This is a discussion on Re: Problem, possibly bug with AllowUsers & DenyUsers - openssh ; On Thu, May 08, 2008 at 11:42:23PM -0500, Andy Tsouladze wrote: > Essentially, regular users should be able to login from any > network, while root should be able to login only from a private > network 192.168.88.0/22. > AllowUsers ...
On Thu, May 08, 2008 at 11:42:23PM -0500, Andy Tsouladze wrote:
> Essentially, regular users should be able to login from any
> network, while root should be able to login only from a private
> network 192.168.88.0/22.
> AllowUsers root@192.168.88.* !root@*
> Result: BAD. root can login only from 192.168.88.0/24 but other
> users cannot login at all.
What if you change the order and/or space to a comma?
AllowUsers !root@*,root@192.168.88.*
You could also try using Match.
//Peter
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/li...enssh-unix-dev
