Date: Thu, 11 May 2000 22:29:45 -0500 From: Glenn Johnson <glennpj@bayouhome.net> To: Blake Swensen <blake@pyramus.com> Cc: Walter Brameld <freebsd-questions@FreeBSD.ORG> Subject: Re: NIS map for /etc/login.access Message-ID: <20000511222945.A31266@gforce.johnson.home> In-Reply-To: <3.0.16.20000511181559.26ef24a4@mail.pyramus.com>; from blake@pyramus.com on Thu, May 11, 2000 at 06:16:36PM -0700 References: <3.0.16.20000511181559.26ef24a4@mail.pyramus.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, May 11, 2000 at 06:16:36PM -0700, Blake Swensen wrote: > I have a need to prevent certain clients, who need FTP access, from > telneting into the machines on my network. > > I have been using /etc/login.access to prohibit those users, but it is > a hassle to add an entry in every machine on the network. > > Have also tried to add those users to a NIS'ed group and added the > @groupname to login.access. Login.access must only look at the user's > GID, not the group file, or the NIS map for group. > > Is there a method for NIS'ifying the login.access file or a better > method to allow ftp access but not shell access. You could use rdist to distribute the login.access file. It is part of the base FreeBSD system although I have found the rdist6 port to be more useful as I can use ssh for communication between hosts with it. -- Glenn Johnson glennpj@bayouhome.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000511222945.A31266>