From owner-freebsd-questions Sun May 23 0:45:30 1999 Delivered-To: freebsd-questions@freebsd.org Received: from mail5.sirius.com (mail5.sirius.com [205.134.253.72]) by hub.freebsd.org (Postfix) with ESMTP id 5826914E4E for ; Sun, 23 May 1999 00:45:25 -0700 (PDT) (envelope-from freepix@sirius.com) Received: from Jasons (ppp-frx201--014.sirius.net [205.134.236.14]) by mail5.sirius.com (8.9.2/8.9.1) with SMTP id AAA07879; Sun, 23 May 1999 00:45:21 -0700 (PDT) Message-Id: <4.1.19990523004413.00a282e0@mail.sirius.com> X-Sender: freepix@mail.sirius.com X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 Date: Sun, 23 May 1999 00:45:18 -0700 To: Christopher Michaels From: Jason Scott Subject: RE: Allowing users access Cc: questions@FreeBSD.org In-Reply-To: <6C37EE640B78D2118D2F00A0C90FCB44011058FA@site2s1> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Thank you very much, that was the problem. It should help everyone out to know it. I wrote a message to the forum about restricting FTP access to certain directories... Hopefully I will hear something soon. Thanks again, Jason Scott At 03:20 AM 5/23/99 -0400, you wrote: >Uhm, yes. > >If you don't have a "valid" shell for the user, ftp doesn't let you login. >A valid shell is something that is listed in /etc/shells. What I >recommended is to install the port for nologin. I believe it's in >/usr/ports/shells/nologin, but I'm not 100% certain of that. Once you >install nologin, add an entry for it in /etc/shells, and then change the >user's shells to nologin. > >When you add it to /etc/shell and as the user's shell, make sure you use the >full path. Which I believe is /usr/local/etc/nologin, but again, I'm not >100% sure. I'm at work not at home to check right now. (of course if I was >at home I'd be sleeping right now anyway. heheh) > >-Chris > >P.S. Please keep the replies cc'd to the FreeBSD mailing list. > >> -----Original Message----- >> From: Jason Scott [SMTP:freepix@sirius.com] >> Sent: Sunday, May 23, 1999 1:28 AM >> To: Christopher Michaels >> Subject: RE: Allowing users access >> >> When I create a new user with shell "no" it does not let me log in with >> FTP >> or Telnet... Could I possibly doing it wrong? >> >> Jason >> >> >> At 12:40 AM 5/23/99 -0400, you wrote: >> >It may be useful to look through the mailing list archives on this, as >> I've >> >never done it myself. (http://www.FreeBSD.org/search/) >> > >> >BUT, as this question has been asked several times I believe I know there >> >answer. >> > >> >Put the usernames of the users in /etc/ftpchroot, what you'll need to do, >> if >> >you do that is to make a dir in each user's home dir called ~/bin and >> copy >> >the files from ~ftp/bin into that dir. Otherwise you would have to >> >re-compile ftpd with FTPD_INTERNAL_LS. I'm sure someone else on the list >> >could give you more detailed instructions on this. But it can be done. >> > >> >-Chris >> > >> >P.S. Take a look at this posting on freebsd.org.. >> >http://www.freebsd.org/cgi/getmsg.cgi?fetch=839110+841779+/usr/local/www/ >> db/ >> >text/1998/freebsd-questions/19981108.freebsd-questions >> > >> >> -----Original Message----- >> >> From: Jason Scott [SMTP:freepix@sirius.com] >> >> Sent: Sunday, May 23, 1999 12:30 AM >> >> To: Christopher Michaels >> >> Subject: RE: Allowing users access >> >> >> >> Thank you very much for this information. Do you happen to know how to >> >> restrict users to only upload/download/edit files in their >> directory/home >> >> and nothing before that? If so I would GREATLY appreciate it. >> >> >> >> Thank You, >> >> Jason Scott >> >> >> >> >> >> At 12:20 AM 5/23/99 -0400, you wrote: >> >> >Grab nologin from the ports section. >> >> >Install it. >> >> >Add it to the /etc/shells file. >> >> >Change the users' shells to nologin (/usr/local/bin/nologin I think). >> >> > >> >> >ftp will allow them access since they are using a valid shell (as per >> >> >/etc/shells) but the nologin shell will not allow them to telnet in. >> >> > >> >> >-Chris >> >> > >> >> >> -----Original Message----- >> >> >> From: Jason Scott [SMTP:freepix@sirius.com] >> >> >> Sent: Saturday, May 22, 1999 7:26 PM >> >> >> To: FreeBSD-questions@FreeBSD.ORG >> >> >> Subject: Allowing users access >> >> >> >> >> >> I would like to allow users access to FTP their files into their >> >> >> individual >> >> >> accounts on my server, but I don't want to allow Telnet (or allow >> only >> >> >> limited telnet) so that my server's files are not altered. If >> anyone >> >> has >> >> >> any experience in this, or could point me in the right direction, I >> >> would >> >> >> appreciate it EXTREMELY. I have read several books, including "the >> >> >> complete freebsd" and more, and I haven't been able to find >> anything... >> >> >> >> >> >> Thank You, >> >> >> Jason Scott >> >> >> >> >> >> Please reply via e-mail to: freepix@sirius.com >> >> >> >> >> >> >> >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> >> >> with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message