On Sun, Dec 17, 2000 at 09:57:38PM -0500, Brock Noland wrote:
>
> How can I allow someone to use ftp but not give them a shell...
You may always give /bin/false as a "shell". The only thing is that
in such case /bin/false has to be listed in /etc/shells or things may
not work. Do not give a shell script for a "shell" if you are concerned
with security like you should be.
> An ISP I
> uaed to work for had a shell called webftp I haved looked and looked for
> this, cannot find my answer..
This depends on a server but with wu-ftpd look at 'man ftpaccess'.
You have a control over many described there. In particular you can set
"chroot" accounts. Look for the following fragment on a manual page.
The second half is the user's home directory relative
to the root directory. The two halves are separated
by a "/./".
For example, in /etc/passwd, the real entry:
guest1:<passwd>:100:92:Guest Account:/ftp/./incoming:/etc/ftponly
but replace /etc/ftponly with /bin/false.
Configurations like that are your ftp server and not a processor specific.
Michal
_______________________________________________
Axp-list mailing list
Axp-list@redhat.com
https://listman.redhat.com/mailman/listinfo/axp-list
This archive was generated by hypermail version 2a22 on Tue Jan 2 07:48:32 2001 PST
Send any problems or questions about this archive to webmaster@alphalinux.org.