Date: Tue, 27 Feb 2001 14:55:12 -0800 From: Brooks Davis <brooks@one-eyed-alien.net> To: Rob Simmons <rsimmons@wlcg.com> Cc: George.Giles@mcmail.vanderbilt.edu, freebsd-security@FreeBSD.ORG Subject: Re: ftp access Message-ID: <20010227145512.A13920@Odin.AC.HMC.Edu> In-Reply-To: <Pine.BSF.4.33.0102271738250.82118-100000@mail.wlcg.com>; from rsimmons@wlcg.com on Tue, Feb 27, 2001 at 05:38:58PM -0500 References: <OFF1AB3DF2.EE5F05B7-ON86256A00.007ADD5A@MC.VANDERBILT.EDU> <Pine.BSF.4.33.0102271738250.82118-100000@mail.wlcg.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--ZPt4rx8FFjLCG7dd Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Feb 27, 2001 at 05:38:58PM -0500, Rob Simmons wrote: > /sbin/nologin as the user's shell. You also have to add this shell to > /etc/shells If you do this be sure to keep users from being able to access the system via ssh. Otherwise they can just use ssh to spawn a shell for themselves: ssh -t <host> /bin/sh -- Brooks --=20 Any statement of the form "X is the one, true Y" is FALSE. PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4 --ZPt4rx8FFjLCG7dd Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE6nDBPXY6L6fI4GtQRAnBXAJ4/tzKot7bBL6yX4lCwWvaDl+w7/wCg1s/g 6gcs33Qyb7kKHw06b16JC+c= =f9fi -----END PGP SIGNATURE----- --ZPt4rx8FFjLCG7dd-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010227145512.A13920>