On 10/29/05, jonathan gonzalez <[EMAIL PROTECTED]> wrote:
> about this theme a trick can be done, that of course is not disable as
> it sounds the user access.
>
> PAM_file can be used for ssh connections. This feature reads from a file
> (i.e. in the root directory) a list of allowed users.
>
> If
answering to myself, i post this trick in the past in another list.
http://www.trustix.org/wiki/index.php/Restrict_SSH_per_user
Hope this helps!!!
jonathan
Travis H. wrote:
ssh need to be open on WAN interface and all user that have real shell
could be disabled for security concern.
Be c
about this theme a trick can be done, that of course is not disable as
it sounds the user access.
PAM_file can be used for ssh connections. This feature reads from a file
(i.e. in the root directory) a list of allowed users.
If a user is in the list he can get in, else, he can't. It's clean
> ssh need to be open on WAN interface and all user that have real shell
> could be disabled for security concern.
Be careful when trying to disable users via their login shell:
http://www.csh.rit.edu/~psionic/articles/ssh-security/
--
http://www.lightconsulting.com/~travis/ -><-
"We already hav
Right just like pfsense pure-ftpd package does.
ssh need to be open on WAN interface and all user that have real shell
could be disabled for security concern.
Unfortunatly authpf is a user shell not a deamon and does not have a any
authentication mecanism.
On 10/26/2005 1:40 PM, Bill Marque
On 10/26/05, Scott Ullrich <[EMAIL PROTECTED]> wrote:
> Is there any way to easily hook pam/radius up to authpf?
Yes, but that handles the passwords, not the fact that the user needs
to have an account on the box (radius doesn't give back UID/GID and
shell information).
--Bill
Is there any way to easily hook pam/radius up to authpf?
On 10/26/05, Bill Marquette <[EMAIL PROTECTED]> wrote:
> On 10/26/05, D.Pageau <[EMAIL PROTECTED]> wrote:
> > I'm currently building a new package for pfsense, authpf.
>
> I'm curious how you plan on adding authentication? authpf (last I
>
On 10/26/05, D.Pageau <[EMAIL PROTECTED]> wrote:
> I'm currently building a new package for pfsense, authpf.
I'm curious how you plan on adding authentication? authpf (last I
looked) requires accounts on the system running authpf as it runs as
the users shell.
--Bill
On 10/26/05, D.Pageau <[EMAIL PROTECTED]> wrote:
> I'm currently building a new package for pfsense, authpf.
>
> authpf is an authentification shell that can change pf filterrules
> according to the authentificated user. Kind of port knocking, but much
> more cleaner.
>
> http://www.openbsd.org/fa
That doc is somewhat getting old now. Read that and then refer to:
http://cvs.pfsense.com/cgi-bin/cvsweb.cgi/tools/pkg_config.xml?rev=1.175
http://cvs.pfsense.com/cgi-bin/cvsweb.cgi/tools/packages/
Scott
On 9/7/05, Gary Buckmaster <[EMAIL PROTECTED]> wrote:
> Dominic,
>
> The pfSense package
Dominic,
The pfSense packages are very easy to build. You'll find enough to get you
started in the Developer's Docs part of the website:
http://www.pfsense.org/index.php?id=30
Best,
Gary
-Original Message-
From: D.Pageau [mailto:[EMAIL PROTECTED]
Sent: Wednesday, September 07, 2005 9:0
11 matches
Mail list logo