From owner-freebsd-questions Wed Sep 8 2:51:51 1999 Delivered-To: freebsd-questions@freebsd.org Received: from pasha.anand.org (pasha.anand.org [199.103.176.41]) by hub.freebsd.org (Postfix) with SMTP id 684AA15032 for ; Wed, 8 Sep 1999 02:51:44 -0700 (PDT) (envelope-from arb@anand.org) Received: (qmail 15309 invoked by uid 1001); 8 Sep 1999 09:51:00 -0000 Date: Wed, 8 Sep 1999 12:51:00 +0300 From: Anand Buddhdev To: "Francis A. Vidal" Cc: FreeBSD Questions Subject: Re: restricted FTP-only user Message-ID: <19990908125100.C15080@africaonline.co.ke> References: <19990908115527.J14237@africaonline.co.ke> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.6i In-Reply-To: ; from Francis A. Vidal on Wed, Sep 08, 1999 at 05:29:30PM +0800 Organisation: Africa Online Ltd, P O Box 63017, Nairobi, Kenya X-Phone: +254-2-243775 X-WWW-Homepage: http://www.anand.org X-Duties: SysAdmin, Hostmaster, Postmaster, Programmer, Support Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Wed, Sep 08, 1999 at 05:29:30PM +0800, Francis A. Vidal wrote: > > Create the account, and make its home directory the DocumentRoot of your > > webserver. Then put the account name in the file /etc/ftpchroot. Also, > > give this account a shell like /sbin/nologin, and make sure > > /sbin/nologin has an entry in /etc/shells (to allow FTP logins). > > aha, now i know. what i did is to create a login class in /etc/login.conf > and changed the shell for ftp-users, which worked, but i like your > suggestion. btw, will chrooting allow him to traverse symbolic links to > directories? He will be able to see the link, but he should not be able to fetch the file it points to. -- See complete headers for more info To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message