Date: Tue, 7 Nov 2006 18:22:06 -0600 From: "Kelly D. Grills" <kdgrills@the-grills.com> To: freebsd-questions@freebsd.org Subject: Re: denying a user access from the internet Message-ID: <20061108002159.GA3886@the-grills.com> In-Reply-To: <000301c702ae$da839510$0200a8c0@satellite> References: <000301c702ae$da839510$0200a8c0@satellite>
next in thread | previous in thread | raw e-mail | index | archive | help
--3MwIy2ne0vdjdPXF Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Nov 07, 2006 at 03:54:00PM -0500, Dave wrote: >=20 > Hello, > I've got a FreeBSD box that i have a user on who needs special console= =20 > access. I've given him access to what is required, but i do not want him = to=20 > be able to log in from the internet via ssh, telnet, or even a serial=20 > terminal if possible. Basically if this user isn't right in front of the= =20 > box i don't want him accessing it. Is it possible to lock a user out to= =20 > this extent, i know with ssh i can do an AllowGroup option and not put hi= m=20 > in the group that would work? > Thanks. > Dave. I've never personally used it, but /etc/login.access looks to be what you're looking for. The man page is login.access(5). --=20 Kelly D. Grills kdgrills@the-grills.com --3MwIy2ne0vdjdPXF Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) Comment: PGP key: mailto:kdgrills-pgpkey@the-grills.com iD8DBQFFUSMn7inS5LzF7HMRAhVxAJ45pJRH38HqvxEWI0apLND9LlRAxACfat5P lOs4i1gJHi2cG5H8WEByKQM= =a/5m -----END PGP SIGNATURE----- --3MwIy2ne0vdjdPXF--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061108002159.GA3886>