Date: Mon, 23 Jun 2003 10:00:11 -0400 From: Raymond Sundland <raymond@sundland.com> To: Rob Lahaye <lahaye@users.sourceforge.net> Cc: freebsd-questions@freebsd.org Subject: Re: creating ftp users! Message-ID: <3EF707EB.1060406@sundland.com> In-Reply-To: <3EF7072C.7020908@users.sourceforge.net> References: <20030613125624.87202.qmail@web13407.mail.yahoo.com> <3EF7072C.7020908@users.sourceforge.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Rob, You can try setting the user's shell to /usr/libexec/sftp-server (or wherever the sftp-server binary exists under FreeBSD). This will give the user ability to SFTP into the box, but without a normal shell. /usr/lib/exec/sftp-server should be added to /etc/shells, too. Rob Lahaye wrote: > > I have not inetd running, but instead only allow secure > connections with ssh and sftp. > However, the hints given here seem to only apply to ftpd > server and not the sftp connection. /sbin/nologin disables > both, ssh and sftp. > > Is there a way to disable ssh, but allow sftp access only? > Can I do the /etc/ftpchroot for sftp as well? > > Thanks, > Rob. > > Jonathan Arnold wrote: > >>>How to create users for Ftp server(inetd)? >> >>You just use the 'adduser' command normally, to add a "normal" >>user. If they are just going to be doing ftp, you can use the >>/sbin/nologin for their shell, so they can't login. > > > Doron Shmaryahu wrote: > >>I would also suggest limiting ftp users to their respective home dir. You >>can do this simply by creating a file /etc/ftpchroot and putting all the >>usernames in there. > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3EF707EB.1060406>