From owner-freebsd-questions Mon Mar 1 14:46:21 1999 Delivered-To: freebsd-questions@freebsd.org Received: from gateway.sitel.net (gateway.sitel.net [206.24.48.67]) by hub.freebsd.org (Postfix) with SMTP id B5715154D3 for ; Mon, 1 Mar 1999 14:46:14 -0800 (PST) (envelope-from jsw@cywub.sitel.net) Received: from dns3.sitel.net by gateway.sitel.net via smtpd (for hub.FreeBSD.ORG [204.216.27.18]) with SMTP; 1 Mar 1999 22:46:02 UT Received: from dev2.sitel.net (mail1.sitel.net [10.252.249.17]) by www.sitel.net (8.6.11/8.6.6) with ESMTP id QAA01906; Mon, 1 Mar 1999 16:45:43 -0600 Message-Id: <199903012245.WAA25108@cywub.sitel.com> Subject: Re: Disabling Telnet To: jonc@pinnacle.co.nz (Jonathan Chen) Date: Mon, 1 Mar 1999 16:45:35 -0600 (CST) From: Jack Winslade Cc: wharton@burnit.net, freebsd-questions@FreeBSD.ORG In-Reply-To: from "Jonathan Chen" at Mar 2, 99 11:34:23 am X-Mailer: ELM [version 2.4 PL20] Content-Type: text Content-Length: 689 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > > I was wondering if anyone could tell me how I can prevent users from > > telneting in without disabling FTP access as well. I want people to be > > able to FTP in and update their websites, but not be able to TELNET in. > > > > I already tried setting their shell to /sbin/nologin, but that disables > > FTP access as well. Thank you very much in advance for any advice. > > You could comment out the telnetd entry in /etc/inetd.conf, but that > will restrict you to console logins and connected terminals. One old trick (security through obscurity) is to reassign the telnet port to something other than the default. YMMV as to how secure this *really* is. Good day JSW To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message