{"id":483,"date":"2012-02-17T17:39:37","date_gmt":"2012-02-17T17:39:37","guid":{"rendered":"http:\/\/faq.graven-ict.nl\/wordpress\/?p=483"},"modified":"2018-08-14T07:40:20","modified_gmt":"2018-08-14T07:40:20","slug":"openssh-toegang-beperken-met-match","status":"publish","type":"post","link":"https:\/\/wiki.graven-ict.nl\/wordpress\/openssh-toegang-beperken-met-match\/","title":{"rendered":"OpenSSH toegang beperken met match"},"content":{"rendered":"<p>Sinds Openssh &gt; 4.4 is er een nieuwe feature in openssh gekomen &#8220;match&#8221;. met deze feature is het mogenlijk om bepaalde users, hosts en\/of groepen extra rechten\/opties te geven. Zo kan je bv binnen sshd_config tcp forwarding uit zetten voor iedereen maar bv voor een bepaalde user wel weer aanzetten.<\/p>\n<pre> AllowTcpForwarding no\r\n X11Forwarding no\r\n \r\n Match User stew\r\n         AllowTcpForwarding yes\r\n         X11Forwarding yes\r\n<\/pre>\n<p>de match criteria kunnen zijn \u201cUser,\u201d \u201cGroup,\u201d of \u201cHost,\u201d wildcards zijn bij host criteria ook gesupport.<\/p><div id=\"grave-631781112\" class=\"grave-content grave-entity-placement\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-1970734611769428\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:inline-block;width:728px;height:90px;\" \ndata-ad-client=\"ca-pub-1970734611769428\" \ndata-ad-slot=\"1820224830\"><\/ins> \n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Sinds Openssh &gt; 4.4 is er een nieuwe feature in openssh gekomen &#8220;match&#8221;. met deze feature is het mogenlijk om bepaalde users, hosts en\/of groepen extra rechten\/opties te geven. Zo kan je bv binnen sshd_config tcp forwarding uit zetten voor iedereen maar bv voor een bepaalde user wel weer aanzetten. AllowTcpForwarding no X11Forwarding no Match ..<\/p>\n<div class=\"clear-fix\"><\/div>\n<p><a href=\"https:\/\/wiki.graven-ict.nl\/wordpress\/openssh-toegang-beperken-met-match\/\" title=\"Meer lezen...\">Lees meer<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[37],"tags":[],"class_list":["post-483","post","type-post","status-publish","format-standard","hentry","category-openssh"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wiki.graven-ict.nl\/wordpress\/wp-json\/wp\/v2\/posts\/483","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wiki.graven-ict.nl\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wiki.graven-ict.nl\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wiki.graven-ict.nl\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wiki.graven-ict.nl\/wordpress\/wp-json\/wp\/v2\/comments?post=483"}],"version-history":[{"count":1,"href":"https:\/\/wiki.graven-ict.nl\/wordpress\/wp-json\/wp\/v2\/posts\/483\/revisions"}],"predecessor-version":[{"id":484,"href":"https:\/\/wiki.graven-ict.nl\/wordpress\/wp-json\/wp\/v2\/posts\/483\/revisions\/484"}],"wp:attachment":[{"href":"https:\/\/wiki.graven-ict.nl\/wordpress\/wp-json\/wp\/v2\/media?parent=483"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wiki.graven-ict.nl\/wordpress\/wp-json\/wp\/v2\/categories?post=483"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wiki.graven-ict.nl\/wordpress\/wp-json\/wp\/v2\/tags?post=483"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}