On Fri, Jun 25, 2004 at 03:45:24PM +0900, Rob wrote: > > Hi, > > I have a cluster of PCs, on which the 'slaves' used to only allow rsh > connections, to execute commands, but no logins. > > I have removed the r-commands, and want to use the ssh command family > instead. Although 'ssh slaveN command' works fine, this also allows login > to the slave PC, simply by typing 'ssh slaveN'. > > How can I configure sshd, so that it will allow remote command execution, > but will refuse logins? > > Thanks, > Rob.
I'd say you could give the users no shell (if they shouldn't have shell access to the machine in any other way), by setting their default shell to /sbin/nologin. You can do that with the chsh(1) command. Then again, they may still be able to start a shell with 'ssh <remote-machine> tcsh' so maybe you should chmod /bin/sh and /bin/tcsh to 550. GH _______________________________________________ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"