From owner-freebsd-questions Tue Aug 1 7:29:26 2000 Delivered-To: freebsd-questions@freebsd.org Received: from strange.qualcomm.com (strange.qualcomm.com [129.46.2.27]) by hub.freebsd.org (Postfix) with ESMTP id 8303D37B580; Tue, 1 Aug 2000 07:29:20 -0700 (PDT) (envelope-from randy@qualcomm.com) Received: from [10.81.78.127] (vpnap-g1-012007.qualcomm.com [10.13.12.7]) by strange.qualcomm.com (8.9.3/8.9.3/1.0) with ESMTP id HAA29974; Tue, 1 Aug 2000 07:27:01 -0700 (PDT) Mime-Version: 1.0 Message-Id: In-Reply-To: <786610576774963059030@lists.pensive.org> References: <786610576774963059030@lists.pensive.org> X-Mailer: QUALCOMM Eudora v5.0b8 for Macintosh Date: Tue, 1 Aug 2000 10:25:54 -0400 To: =?iso-8859-1?Q?=22Philipp_Gasch=FCtz=22?= , "Ganizani Phiri" , "Enno Davids" From: Randall Gellens Subject: RE: How can I disable FreeBsd Users Cc: , , , Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" ; format="flowed" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG At 9:12 AM +0200 8/1/00, Philipp Gasch=FCtz wrote: > Hey, > > I think it's far more easy to go via the shell. Have a look into - i > think - pop_pass.c. There is a function which checks whether the user's > shell is a valid shell. Now, if you are giving all users that you want to > disable a shell such as popper.shell (which is a symlink to i.e. bash or > false) and you add a couple of lines of code into pop_pass.c where you > compare the shell retrieved by popper with "popper.shell", you are able > to lock those out... If you want to disable access via the shell, just add '#define CHECK_SHELL 1' to the top of config.h and recompile Qpopper. If the user's shell is not valid, the user will be unable to access the system. If you want to prevent the user from telneting in but still permit POP access, use a shell value of /POPPER/ANY/SHELL/. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message