Date: Fri, 8 Mar 2002 17:44:01 -0600 (CST) From: Steven Lake <raiden@shell.core.com> To: Steve Tremblett <sjt@cisco.com> Cc: Steven Lake <raiden@shell.core.com>, <freebsd-questions@FreeBSD.ORG> Subject: Re: Selectively forbidding login Message-ID: <Pine.GSO.4.44L0.0203081733540.6940-100000@shell.core.com> In-Reply-To: <20020308181812.A8403@sjt-u10.cisco.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Darn it, replied to the wrong person, but yeah, it's working. And by putting an empty file in /etc allows the computer to automatically refuse the connection as soon as any connections are attempted, with the exception of FTP. So thanks. :) On Fri, 8 Mar 2002, Steve Tremblett wrote: > I believe a user will be allowed FTP login if their shell is in > /etc/shells. I'm not %100 sure on what nologin does (not on a FreeBSD > box right now), but I'm guessing that if it is a shell that is made up > of something like "int main() { return 0; }" it should be safe to put > in /etc/shells. > > +---- Steven Lake wrote: > | Ok, I've looked around and tried the suggestion to modify a user's > | login so that it reads /sbin/nologin for the shell to prevent user from > | logging into ssh, but it also blocks them from logging in via FTP and all > | other services as well. > | > | All I want it to do is prevent a user from logging into the server via > | anything but FTP. I want them to have FTP access and when they login > | they land in their home directory with the path showing in the FTP > | program as "/", but nothing else. How would I best go about this? > | > | AKA. When a user does "PWD" all they see is "Current directory is > | /" instead of the full path and when they do a CD.. they can't go any > | higher in the directory structure. Basically put I'm wanting to set users > | so that they can't see anything on the server except their home directory. > | > | Thanks again! > | > | > | To Unsubscribe: send mail to majordomo@FreeBSD.org > | with "unsubscribe freebsd-questions" in the body of the message > | > +---end quoted text--- > > -- > Steve Tremblett > Cisco Systems > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSO.4.44L0.0203081733540.6940-100000>