Re: suggestion for the restricted ssh shell
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 At some point hitherto, John Abreau hath spake thusly: > "Derek D. Martin" <[EMAIL PROTECTED]> writes: > > > Feel free to have a look. http://www.pizzashack.org/rssh/ > > I took a look at it, and found you've hit on one of my pet peeves: > when you untar it, your tarball makes a mess in the current directory. > I'd suggest having it untar into an "rssh-0.9.1" subdirectory instead. Oops! I meant to; I hate that too. That said, I've gotten into the habit of checking all unknown tar balls with tar -t... But this is fixed now. Thanks. - -- Derek Martin [EMAIL PROTECTED] - - I prefer mail encrypted with PGP/GPG! GnuPG Key ID: 0x81CFE75D Retrieve my public key at http://pgp.mit.edu Learn more about it at http://www.gnupg.org -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE9YQ9hdjdlQoHP510RAl6gAJ9XtJigK/UNEmWN4SnwP6beHngxNACeJMId 4H8T0WL60sQaWhYY/5btKRo= =5ti5 -END PGP SIGNATURE- ___ gnhlug-discuss mailing list [EMAIL PROTECTED] http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss
Re: suggestion for the restricted ssh shell
"Derek D. Martin" <[EMAIL PROTECTED]> writes: > Feel free to have a look. http://www.pizzashack.org/rssh/ I took a look at it, and found you've hit on one of my pet peeves: when you untar it, your tarball makes a mess in the current directory. I'd suggest having it untar into an "rssh-0.9.1" subdirectory instead. -- John Abreau / Executive Director, Boston Linux & Unix ICQ 28611923 / AIM abreauj / JABBER [EMAIL PROTECTED] / YAHOO abreauj Email [EMAIL PROTECTED] / WWW http://www.abreau.net / PGP-Key-ID 0xD5C7B5D9 PGP-Key-Fingerprint 72 FB 39 4F 3C 3B D6 5B E0 C8 5A 6E F1 2C BE 99 Some people say, "The enemy of my enemy is my friend." I often respond, "When elephants fight, it's the grass that gets trampled." msg00259/pgp0.pgp Description: PGP signature
Re: suggestion for the restricted ssh shell
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 At some point hitherto, John Abreau hath spake thusly: > Derek; > > In regards to the dummy shell you wrote that restricts itself to scp and > sftp-server commands, it might be useful to also permit imapd and popd. It's not a bad idea, but I think it would be easy to make any number of requests like this. Someone will think it's a good idea to add lpr to the list... and so on. I really don't want to get into the role of writing a configurable restricted shell... OTOH, I have made some updates to the shell, including a cheesy, home-grown configure/make build environment, and several bugs. I still don't have any docs though. ;-) Feel free to have a look. http://www.pizzashack.org/rssh/ > I use fetchmail through an ssh tunnel, where it invokes imapd in > preauth mode. Here's what I have in my .fetchmailrc: I've always thought this was really cool. Never got around to setting it up though. - -- Derek Martin [EMAIL PROTECTED] - - I prefer mail encrypted with PGP/GPG! GnuPG Key ID: 0x81CFE75D Retrieve my public key at http://pgp.mit.edu Learn more about it at http://www.gnupg.org -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE9YJ9ddjdlQoHP510RAoiYAJ9RcLnyXzwffuyInz2JTVVqZEwD4ACfXuP5 s+5b8v8vTO4NnqS9yw3vDJE= =qJyl -END PGP SIGNATURE- ___ gnhlug-discuss mailing list [EMAIL PROTECTED] http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss
suggestion for the restricted ssh shell
Derek; In regards to the dummy shell you wrote that restricts itself to scp and sftp-server commands, it might be useful to also permit imapd and popd. I use fetchmail through an ssh tunnel, where it invokes imapd in preauth mode. Here's what I have in my .fetchmailrc: poll asgard with proto IMAP auth ssh plugin 'ssh %h /usr/sbin/imapd' -- John Abreau / Executive Director, Boston Linux & Unix ICQ 28611923 / AIM abreauj / JABBER [EMAIL PROTECTED] / YAHOO abreauj Email [EMAIL PROTECTED] / WWW http://www.abreau.net / PGP-Key-ID 0xD5C7B5D9 PGP-Key-Fingerprint 72 FB 39 4F 3C 3B D6 5B E0 C8 5A 6E F1 2C BE 99 Some people say, "The enemy of my enemy is my friend." I often respond, "When elephants fight, it's the grass that gets trampled." msg00253/pgp0.pgp Description: PGP signature