11 Jun
2010
11 Jun
'10
3:21 p.m.
On Fri, June 11, 2010 09:30, chap at anastigmatix.net wrote:
- the identity should not be allowed to run arbitrary commands. an entry in authorized_keys can be limited to running a single fixed command.
Just give the identity a login shell of /bin/true in /etc/passwd and you won't have to be concerned about commands from a shell at all.