Sponsored link
Vyatta –
Linux & Open Source
Alternative to Cisco –
Advanced Routing,
Firewall, VPN, QoS..
Free Download ->
| |||||||||||
Set up remote access in UNIX through OpenSSH (developerWorks)Set up remote access in UNIX through OpenSSH (developerWorks)Posted Feb 17, 2007 22:51 UTC (Sat) by rasjidw (subscriber, #15913)In reply to: Set up remote access in UNIX through OpenSSH (developerWorks) by k8to Parent article: Set up remote access in UNIX through OpenSSH (developerWorks)
If using a blank passphrase for remote automated administrative functions, one can also use the command="command" option in the authorized_keys file to enforce that the given key is only used to run that command, and no other. See man sshd for details.
(Log in to post comments)
Set up remote access in UNIX through OpenSSH (developerWorks) Posted Feb 19, 2007 20:36 UTC (Mon) by dtucker (subscriber, #6575) [Link] > use the command="command" option in the authorized_keys file
You can also use the "from=" key option to restrict where the key can be used from. This makes a stolen key less useful as you need to spoof the source address too; depending on your network this can be anywhere between only a bit more difficult (if you own a box on the same subnet as the real source) to impossible (if you're on the other side of a firewall with strong anti-spoofing policies).
|
|||||||||||