Date: Tue, 12 Jun 2001 17:57:03 -0400 (EDT) From: Rob Simmons <rsimmons@wlcg.com> To: "Antoine Beaupre (LMC)" <Antoine.Beaupre@ericsson.ca> Cc: Jamie Norwood <mistwolf@mushhaven.net>, "Antoine Beaupre (LMC)" <Antoine.Beaupre@lmc.ericsson.se>, freebsd-security@FreeBSD.ORG Subject: Re: OT: yet another discussion FTP vs HTTP (was: IPFW almost works now.) Message-ID: <Pine.BSF.4.21.0106121754400.64291-100000@mail.wlcg.com> In-Reply-To: <3B2684EC.2010205@lmc.ericsson.se>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 On Tue, 12 Jun 2001, Antoine Beaupre (LMC) wrote: > Jamie Norwood wrote: > I think you misunderstood. If you need to allow ftp access, *securly*, > you must use sftp, and then, you must provide the user with a shell > account, which is by definition a higher security risk, unless you > disable the shell account and use only RSA auth. Which is completly > user-unfriendly. chroot'ing that user's ssh session to their home directory could solve this problem somewhat. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7JpAzv8Bofna59hYRAz69AJ43K3GjMNQDGyT2W7kc8iWASfZgkgCdH1ca rnCP/j1ckt2AFtUtcrG8a/E= =PrcX -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0106121754400.64291-100000>