From owner-freebsd-questions@FreeBSD.ORG Mon Jun 23 06:56:52 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CDEE837B404 for ; Mon, 23 Jun 2003 06:56:52 -0700 (PDT) Received: from spam2.snu.ac.kr (spam2.snu.ac.kr [147.46.10.68]) by mx1.FreeBSD.org (Postfix) with SMTP id 26AB343FBD for ; Mon, 23 Jun 2003 06:56:51 -0700 (PDT) (envelope-from lahaye@users.sourceforge.net) Received: (snipe 1599 invoked by alias); 23 Jun 2003 14:03:33 -0000 Received: from lahaye@users.sourceforge.net with Spamsniper2.0 (Processed in 0.049068 secs); Received: from unknown (HELO sis1.snu.ac.kr) (147.46.10.36) by 0 with SMTP; 23 Jun 2003 14:03:33 -0000 X-RCPTTO: freebsd-questions@freebsd.org, Received: from users.sourceforge.net ([147.46.44.183]) by sis1.snu.ac.kr (8.12.9/8.12.9) with ESMTP id h5NDsYuR287864 for ; Mon, 23 Jun 2003 22:54:36 +0900 Message-ID: <3EF7072C.7020908@users.sourceforge.net> Date: Mon, 23 Jun 2003 22:57:00 +0900 From: Rob Lahaye Organization: Seoul National University - South Korea User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.4b) Gecko/20030518 X-Accept-Language: en-us, en, ko-kr MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <20030613125624.87202.qmail@web13407.mail.yahoo.com> In-Reply-To: <20030613125624.87202.qmail@web13407.mail.yahoo.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Subject: Re: creating ftp users! X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Jun 2003 13:56:53 -0000 I have not inetd running, but instead only allow secure connections with ssh and sftp. However, the hints given here seem to only apply to ftpd server and not the sftp connection. /sbin/nologin disables both, ssh and sftp. Is there a way to disable ssh, but allow sftp access only? Can I do the /etc/ftpchroot for sftp as well? Thanks, Rob. Jonathan Arnold wrote: >> How to create users for Ftp server(inetd)? > > You just use the 'adduser' command normally, to add a "normal" > user. If they are just going to be doing ftp, you can use the > /sbin/nologin for their shell, so they can't login. Doron Shmaryahu wrote: > > I would also suggest limiting ftp users to their respective home dir. You > can do this simply by creating a file /etc/ftpchroot and putting all the > usernames in there.