From owner-freebsd-questions Thu Apr 17 14:56:56 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id OAA08890 for questions-outgoing; Thu, 17 Apr 1997 14:56:56 -0700 (PDT) Received: from xmission.xmission.com (softweyr@xmission.xmission.com [198.60.22.2]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA08878 for ; Thu, 17 Apr 1997 14:56:46 -0700 (PDT) Received: (from softweyr@localhost) by xmission.xmission.com (8.8.5/8.7.5) id PAA24607; Thu, 17 Apr 1997 15:54:32 -0600 (MDT) From: Wes Peters - Softweyr LLC Message-Id: <199704172154.PAA24607@xmission.xmission.com> Subject: Re: Local net + initernet (interesting idea) To: matrix@norilsk.ru (Artem Koutchine) Date: Thu, 17 Apr 1997 15:54:31 -0600 (MDT) Cc: questions@freebsd.org In-Reply-To: <199704171343.RAA04082@omni.norilsk.ru> from "Artem Koutchine" at Apr 17, 97 09:42:42 pm X-Mailer: ELM [version 2.4 PL25] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Artem Koutchine asked: > Recently one very interesting question came up and > i just could not figure out teh solution. You came to the right place. > We are and ISP and also decided to make a very interesting thing > such as city intranet (thanks god our city is pretty compact). In this > light the problems that came up were What a great idea! What city do you serve? > 4) No shell for city net users. > [...] > Part of the sollution is in using PAP (not shell account), but it mean no > POP3, SMTP mail! I can help solve this one. Go ahead and create a shell account for each of your citynet users, but set their shell to /sbin/nologin. This will create a valid passwd entry for the user, but keep them from every really logging into your server. If you *do not* put /sbin/nologin into the file /etc/shells, these users will *not* be able to login to your ftp server. If you would like a version of the nologin program that logs access attempts to nologin accounts, see my web page listed below. I've written a simple compiled nologin program that logs a message in the system log whenever someone trys to access a nologin account; you compile and install this program and use it as the users shell. > PS: If this letter gets to a russian speaking person, write in russian > please :) Russian? Even my english is questionable -- I've been stuck in Utah too long! ;^) -- "Where am I, and what am I doing in this handbasket?" Wes Peters Softweyr LLC http://www.xmission.com/~softweyr softweyr@xmission.com