Date: Sat, 29 Mar 2003 02:49:44 -0500 From: David Banning <david@skytracker.ca> To: Michael Grant <mg-fbsd3@grant.org> Cc: freebsd-questions@freebsd.org Subject: Re: restricting certain users to certain things (pam?) Message-ID: <20030329024944.B16898@skytrackercanada.com> In-Reply-To: <200303281546.h2SFkxNg085135@grant.org>; from mg-fbsd3@grant.org on Fri, Mar 28, 2003 at 10:46:59AM -0500 References: <200303281546.h2SFkxNg085135@grant.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Mar 28, 2003 at 10:46:59AM -0500, Michael Grant wrote: > I have a requirement to restrict certain users to logging in in > certain ways. For example, some users can ftp, others can ftp, ssh, > and get a shell, other users can relay mail using auth login. > > I am pretty sure I can do this though pam.conf. Has anyone actually > done this? Can someone slide me some examples? I have users who collect mail via pop and webmail, and other users who use ftp. I just put /sbin/nologin as their shell in the password file. This prevents them from logging in. I have heard that rsh is insecure.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030329024944.B16898>