[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] SCP-proxy / SFTP-proxy wanted only for seife@xxxxxxxxxxxxxxxx

To: "suse-security@xxxxxxxx" <suse-security@xxxxxxxx>
Subject: Re: [suse-security] SCP-proxy / SFTP-proxy wanted only for seife@xxxxxxxxxxxxxxxx
From: Dirk Schreiner <dirk.schreiner@xxxxxxx>
Date: Mon, 21 Jul 2003 10:31:42 +0200
Delivered-to: mailing list suse-security@xxxxxxxx
Delivery-date: Mon, 21 Jul 2003 10:36:10 +0200
Envelope-to: suse@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
In-reply-to: <20030720155506.GA28799@xxxxxxxxxxxxxxxx>
List-help: <mailto:suse-security-help@suse.com>
List-post: <mailto:suse-security@suse.com>
List-subscribe: <mailto:suse-security-subscribe@suse.com>
List-unsubscribe: <mailto:suse-security-unsubscribe-suse=archive.cert.uni-stuttgart.de@suse.com>
Mailing-list: contact suse-security-help@xxxxxxxx; run by ezmlm
References: <IGHFTROJ42A0OIA8QLMC03X1TEAJDC0.3f180fac@gonzo> <3F19CAE8.50706@xxxxxxx> <20030720155506.GA28799@xxxxxxxxxxxxxxxx>

Hi *,

sorry, sorry for mailing to the List, but
seife@xxxxxxxxxxxxxxxx
accepts no mail from MTA behind NAT-GW.
;-((

(Checks the HELO-String, as if this would help anything.)

Greetings
     Dirk


Following for  seife@xxxxxxxxxxxxxxxx:


Hi,

das letzte Mal der Umweg über die Liste.

Stefan Seyfried schrieb:

On Sun, Jul 20, 2003 at 12:49:12AM +0200, Dirk Schreiner wrote:

As usual this is done in known_hosts.
To force a single Command in in the Key just
add the command as shown in front of the Key
in the same Line in known_hosts.



s/known_hosts/authorized_keys/


Danke.

command="ssh -l user Server.com" ...key..



and on server.com also allow only one command. This can be tricky, if
you have varying options but i solved this by using a perl wrapper
for rsyncing my servers onto the backup machine.


Es war der Sinn nur den einen ssh --> intern zu ermöglichen, wo
ein vollwertiger ssh-Zugang bereitgestellt wird.
Extern hat jeder User sein eigenes Key-Paar.
Für einen auf 3 spezifische Befehle eingeschränkten ssh-Zugang
macht der Perl-Wrapper aber wirklich Laune ;-)

Dr. Christoph Wegener schrieb:



btw, *please* http://learn.to/quote



UPS, wer solche Links mailt, sollte nicht in der Zeile
drüber einen Quoting-Fehler machen. ;-^


Gruss
Dirk


P.S. Zitateinleitungen ohne Zitat sollten vermieden werden.



--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here

References:
- Re: RE: RE: [suse-security] SCP-proxy / SFTP-proxy wanted
  - From: Dr. Christoph Wegener
- Re: [suse-security] SCP-proxy / SFTP-proxy wanted
  - From: Dirk Schreiner
- Re: [suse-security] SCP-proxy / SFTP-proxy wanted
  - From: Stefan Seyfried

Prev by Date: Re: [suse-security] strange behaviour useradd / usermod
Next by Date: [suse-security] IMAP and squirrelmailq
Previous by thread: Re: [suse-security] SCP-proxy / SFTP-proxy wanted
Next by thread: Re: [suse-security] SCP-proxy / SFTP-proxy wanted
Index(es):
- Date
- Thread