*BSD News Article 63669


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!newshost.telstra.net!act.news.telstra.net!psgrain!news.uoregon.edu!chi-news.cic.net!news.enteract.com!news.inap.net!uwm.edu!math.ohio-state.edu!howland.reston.ans.net!EU.net!sun4nl!news.simplex.nl!xs1!rob
From: rob@xs1.simplex.nl (Rob Simons)
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: Re: How to permit FTP w/o giving shell access?
Date: 13 Mar 1996 12:18:28 GMT
Organization: SimpleX Networking Amsterdam
Lines: 25
Message-ID: <4i6eek$bcv@news.simplex.nl>
References: <4i0p0k$jtj@muenchen.photogrammetrie.de> <4i2f8q$16o@uriah.heep.sax.de>
NNTP-Posting-Host: xs1.simplex.nl
X-Newsreader: TIN [version 1.2 PL2]

J Wunsch (j@uriah.heep.sax.de) wrote:
: mehldau@photogrammetrie.de (Gerhard Mehldau) writes:

: > I would like to give some users access to a (FreeBSD 2.1)
: > system *without* allowing them to login directly.  I've
: > tried setting their shell to /nonexistent, but that also
: > prevents them from using ftp.  Any ideas?

: Use /sbin/nologin, and include this one into /etc/shells.
I second this, in favor of all other postings like /bin/true /bin/sync
exit in profile etc. 
Though I must say I'd have named the 'nologin' script '/bin/xsh' ;-)

Note!  Although users cannot log into your system, they can receive
email (password file entry) and fetch it though a POP server (if 
you're running that of course)

- Rob.

--
/*--------------------------------------------------------------*\
/*   Rob Simons                      |  rob@simplex.nl          *\
/*   ------------  |  -------------  |  --------  |  -------    *\
/*   Novell Netware System Operator  |  UNIX system operator    *\
/*--------------------------------------------------------------*\