#1 2016-05-18 14:28:28

0x004a
Trusted Member
Registered: 2013-10-15
Posts: 141

Git-Shell Access Security Help

I'm allowing a user Git-Shell only access so they can create master repos and clone, push etc.

chsh -s /usr/sbin/git-shell user

But this provides all over system sftp access also, which theorising means they can edit master repo hooks for example and sftp the master up, then git push. Isn't that giving them full shell access ?

Also, added match user, allowtcpforwarding no, to ssh config to prevent ssh proxy. Am I missing anything else for that ?

Any help/advice would be great.

Offline

Board footer

Powered by FluxBB