From owner-freebsd-isp Mon Nov 6 9: 3:39 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.hiwaay.net (fly.HiWAAY.net [208.147.154.56]) by hub.freebsd.org (Postfix) with ESMTP id D785A37B4C5 for ; Mon, 6 Nov 2000 09:03:35 -0800 (PST) Received: from bonsai.knology.net (user-24-214-88-8.knology.net [24.214.88.8]) by mail.hiwaay.net (8.11.0/8.11.0) with ESMTP id eA6H3T715876; Mon, 6 Nov 2000 11:03:30 -0600 (CST) Received: (from steve@localhost) by bonsai.knology.net (8.11.0/8.9.3) id eA6H3Tx51475; Mon, 6 Nov 2000 11:03:29 -0600 (CST) (envelope-from steve) Date: Mon, 6 Nov 2000 11:03:28 -0600 From: Steve Price To: Dave Wilson Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Limited FTP accounts Message-ID: <20001106110328.B70975@bonsai.knology.net> References: <027901c047eb$ccf15ab0$112821c4@sai.co.za> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <027901c047eb$ccf15ab0$112821c4@sai.co.za>; from davew@sai.co.za on Mon, Nov 06, 2000 at 02:19:24PM +0200 X-Operating-System: FreeBSD 5.0-CURRENT i386 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, Nov 06, 2000 at 02:19:24PM +0200, Dave Wilson wrote: # # Any one got any ideas on how to restrict an FTP user to only accessing his # home directory and nothing else ? # See I want a normal user to have access to nothing else other than his home # directory. From the ftpd() manpage: 5. If the user name appears in the file /etc/ftpchroot, or the user is a member of a group with a group entry in this file, i.e. one prefixed with `@', the session's root will be changed to the user's login directory by chroot(2) as for an ``anonymous'' or ``ftp'' account (see next item). This facil- ity may also be triggered by enabling the boolean "ftp-chroot" capability in login.conf(5). However, the user must still supply a password. This feature is intended as a compromise between a fully anonymous account and a fully privileged ac- count. The account should also be set up as for an anonymous account. -steve To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message