Date: Thu, 01 Mar 2001 13:45:11 -0800 From: "Riley J. McIntire" <rjmcintire@earthlink.net> To: "Aaron D.Gifford" <agifford@infowest.com>, freebsd-security@FreeBSD.ORG Subject: RE: ftp access Message-ID: <NCBBLBILEPCHLFJAPIIPIEMEFFAA.rjmcintire@earthlink.net> In-Reply-To: <01030110014400.06418@jardan.infowest.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> -----Original Message----- > From: owner-freebsd-security@FreeBSD.ORG > [mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of Aaron D.Gifford > Sent: Thursday, March 01, 2001 9:02 AM > To: freebsd-security@FreeBSD.ORG > Subject: RE: ftp access > > I would caution folks from putting /sbin/nologin into /etc/shells > in order to > create FTP-only accounts. I would instead suggest you create a link to > /sbin/nologin and call it something like /sbin/ftponly and put > THAT shell in > your /etc/shells file and use it as the shell for your FTP-only users. Would this be a problem? root@aji# lls /sbin/ftp_only -rwxr-xr-x 1 root wheel - 48 Mar 1 13:23 /sbin/ftp_only* root@aji# cat /sbin/ftp_only echo This account is for ftp only ftp localhost root@aji# grep ftp_only /etc root@aji# grep ftp /etc/shells /sbin/ftp_only Then a telnet would show the motd and: This account is for ftp only Connected to localhost. 220 aji.wilshire.net FTP server (Version 6.00LS) ready. Name (localhost:username): To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?NCBBLBILEPCHLFJAPIIPIEMEFFAA.rjmcintire>