阻止 SSH 访问 EC2 实例

Question

将所有要拒绝 ssh 访问的用户放在同一组中，然后使用

DenyGroups <group>

sshd_config 文件中的指令。

DenyGroups
             This keyword can be followed by a list of group name patterns, 
             separated by spaces.  Login is disallowed for users whose primary 
             group or supplementary group list matches one of the patterns.  
             Only group names are valid; a numerical group ID is not recognized.  
             By default, login is allowed for all groups.  The allow/deny direc‐
             tives are processed in the following order: DenyUsers, AllowUsers, 
             DenyGroups, and finally AllowGroups.  All of the specified user and 
             group tests must succeed, before user is allowed to log in.

Answer 1

将所有要拒绝 ssh 访问的用户放在同一组中，然后使用

DenyGroups <group>

sshd_config 文件中的指令。

DenyGroups
             This keyword can be followed by a list of group name patterns, 
             separated by spaces.  Login is disallowed for users whose primary 
             group or supplementary group list matches one of the patterns.  
             Only group names are valid; a numerical group ID is not recognized.  
             By default, login is allowed for all groups.  The allow/deny direc‐
             tives are processed in the following order: DenyUsers, AllowUsers, 
             DenyGroups, and finally AllowGroups.  All of the specified user and 
             group tests must succeed, before user is allowed to log in.

阻止 SSH 访问 EC2 实例

答案1

相关内容