Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 20 Apr 2004 02:33:05 +0000
From:      Andy Miller <andy@trit.org>
To:        Robert Storey <y2kbug@ms25.hinet.net>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: restricting ssh to authorized users
Message-ID:  <20040420023305.GA19605@charade.trit.org>
In-Reply-To: <20040420102506.120a0298.y2kbug@ms25.hinet.net>
References:  <20040420102506.120a0298.y2kbug@ms25.hinet.net>

next in thread | previous in thread | raw e-mail | index | archive | help

--2fHTh5uZTiUOsy+g
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Tue, Apr 20, 2004 at 10:25:06AM +0800, Robert Storey wrote:
> I've been wondering what is the best way to prevent certain users from
> being able to login with ssh, even though I want to allow them ftp access?
>=20
> The opposite is easy to accomplish - if I put somebody's name in file
> /etc/ftpusers, that person cannot login with ftp, but they could still
> login with ssh. But I don't see a file /etc/sshusers, and I'm wondering if
> there is some equivalent.

If you don't want someone to be able to login, you can change their
login shell to /sbin/nologin.

--
Andy Miller
--2fHTh5uZTiUOsy+g
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQFAhIvf7Gy/m4mCrLkRAraMAJ44YycPwnsdM2MwoTi+F1Q93XE01QCeJYcL
FPS5iVQDAw0xvip3wB2ujJo=
=+J5H
-----END PGP SIGNATURE-----

--2fHTh5uZTiUOsy+g--



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040420023305.GA19605>