Problem, possibly bug with AllowUsers & DenyUsers
Peter Stuge
stuge-openssh-unix-dev at cdy.org
Fri May 9 14:57:13 EST 2008
On Thu, May 08, 2008 at 11:42:23PM -0500, Andy Tsouladze wrote:
> Essentially, regular users should be able to login from any
> network, while root should be able to login only from a private
> network 192.168.88.0/22.
> AllowUsers root at 192.168.88.* !root@*
> Result: BAD. root can login only from 192.168.88.0/24 but other
> users cannot login at all.
What if you change the order and/or space to a comma?
AllowUsers !root@*,root at 192.168.88.*
You could also try using Match.
//Peter
More information about the openssh-unix-dev
mailing list