From owner-freebsd-questions Sat Aug 28 15:34: 4 1999 Delivered-To: freebsd-questions@freebsd.org Received: from neptune.psn.net (neptune.psn.net [207.211.58.16]) by hub.freebsd.org (Postfix) with ESMTP id 19C8B14D8F for ; Sat, 28 Aug 1999 15:34:02 -0700 (PDT) (envelope-from guy@mrguy.com) Received: from 2-12.phx.psn.net ([209.63.50.12] helo=default) by neptune.psn.net with smtp (PSN Internet Service 2.12 #3) id 11Kqyi-00009F-00; Sat, 28 Aug 1999 15:29:40 -0700 Message-ID: <000801bef1a5$d6174660$0c323fd1@default> From: "Guy Phillips" To: "Andrew Boothman" Cc: References: Subject: Re: Adduser Warnings Date: Sat, 28 Aug 1999 15:36:54 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi Andrew, Thanks for the input. I actually tried that approach and it did block telnet access. Unfortunately, it also blocked the FTP access. I want this to be strictly a password ftp site for over 100 users at last count. Each user is restricted to their own directory and can not see all the other users. Only 2 master users can see the entire tree and they also do not have telnet access. Thanks for the reply. MrGuy ----- Original Message ----- From: Andrew Boothman To: Guy Phillips Cc: Sent: Saturday, August 28, 1999 2:30 PM Subject: RE: Adduser Warnings > > On 27-Aug-99 Geocrawler.com wrote: > > This message was sent from Geocrawler.com by "Guy Phillips" > > Be sure to reply to that address. > > > > I am using 3.2 stable. > > > > I blocked users access to telnet and only allowed ftp access. I did this in > > chpass by changing their shell to /bin/ftponly and then placing them in the > > ftpchroot file. Of course this shell does not exist. All works well!! None of > > the selected users can telnet in and they are locked into their home > > directories when using FTP. > > Surely it makes more sense to set the shell to /sbin/nologin and then the > system does understand what program to present users with when they login? > > --- > Andrew Boothman > FreeBSD UK User Group > http://ukug.uk.FreeBSD.org/~andrew/ > http://ukug.uk.FreeBSD.org/ > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message