Differences between version 6 and predecessor to the previous major change of AuthorizedKeysFile.
Other diffs: Previous Revision, Previous Author, or view the Annotated Edit History
Newer page: | version 6 | Last edited on Tuesday, May 27, 2003 12:33:19 pm | by JohnMcPherson | Revert |
Older page: | version 5 | Last edited on Tuesday, May 6, 2003 2:51:22 pm | by PerryLorier | Revert |
@@ -23,4 +23,17 @@
then use
ssh-copy-id ''hostname''
and ya done.
+
+----
+! Limit key use to certain machines
+You can tell sshd (the server side) to only allow keys to be used from specified host names. In front of the key in the .authorized_keys file,
+you can put a list of globs. Eg:
+ from="*.com,localhost" ssh-dss XXXX....base64..keyid....= username@host
+will only allow this key to be used from localhost and .coms.
+
+You can also prefix a glob with a ! to negate it.
+
+There are lots of other options, which are documented in the man page linked to below.
+
+See also sshd(8)