ssh_keyfile_restrict_commands

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision
Previous revision
ssh_keyfile_restrict_commands [2017/02/20 12:24] – created brotssh_keyfile_restrict_commands [2017/02/20 12:30] (current) – [Rsync] brot
Line 25: Line 25:
 no-X11-forwarding no-X11-forwarding
              Forbids X11 forwarding when this key is used for authentication.  Any X11 forward requests by the client will return an error.              Forbids X11 forwarding when this key is used for authentication.  Any X11 forward requests by the client will return an error.
 +(...)
 +restrict
 +             Enable all restrictions, i.e. disable port, agent and X11 forwarding, as well as disabling PTY allocation and execution of ~/.ssh/rc.  If any future restriction capabilities
 +             are added to authorized_keys files they will be included in this set.
  
 </code> </code>
Line 39: Line 43:
  
 <code - /home/user/.ssh/authorized_keys> <code - /home/user/.ssh/authorized_keys>
-from="192.168.0.1",command="rsync --server ....",no-port-forwarding,no-X11-forwarding ssh-rsa AA10923809218309...+from="192.168.0.1",command="rsync --server ....",restrict ssh-rsa AA10923809218309...
 </code> </code>
  
  
  • ssh_keyfile_restrict_commands.txt
  • Last modified: 2017/02/20 12:30
  • by brot