Allow user to set up an SSH tunnel, but nothing else

Question

I\'d like to allow a user to set up an SSH tunnel to a particular machine on a particular port (say, 5000), but I want to restrict this user as much as possible. (Authentica

Answer 1

See this post on authenticating public keys.

The two main things you need to remember are:

1. Make sure you chmod 700 ~/.ssh
2. Append the public key block to authorized-keys