[prev in list] [next in list] [prev in thread] [next in thread] 

List:       secure-shell
Subject:    Re: How can I tell openssh client to prompt for a username
From:       "Parkes, Lloyd" <Lloyd.Parkes () eds ! com>
Date:       2004-07-13 21:30:04
Message-ID: CDD7DB34-D513-11D8-99CB-000D93515822 () eds ! com
[Download RAW message or body]

I've managed to *cough* bypass *cough* such 'security' in less than 
thirty seconds. AFAIK the only way to lock this stuff down is to make 
user home directories, .ssh directories and authorized_keys files on 
the remote machine owned by root and to only permit specific commands 
to be run by specific keys. That just seems to be the way SSH works. 
Even then if you let people run a shell, they can probably find a way 
to get the shell to run scp.

On 11/07/2004, at 1:04 AM, Aman Raheja wrote:

> I think you would rather create a script as a wrapper to get this
> functionality
>
> <<< snip ssh_wrap.sh>>>
>
> #!/bin/bash
> echo -n "Username: "
> read USER
> ssh -l $USER example.com
> <<< snip ssh_wrap.sh>>>

Thanks,
Lloyd Parkes

Wellington Unix Team
EDS (New Zealand) Limited
Phone +64 4 474 5732
Fax +64 4 474 5094

[prev in list] [next in list] [prev in thread] [next in thread]