Hi All
We've setup a server which will receive RSYNC over SSH backups from a number of our users. We're working on securing the server. So far we've locked down incoming ports to just SSH and installed fail2ban to tighten things up a little more. Now we're trying to prevent the users (who need to be able to SSH to the server) from getting out of their home directory or making a mess of our server.
As far as I can tell, the best approach to this is RSSH.
I've downloaded RSSH:
wget http://dag.wieers.com/rpm/packages/rssh ... f.i386.rpm
Try to install it:
[root@rsync tmp]# rpm -ivh rssh-2.3.2-1.2.el5.rf.i386.rpm
warning: rssh-2.3.2-1.2.el5.rf.i386.rpm: Header V3 DSA/SHA1 Signature, key ID 6b8d79e6: NOKEY
error: Failed dependencies:
libc.so.6 is needed by rssh-2.3.2-1.2.el5.rf.i386
libc.so.6(GLIBC_2.0) is needed by rssh-2.3.2-1.2.el5.rf.i386
libc.so.6(GLIBC_2.1) is needed by rssh-2.3.2-1.2.el5.rf.i386
libc.so.6(GLIBC_2.3) is needed by rssh-2.3.2-1.2.el5.rf.i386
libc.so.6(GLIBC_2.3.4) is needed by rssh-2.3.2-1.2.el5.rf.i386
libc.so.6(GLIBC_2.4) is needed by rssh-2.3.2-1.2.el5.rf.i386
Linux is still fairly new to me, and I don't seem to be able to find a solution to this one.
Can anyone provide me with some guidance?
RSSH to jail user for SSH and RSYNC
Re: RSSH to jail user for SSH and RSYNC
Don't try to install packages for CentOS 5 on CentOS 7. I'd not use repoforge/rpmforge/whatever it's called these days anyway as there have been almost no updates to any of its packages for about 3 years so many have unfixed security problems.
I don't see rssh for el7 in any of my repos.
I don't see rssh for el7 in any of my repos.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke