On Thu, May 08, 2008 at 11:42:23PM -0500, Andy Tsouladze wrote:
> Essentially, regular users should be able to login from any
> network, while root should be able to login only from a private
> network 192.168.88.0/22.


> AllowUsers root@192.168.88.* !root@*
> Result: BAD. root can login only from 192.168.88.0/24 but other
> users cannot login at all.


What if you change the order and/or space to a comma?

AllowUsers !root@*,root@192.168.88.*


You could also try using Match.


//Peter
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/li...enssh-unix-dev