From owner-freebsd-questions Sat Sep 1 5:49:53 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail2.mediadesign.nl (md2.mediadesign.nl [212.19.205.67]) by hub.freebsd.org (Postfix) with SMTP id A468B37B406 for ; Sat, 1 Sep 2001 05:49:48 -0700 (PDT) Received: (qmail 3983 invoked by uid 1002); 1 Sep 2001 12:49:42 -0000 Date: Sat, 1 Sep 2001 14:49:42 +0200 From: Alson van der Meulen To: freebsd-questions@FreeBSD.ORG Subject: Re: This isn't posible is it? Message-ID: <20010901144942.A7440@md2.mediadesign.nl> Mail-Followup-To: freebsd-questions@FreeBSD.ORG References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.20i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Sat, Sep 01, 2001 at 01:49:11AM -0700, want_2_learn_freebsd@hotmail.com wrote: > Thanks Matthew, > > I will look into your suggestion. However, it still looks like that won't > be able to use nt authentication for each ftp user. That probably isn't > possible. > > At 1st I was thinking that the user logging in would execute a script which > would connect to the nt share as themselves. Unfortunately, it looks like I > must stay with IIS :( It might be possible to do this if you mount the NT share with that username in their 'shell', if you set vfs.usermount to 1 (sysctl). I'm not sure how smbfs handles authentication, but i guess it should be possible to use user=$USER and password=`cat ~/.mypasswd` (where ~/.mypasswd is mode 600). Putting such mount instruction in a shell script and setting that as shell is trivial. I don't know how to handle umounting, maybe having a cron script check if a user is still logged on, and umount if the share isn't in use anymore. HTH Alson (BTW, please write your reply below the previous message, it makes it more readable) > > ----- Original Message ----- > From: "Matthew Emmerton" > To: > Cc: > Sent: Friday, August 31, 2001 6:47 PM > Subject: Re: This isn't posible is it? > > > > On Fri, 31 Aug 2001 want_2_learn_freebsd@hotmail.com wrote: > > > > > I'd like to create unix users who only have ftp access, and there home > > > directory would be a folder on an NT share, AND have this user connect > to > > > that share as themselves. > > > > First, you need to make the NT share accessible on the UNIX machine. This > > can be done using smbfs, but I haven't used it before. Check the FAQ or > > man pages for details. > > > > Next, create the users on your FreeBSD box and give them /bin/true as a > > shell and specify the appropriate directory in the smbfs filesystem as > > their homedir. You'll have to add /bin/true to the /etc/shells file in > > order for them to have FTP access. (/bin/true as a shell will prevent > > them from being able to log into the system. However, the FTP server wil > > let them in via FTP since their shell is listed in /etc/shells.) > > > > Next, place the usernames of these users in the /etc/ftpchroot file. This > > will "lock" them into their own home directories, so they can only access > > their files. > > > > As like anything in the UNIX world, YMMV. > > > > -- > > Matt Emmerton > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message