Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 8 Mar 2002 17:44:01 -0600 (CST)
From:      Steven Lake <raiden@shell.core.com>
To:        Steve Tremblett <sjt@cisco.com>
Cc:        Steven Lake <raiden@shell.core.com>, <freebsd-questions@FreeBSD.ORG>
Subject:   Re: Selectively forbidding login
Message-ID:  <Pine.GSO.4.44L0.0203081733540.6940-100000@shell.core.com>
In-Reply-To: <20020308181812.A8403@sjt-u10.cisco.com>
index | next in thread | previous in thread | raw e-mail 

	Darn it, replied to the wrong person, but yeah, it's working.  And
by putting an empty file in /etc allows the computer to automatically
refuse the connection as soon as any connections are attempted, with the
exception of FTP.  So thanks.  :)

On Fri, 8 Mar 2002, Steve Tremblett wrote:

> I believe a user will be allowed FTP login if their shell is in
> /etc/shells.  I'm not %100 sure on what nologin does (not on a FreeBSD
> box right now), but I'm guessing that if it is a shell that is made up
> of something like "int main() { return 0; }" it should be safe to put
> in /etc/shells.
>
> +---- Steven Lake wrote:
> | 	Ok, I've looked around and tried the suggestion to modify a user's
> | login so that it reads /sbin/nologin for the shell to prevent user from
> | logging into ssh, but it also blocks them from logging in via FTP and all
> | other services as well.
> |
> | 	All I want it to do is prevent a user from logging into the server via
> | anything but FTP.  I want them to have FTP access and when they login
> | they land in their home directory with the path showing in the FTP
> | program as "/", but nothing else.  How would I best go about this?
> |
> | 	AKA.  When a user does "PWD" all they see is "Current directory is
> | /" instead of the full path and when they do a CD.. they can't go any
> | higher in the directory structure.  Basically put I'm wanting to set users
> | so that they can't see anything on the server except their home directory.
> |
> | 	Thanks again!
> |
> |
> | To Unsubscribe: send mail to majordomo@FreeBSD.org
> | with "unsubscribe freebsd-questions" in the body of the message
> |
> +---end quoted text---
>
> --
> Steve Tremblett
> Cisco Systems
>
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
help

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSO.4.44L0.0203081733540.6940-100000>