We have a TKL based server in a customer that not has monitor connected. We want to create a user for our customer that only has permission to shut down the server but nothing else. We are thinking of creating a jailed user with chroot ssh access so it can launch the shutdown or halt command. How do you think about it?? some better idea?