Don’t.
Generally, these things should be used to alert if an internal service has
been compromised (akin to using Canary Tokens), and the key copied. It is,
at best, a way to hear someone knocking.
On Wed, May 8, 2019 at 15:59 Stefan R. Filipek wrote:
> There's a blog post going around that
There's a blog post going around that has an interesting use of SSH
authorized_keys restrict + command:
https://kulinacs.com/ssh-honey-keys/
If you don't want to follow the link, it basically uses the
well-documented authorized_keys feature to restrict a login for an ssh
key to invoking a single
2 matches
Mail list logo
