From owner-freebsd-questions Mon Oct 11 6: 9:12 1999 Delivered-To: freebsd-questions@freebsd.org Received: from nebula.nift.net (DSL73-223.brandx.net [209.55.73.223]) by hub.freebsd.org (Postfix) with ESMTP id 0EDF314D27 for ; Mon, 11 Oct 1999 06:09:08 -0700 (PDT) (envelope-from druid@eoe-magical.org) Received: from eoe-magical.org ([209.55.73.227]) by nebula.nift.net (8.8.5/8.8.5) with ESMTP id FAA05164; Mon, 11 Oct 1999 05:41:01 -0500 (CDT) Message-ID: <3801E360.CE6A14BA@eoe-magical.org> Date: Mon, 11 Oct 1999 06:17:20 -0700 From: Donald X-Mailer: Mozilla 4.5 [en] (WinNT; I) X-Accept-Language: en MIME-Version: 1.0 To: Sheldon Hearn Cc: freebsd-questions Subject: Re: telnet References: <86770.939641424@axl.noc.iafrica.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Actualy it was to block telnet access not ftp, but thanks for the help, I use all answers I get to create a FAQ for later use. Thanks. Sheldon Hearn wrote: > On Sun, 10 Oct 1999 18:17:19 MST, Donald wrote: > > > I want to block telnet access but not ftp access, how do I change the > > login shell or what do I need to do to get this to work. > > This advice assumes that you mean that you want to block and allow > access _per_ _user_. If that's not what you meant, see Marc Schneiders' > reply. > > For login access via telnet, a user needs a valid shell listed in > /etc/shells . Ftpd also requires that a user's shell be a valid shell in > /etc/shells . So what do you do? :-) > > The easiest thing to do is add to the /etc/ftpusers the usernames from > whom you want to revoke ftp access. This may not be scalable, depending > on your requirements. You may want to add the restricted users to a > new group (say noftp) and add the entire group to the /etc/ftpusers file > as follows: > > @noftp > > Ciao, > Sheldon. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message