SSH AllowUsers directive problem

Hi All,

We are looking to lock down some servers by using the /etc/ssh/sshd_config AllowUsers Parameter to specify users that are allowed to connect.

We have setup the following..

AllowUsers test@server.name

Doesn't work, and no-one can log int via SSH at all..

however ...

AllowUsers test

allowed the user test to login, albeit from everywhere, again undesired.

The annoying thing is that on one or two machines this works (my Solaris 10 (sparc) workstation) - but some S10 servers it doesn't....

Any idea where to start looking ?

Cheers

[617 byte] By [DexterFa] at [2007-11-27 4:49:14]

«« help: writeObject is appendind data!
»» Maximum number of threads that can be spawned

# 1

Perhaps the reverse DNS of the connecting IP is not what you're expecting?

qu1j0t3a at 2007-7-12 10:02:18 >

top of Java-index,Solaris Operating System,Solaris 10 Features...

# 2

Unfortunately no, as that was something that crossed my mind, and have put in the IP Address of the machine as the host entry, instead of a name.

FWIW, this was tested on my Solaris (Sparc) 10 workstation (Ultra 45) and works perfectly, but when starting to move to the servers, found some didn't work.

Now, some the servers are built by JET, workstation wasn''t, so there is likely to be a difference, just not sure where to start looking.

DexterFa at 2007-7-12 10:02:18 >

# 3

After you have made these changes, did you reboot the server or restart the service?root@obi-wan(66): svcadm restart sshThat might account for why it worked on some boxen and not on others?

cloakesa at 2007-7-12 10:02:18 >

# 4

Oh yeah, ssh service restarted...... I couldn't login via ssh so had to resort to the console,

DexterFa at 2007-7-12 10:02:18 >

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

SSH AllowUsers directive problem

Solaris Operating System Hot Topic

Solaris Operating System

All Classified