Lightweight Directory Access Protocol, or LDAP , is a directory services running over TCP/IP. Most large business and organization use LDAP for centralized authentication. You can read LDAP Linux HOWTO for setup and configuration. If your workstation or server setup to authenticate via LDAP, open ssh will not work when user try to connect from [...]
{ 4 comments }
So how do you force sshd to listen on multiple IP addresses? Let us say you have total 8 public IP address and one private IP address. You would like to bind sshd to one selected public IP (ex 70.5.xx.xx) and private IP (10.1.5.1) only. Luckily there is an easy way to achieve this using [...]
{ 5 comments }
One of our article generated few more question regarding root login issues over ssh session. One of reader (eMBee) asks, “I need something that allows me to say: allow any users except root from anywhere, and root only from localhost. (over ssh session)”. PAM offers very powerful authentication control. You need to use the pam_access [...]
{ 19 comments }
The idea is very simple you want to limit who can use sshd based on a list of users. The text file contains a list of users that may not log in (or allowed to log in) using the SSH server. This is used for improving security. PAM (Pluggable authentication modules) allows you to define [...]
{ 12 comments }
So how do you find Linux / UNIX system last reboot or shutdown date and time? The last utility will either list the sessions of specified users, ttys, and hosts, in reverse time order, or list the users logged in at a specified date and time. Each line of output contains the user name, the [...]
{ 13 comments }
By default when you add new user to system (/etc/passwd file) it grant shell access. If you are creating new users for POP3 or SMTP (mail server) or FTP then you do not need to grant shell access to a user. Remember as soon as you add a user he/she can login via telnet or [...]
{ 4 comments }
This is Part III in a series on Execute Commands on Multiple Linux or UNIX Servers Simultaneously. The full series is Part I, Part II, and Part III. In third and final part of this series I will cover expect tool. Expect is a program that talks to other interactive programs according to a script. [...]
{ 1 comment }
