[wellylug] iptables - ssh

Mark Signal mark at databackup.co.nz
Wed Sep 21 08:41:13 NZST 2005


Hi

Can anyone point me to some info for this please.

I have 2 debian servers which remote users connect to via ssh. They have no 
shell and only do port forwarding. I can control the ports that they can 
make connections to via their authorized keys file however this doesn't 
prevent them from setting up listening connections - i.e. allowing them to 
receive connections from other processes. While this represents a minor risk 
I would ideally like to limit each user to be able to listen on just one 
unique port each. Can iptables do this or is anyone aware of any other way 
of doing this?

regards


Mark Signal 



-- 
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.344 / Virus Database: 267.11.3/107 - Release Date: 20/09/2005




More information about the wellylug mailing list