From owner-freebsd-questions Tue Dec 19 9:59: 6 2000 From owner-freebsd-questions@FreeBSD.ORG Tue Dec 19 09:59:04 2000 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from ultra.comspace.com (209-16-25-2.insync.net [209.16.25.2]) by hub.freebsd.org (Postfix) with ESMTP id 328E437B69C for ; Tue, 19 Dec 2000 09:59:03 -0800 (PST) Received: from danield (cs16255-34.houston.rr.com [24.162.55.34]) by ultra.comspace.com (8.9.3/8.9.3) with SMTP id LAA18290; Tue, 19 Dec 2000 11:58:02 -0600 (CST) Message-ID: <014a01c069e4$e51e44c0$0500a8c0@comspace.com> From: "Daniel Domengeaux" To: "Nathan Vidican" , "Jason Halbert" Cc: References: <200012191759.MAA98012@mail2.wmptl.com> Subject: Re: FTP only user Date: Tue, 19 Dec 2000 11:55:07 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG | As far as limiting the users from being able to telnet/ssh, | unfortunately, (as far as I know anyhow), a user must have a valid | shell in order for ftpd to authenticate said user. I usually just their | login scripts and make them so the user cannot change them so as to log | them out immediately if they attempt telnet/rlogin/ssh logins. i believe you can just add /bin/date to /etc/shells and then set the user's shell to /bin/date so when they login all they get is the date and then logged back out. you can also try setting the users shell to /nonexistent i think that should still allow ftp access. -daniel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message