Find the answer to your Linux question:
Results 1 to 3 of 3
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1

    SSH tunnel server, no shell but still able to change pw?

    I have an SSH tunnel server that some people at work are using instead of a vpn since it's much nicer and simpler.

    I don't want to give the users shells at all but I still want them to be able to change their own passwords.

    At the moment, they just execute /bin/cat so their session stays open but they cannot get any shell or input any commands.

    I am thinking about perhaps making chroots for them instead in which case they can have a shell that has basically no view or access to anything, but I still want them to be able to change their passwords, however if they are in a jail then they cannot get access to the /etc/ files to change their pw.

    Any ideas?
    The Human Equation:

    value(geeks) > value(mundanes)

  2. #2
    Linux Newbie raghaven.kumar's Avatar
    Join Date
    Mar 2008
    Bangalore, India
    IMO, instead of chroot jail you can have them allowed to
    change passwd by adding them to sudoers.

    or you can write a script
    to get new pass from them
    store it encrypted
    and then synchronise the same with /etc/passwd on logout.

    Just a suggestion!

  3. #3
    cannot say I like either of those ideas at all.

    I may just look to integrate with AD to solve this I think...
    The Human Equation:

    value(geeks) > value(mundanes)

  4. $spacer_open

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts