On Fri, 24 Apr 1998, joyce grace touzo wrote:
> I am configuring an FTP server included in Slakware Linux 2.0.30. The
> FTP server is wu-ftpd v2.4.2. After reading the man pages and
> trying-out some options, I found myself hanging with more questions that
> I can�t find in the documentation. The questions are:
>
> 1. What�s the use of the files passwd and group in the ~ftp/etc
> directory? I tried renaming these files to see if it is being reference
> by the ftp server but I found that I can still login without it using a
> valid real account. It seems that the /etc/passwd is the one being
> reference by the ftp server instead of the ~ftp/etc/passwd as I have
> proven when I change the password in the /etc/passwd.
>
>
> 2. Where can I find the log file for the ftp? I can�t see any line in
> /etc/ftpaccess that points to a file. The configuration file has the
> lines:
>
> log commands real,anonymous
> log transfers anonymous,real inbound,outbound
>
>
> 3. I disabled the anonymous access and create real accounts with
> anonymous privileges for more control. I use the adduser utility to
> create the accounts. My problem is about security. Yes, the users that
> I made were able to connect to the ftp server but they can also telnet
> to it. I tried to removed the shell field in the /etc/passwd file but
> the ftp needs it. They cannot ftp to the server without the shell. Is
> there a way allowing the ftp but blocking the telnet?
>
To get rid of their ability to telnet in edit your passwd file and change their shell
to something like /bin/void, I don't think you need to create the file void.
Jeff
>
> Thanks in advance ���
>
>
>
----------------------------------------------------------------------------
If you wish to send junk/commercial mail to my address, you should be
prepared to accept kernel source tree's in return mail.
----------------------------------------------------------------------------
