Re: ftp users - question
On Fri, Feb 21, 2003 at 06:59:51AM +0100, Cliff Sarginson wrote: On Fri, Feb 21, 2003 at 12:13:12PM +1300, Jonathan Chen wrote: On Thu, Feb 20, 2003 at 04:15:18PM -0600, Darryl Hoar wrote: Greetings, I have a machine setup running 4.7 - stable. It is an internal machine. How do I setup a user (so they can upload with ftp) but can't login at the shell ? Is this possible ? Set up the users with a non-existent shell (eg: /nonexistent), and add the non-existent shell entry into /etc/shells. Conventionally such users woud be given a shell of /sbin/nologin, which must also be added into the list contained in /etc/shells. The program /sbin/nologin already exists, so no need to create it. As an added measure of security, I'd advise making a link of /sbin/nologin called /sbin/ftponly and adding that to /etc/shells instead of nologin. That way, system accounts that shouldn't be able to be logged in through ftp either can still have the shell /sbin/nologin. Users that should only be able to access the system through FTP get the shell /sbin/ftponly. It also make the passwd file more understandable. Jim Trigg -- Jim Trigg, Lord High Everything Else O- /\ \ / ASCII RIBBON CAMPAIGN Hostmaster, Huie Kin family websiteXHELP CURE HTML MAIL Verger, All Saints Church - Sharon Chapel / \ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
ftp users - question
Greetings, I have a machine setup running 4.7 - stable. It is an internal machine. How do I setup a user (so they can upload with ftp) but can't login at the shell ? Is this possible ? thanks, Darryl To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: ftp users - question
On Thu, Feb 20, 2003 at 04:15:18PM -0600, Darryl Hoar wrote: Greetings, I have a machine setup running 4.7 - stable. It is an internal machine. How do I setup a user (so they can upload with ftp) but can't login at the shell ? Is this possible ? Set up the users with a non-existent shell (eg: /nonexistent), and add the non-existent shell entry into /etc/shells. -- Jonathan Chen [EMAIL PROTECTED] --- One, with God, is always a majority, but many a martyr has been burned at the stake while the votes were being counted. -- Thomas B. Reed To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: ftp users - question
[Please do not remove Cc: freebsd-questions] On Thu, Feb 20, 2003 at 05:25:12PM -0900, Jon Reynolds wrote: On Thu, 2003-02-20 at 14:13, Jonathan Chen wrote: [...] Set up the users with a non-existent shell (eg: /nonexistent), and add the non-existent shell entry into /etc/shells. I tried this but when I went to adduser and typed in the shell name that I had added to /etc/shells, it gives the error: nonexistent is not allowed! When you first issue the adduser command it checks the /etc/shells then says: Shell: /nonexistent not executable! After this happened I made a dummy file called nonexistent and made it executable but to no avail. Is there a hidden step? Add your users using vipw. Alternatively, add all your users using adduser and then use vipw to modify their shells to /nonexistent. -- Jonathan Chen [EMAIL PROTECTED] -- Beer. Now there's a temporary solution. - Homer Simpson To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: ftp users - question
On Fri, Feb 21, 2003 at 12:13:12PM +1300, Jonathan Chen wrote: On Thu, Feb 20, 2003 at 04:15:18PM -0600, Darryl Hoar wrote: Greetings, I have a machine setup running 4.7 - stable. It is an internal machine. How do I setup a user (so they can upload with ftp) but can't login at the shell ? Is this possible ? Set up the users with a non-existent shell (eg: /nonexistent), and add the non-existent shell entry into /etc/shells. Conventionally such users woud be given a shell of /sbin/nologin, which must also be added into the list contained in /etc/shells. The program /sbin/nologin already exists, so no need to create it. -- Regards Cliff Sarginson The Netherlands [ This mail has been checked as virus-free ] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message