Limiting SSH keys for git hostinig

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
I'm setting up some git repositories, and wish to provide SSH access
to them. But I do *not* want to provide arbitrary SSH access to the
git server!

Is there some published technique available for doing so, or do I need
to do something like the old 'validate-rsync' script to limit git SSH
users to a particular set of operations? I do realize that git is not
as vulnerable to the wackiness necessary to make this work properly
for Subversion.

Re: Limiting SSH keys for git hostinig

Quoted text here. Click to load it

OK, going through the basic git toolkit, rather than the add-ons
available from an Ubuntu default setup, has proven very helpful. I
needed to create a designated repository user with the '/usr/bin/git-
shell' shell, which restricts that user's activities to a very small
set of git related actions.

Trust Linus and his cohorts to actually think about this problem and
do it right from the start, rather than stapling on security as an
afterthought! I wish other tools that try to incorporate SSH use were
written so sensibly.

Site Timeline