Tunnel-only SSH keys
David Wolfskill
david at catwhisker.org
Thu Sep 22 09:22:42 PDT 2005
On Thu, Sep 22, 2005 at 04:27:18PM +0100, markzero wrote:
> Hello.
>
> I once read somewhere that it's possible to limit SSH pubkeys to
> 'tunnel-only'. I can't seem to find any information about this
> in any of the usual places.
> ...
> Can this be done with OpenSSH? I'd like to try and stay away from
> the complexities of a chrooted-stunnel for now...
See the section "AUTHORIZED_KEYS FILE FORMAT" in the sshd man page.
There is also a discussion of this in the O'Reilly _SSH_ book.
Peace,
david
--
David H. Wolfskill david at catwhisker.org
Prediction is difficult, especially if it involves the future. -- Niels Bohr
See http://www.catwhisker.org/~david/publickey.gpg for public key.
More information about the freebsd-security
mailing list