Re: consent to monitoring banner for ssh

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Bill,

Additional to the Banner in sshd.conf you could implement a bash
script reading the answer from the user and logging the user out if
s/he said no and even log and report activity by mail.
Implement such script in the /etc/ssh/sshrc


On Dec 4, 2007 6:44 PM, Bill Tangren <bjt@xxxxxxxxxxxxx> wrote:
> A new policy has been implemented here at work. The old policy stated
> that, when someone logs in to a system via ssh, I had to display a consent
> to monitor banner, which is easy to implement.
>
> The new policy, however, requires that the user has to somehow signify
> that they have read and will abide by the policy. In essence, I have to
> get a yes or no input from the user, possibly just after they log on, and
> if they say no, log them off. If they say yes, they get to proceed.
>
> My question: what is the best way to implement this? I have to make sure
> the user cannot remove this functionality for future logins, so I can't
> put it in any of their login scripts. This is easy to implement for GUI
> logins, but I don't know the best way to proceed for ssh. Any ideas?
>
>
> --
> Bill Tangren
> U.S. Naval Observatory
>
> Ad eundum quo nemo ante iit
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>

-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

[Index of Archives]     [CentOS]     [Kernel Development]     [PAM]     [Fedora Users]     [Red Hat Development]     [Big List of Linux Books]     [Linux Admin]     [Gimp]     [Asterisk PBX]     [Yosemite News]     [Red Hat Crash Utility]


  Powered by Linux