Bug 7142 - There is no way to restrict login access to specific hosts / user combinations
Summary: There is no way to restrict login access to specific hosts / user combinations
Status: CLOSED DUPLICATE of bug 6346
Alias: None
Product: ThinLinc
Classification: Unclassified
Component: Web Access (show other bugs)
Version: trunk
Hardware: PC Unknown
: P2 Normal
Target Milestone: 4.9.0
Assignee: Samuel Mannehed
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2018-04-11 12:17 CEST by Henrik Andersson
Modified: 2018-04-18 13:44 CEST (History)
1 user (show)

See Also:
Acceptance Criteria:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Henrik Andersson cendio 2018-04-11 12:17:07 CEST 
When using the native client which uses SSH for authentication one can use it's mechanism to restrict who can login based on from where using the 'AllowedUsers' in SSHD configuration. This is not possible with ThinLinc Web Access client.

One possible solution could be using pam.rhosts pam module and /etc/hosts.equiv configuration for restricting access. However Web Access does not setup the required 'rhost' and 'ruser' when running pamtester for authentication.
Comment 3 Pierre Ossman cendio 2018-04-18 13:43:53 CEST 

*** This bug has been marked as a duplicate of bug 6346 ***
Note You need to log in before you can comment on or make changes to this bug.