> Are you absolutely sure you don't want to forward port 22/tcp to the > inside machine, and so make your system a tiny bit simpler? > I am not sure. The idea is to protect the inner system. It may be that a simple port forwarding would accomplish that but I am not sure I can convince my boss. If I were to do a simple port forwarding this bastion machine would only have port 22 open to the outside world and then a port to the inner system. A user will not login to it but only connect to it. I will look into port forwarding. Thanks
> In any case, can you explain what isn't working? "being recalcitrant" > isn't the most descriptive failure in the world, and the examples in the > manual page are fairly straight forward for running commands... > Sorry I have copious debug output but I hesitated to put that in since I was really looking for pointers to online guides. I did see lots of good examples in the man pages and other place all for commands. > My guess is that you are setting the forced command to 'ssh ...', which > is failing because it doesn't have access to the users public key, Ah this might be it. > and/or because it doesn't have access to a pty, but guessing is ... I did use -t for the pty. Thanks, Daniel, this was helpful. I will go and a mmend something and if it doesn't work I will send some more details. Peace, Lois _______________________________________________ Tech mailing list [email protected] http://lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
