no telnet. > > I modified the file /etc/security/access.conf, adding the line: > > -:account_name:ALL EXCEPT LOCAL host1.domain1 host2.domain2 host3.domain3 > > but it wasn't work. I don't know what else to do. Also, I have no ideea yet > how to reject all telnet connections, but to allow connection with ssh. > > A complete and concrete example wich tell me what files to modify and how to > modify should be perfect. > > Thanx in advance, > George Adam > > P.S. I read manuals and howto pages. > > > --------------------------------------------------- > Get free personalized email at http://www.iname.com ----------------------------------------- Tony Hernandez ::: Intellon Corporation MCP A+ Workstation Administrator -----------------------------------------
