How to create a restricted SSH user for port forwarding?

facebook twitter digg google delicious technorati stumbleupon myspace wordpress linkedin gmail igoogle windows live tumblr viadeo yahoo buzz yahoo mail yahoo bookmarks favorites email print

Posted by Lekensteyn on Ask Ubuntu See other posts from Ask Ubuntu or by Lekensteyn
Published on 2011-06-10T20:04:12Z Indexed on 2012/08/28 15:51 UTC
Read the original article Hit count: 310

Filed under:
|
|

ændrük suggested a reverse connection for getting an easy SSH connection with someone else (for remote help). For that to work, an additional user is needed to accept the connection. This user needs to be able to forward his port through the server (the server acts as proxy).

How do I create a restricted user that can do nothing more than the above described?

The new user must not be able to:

  • execute shell commands
  • access files or upload files to the server
  • use the server as proxy (e.g. webproxy)
  • access local services which were otherwise not publicly accessible due to a firewall
  • kill the server

Summarized, how do I create a restricted SSH user which is only able to connect to the SSH server without privileges, so I can connect through that connection with his computer?

© Ask Ubuntu or respective owner

facebook twitter digg google delicious technorati stumbleupon myspace wordpress linkedin gmail igoogle windows live tumblr viadeo yahoo buzz yahoo mail yahoo bookmarks favorites email print

Related posts about ssh

Related posts about security

Categories cloud

.NET ASP.NET iphone linux python Windows mysql android sql windows-7 html c ruby-on-rails css objective-c ubuntu networking sql-server wpf asp.net-mvc ruby database Xml apache AJAX osx security regex django Performance 12.04 windows-xp mac web-development iphone-sdk vb.net Silverlight apache2 flash server perl best-practices email installation eclipse visual-studio algorithm windows-server-2008 winforms wcf firefox bash dns /Oracle