Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 11 May 2000 22:29:45 -0500
From:      Glenn Johnson <glennpj@bayouhome.net>
To:        Blake Swensen <blake@pyramus.com>
Cc:        Walter Brameld <freebsd-questions@FreeBSD.ORG>
Subject:   Re: NIS map for /etc/login.access
Message-ID:  <20000511222945.A31266@gforce.johnson.home>
In-Reply-To: <3.0.16.20000511181559.26ef24a4@mail.pyramus.com>; from blake@pyramus.com on Thu, May 11, 2000 at 06:16:36PM -0700
References:  <3.0.16.20000511181559.26ef24a4@mail.pyramus.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, May 11, 2000 at 06:16:36PM -0700, Blake Swensen wrote:

> I have a need to prevent certain clients, who need FTP access, from
> telneting into the machines on my network.
>
> I have been using /etc/login.access to prohibit those users, but it is
> a hassle to add an entry in every machine on the network.
>
> Have also tried to add those users to a NIS'ed group and added the
> @groupname to login.access. Login.access must only look at the user's
> GID, not the group file, or the NIS map for group.
>
> Is there a method for NIS'ifying the login.access file or a better
> method to allow ftp access but not shell access.

You could use rdist to distribute the login.access file. It is part of
the base FreeBSD system although I have found the rdist6 port to be more
useful as I can use ssh for communication between hosts with it.

-- 
Glenn Johnson
glennpj@bayouhome.net


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000511222945.A31266>