Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 1 Aug 2008 14:16:07 +0200
From:      <karim.bourenane@orange-ftgroup.com>
To:        "Ed Schouten" <ed@80386.nl>
Cc:        FreeBSD Current <freebsd-current@freebsd.org>
Subject:   RE: [BSD6] SSH Restriction
Message-ID:  <EB0526E758E4764B9B5186295C5790C901A7D073@PUEXCBJ0.nanterre.francetelecom.fr>
In-Reply-To: <20080801121004.GO99951@hoeg.nl>
References:  <EB0526E758E4764B9B5186295C5790C901A7CF4E@PUEXCBJ0.nanterre.francetelecom.fr> <20080801121004.GO99951@hoeg.nl>
next in thread | previous in thread | raw e-mail | index | archive | help 

Hi Ed

Thank for your reply and information=2E=20
Just confirmation, login=2Econf is used juste for login access as telnet,=
 not for ssh=2E Its right ?

So we waiting your reply for openssh=2E

Thanks you very much=2E

Regards

     Karim Bourenane
112 Av=2E Charles de Gaules
92520 Neuilly S/Seine
Phone:	+33156 76 35 52
Fax:	+33156 76 35 04
http://www=2Eequant=2Ecom



-----Original Message-----
From: Ed Schouten [mailto:ed@80386=2Enl]=20
Sent: vendredi 1 ao=FBt 2008 14:10
To: BOURENANE Karim SCE/IBNF
Cc: FreeBSD Current
Subject: Re: [BSD6] SSH Restriction

Hello Karim,

* karim=2Ebourenane@orange-ftgroup=2Ecom <karim=2Ebourenane@orange-ftgroup=
=2Ecom> wrote:
> I have one question=2E How i can restrict ( limit ) 1 user to have for=20
> exemple 5 ssh connection in simutanous time, no more ?

It's quite funny you ask this question, because I've been working on this=
 last week=2E

The new TTY code, which I'll commit next week, adds a new rlimit to the=
 kernel called RLIMIT_NPTS=2E This rlimit allows you to limit the number of=
 pseudo-terminals allocated by a single user=2E This means you can limit=
 the number of login sessions by tuning the "pseudoterminals" field in=
 /etc/login=2Econf=2E

This seems to work with tools like screen(1), xterm(1), etc=2E
Unfortunately I didn't get it working with OpenSSH, because OpenSSH=
 allocates terminals while been root=2E I've already contacted the OpenSSH=
 folks about this, but I haven't got any response (yet)=2E

--
 Ed Schouten <ed@80386=2Enl>
 WWW: http://80386=2Enl/

*********************************
This message and any attachments (the "message") are confidential and=
 intended solely for the addressees=2E=20
Any unauthorised use or dissemination is prohibited=2E
Messages are susceptible to alteration=2E=20
France Telecom Group shall not be liable for the message if altered,=
 changed or falsified=2E
If you are not the intended addressee of this message, please cancel it=
 immediately and inform the sender=2E
********************************

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?EB0526E758E4764B9B5186295C5790C901A7D073>