On Wed, 2004-02-11 at 02:13, Greg Cox wrote: > > I am running an linux server, and I want to limit a logon id to > > three ip address. is there any way to do this with sshd? > > pam's pam_access module will do it. > > assuming a RH system... > > Create /etc/security/sshd_access.conf > ------ > -:dude:ALL EXCEPT 192.168.12.2 192.168.12.6 192.168.12.9 > +:ALL:ALL > ------ > > Then add it to /etc/pam.d/sshd: > account required pam_access.so accessfile=/etc/security/sshd_access.conf
Hmmm, very elegant... I just love PAM! I would go with defining the three addresses (and their keys) in: $HOME/.ssh/authorized_keys http://www.die.net/doc/linux/man/man8/sshd.8.html Good Luck -- TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug TriLUG Organizational FAQ : http://trilug.org/faq/ TriLUG Member Services FAQ : http://members.trilug.org/services_faq/ TriLUG PGP Keyring : http://trilug.org/~chrish/trilug.asc
