Usage¶
After adding rcsh as the shell of a user account you can whitelist commands for that user by editing the following files:
/etc/rcsh.d/<username>.exact/etc/rcsh.d/<username>.regex
Exact whitelist¶
Every line in /etc/rcsh.d/<username>.exact represents a command which this user is allowed to execute over ssh.
Regular expression whitelist¶
Every line in /etc/rcsh.d/<username>.regex must be a valid Python regular expression and must start with ‘^’ and end
with ‘$’. If the user tried to execute a command which matches one of these, it will be allowed.