[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 441
  • Last Modified:

disable scp and ftp over sssh for linux server

Dear Experts:

We have provided the ssh access and root login details of our crm server which is running on redhat enterprise linux to the asterisk pbx implementer but we would like to restrict scp and ftp over the ssh , this is to protect the data going out from the crm server, as i have provided root login not sure we can acheive this , if required to provide new user I can create the one provide but please suggest how to achieve this, thanks
0
D_wathi
Asked:
D_wathi
2 Solutions
 
omarfaridCommented:
Giving root access is enough to do any thing on the system.

You can add one account to the system and provide him / her priv. using sudo.

Please see below link on how to use sudo:

http://www.sudo.ws/sudoers.man.html
0
 
gheistCommented:
root account is not restricted and it is not possible to restrict it. So you just gave out all your data and now got thinking ...
0
 
tfewsterCommented:
You need to turn the problem around and decide what operations & privileges the PBX server should be allowed on the CRM server, then set up new userid(s) with appropriate sudo privilege escalation.

Possibly something like "useradd" with root permissions plus "su - dbuser create_new_db_user_script" if your PBX system was the master identity server.

Though it might be even better to have the CRM server as the master and grant ssh access to the PBX (High security to Low security system)
0

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now