[clue-admin] Please review Member Accounts Plan on the wiki
David Anselmi
anselmi at anselmi.us
Thu Jan 6 21:51:19 MST 2005
Collins Richey wrote:
> On Wed, 05 Jan 2005 18:48:01 -0700, David Anselmi <anselmi at anselmi.us> wrote:
[...]
>>What would it take to support rsync in addition to sftp?
>
> Hmm? I haven't found any limited shells with that capability, other
> than the obvious "real" shells which we don't want to support. If you
> know of such a beast, we could consider it. I'll do some
> experimentation.
>
>> Could the command option in authorized_keys be used to restrict
>> members to a small set of commands (rsync, sftp, scp)?
>
> I'm not familiar with this. Would this require an actual login shell?
Yes, but the command option limits the commands that ssh will run for
that key. The idea is to use the ssh config to limit people in a more
flexible way than using sftp as the shell.
>> Will ssh work if the member doesn't have write permission on
>> authorized_keys (which may mean he doesn't own it either)?
[...]
> But, after reading about the authorized_keys file, it would seem that
> users with write access to this file could insert keys with almost any
> command and thus subvert the security setup? Would you comment on
> this, please. Could this be used to get a "real" shell on the account?
Yes, that's why the user can't have write access to the authorized_keys
file (and probably the .ssh dir too).
Dave
More information about the clue-admin
mailing list