Monthly Archive: May 2008

Setting up a restricted SSH tunnel user on Debian

Today, I set up a user especially for SSH tunneling using Putty and my Debian vServer. The user is able to securely log in using SSH, but is not given shell access. 1. Generate an SSH key for the user. You can generate SSH keys with openssh, but I’ve used [url=http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html]PuttyGen[/url] on my Windows client: Start PuttyGen, Select “SSH-2 DSA” at the bottom, push “Generate”. If you enter a passphrase to protect your private key, you’ll need to enter it every time you open the tunnel connection. Save the private key and leave the window open. I’ve called mine “tunnel.ppk”....