Date: Wed, 23 May 2001 11:16:24 -0400 From: Pete Fritchman <petef@databits.net> To: alexus <ml@db.nexgen.com> Cc: freebsd-isp@freebsd.org Subject: Re: restriction of user Message-ID: <20010523111624.A69978@databits.net> In-Reply-To: <001a01c0e39a$8dfd4b70$01000001@book>; from ml@db.nexgen.com on Wed, May 23, 2001 at 11:10:50AM -0400 References: <001a01c0e39a$8dfd4b70$01000001@book>
next in thread | previous in thread | raw e-mail | index | archive | help
++ 23/05/01 11:10 -0400 - alexus: | how can i disallow certain users shell access but do not restrict ftp/mail | acccess? Give them a shell listed in /etc/shells but is not a login shell. For example: ln -s /sbin/nologin /sbin/ftponly echo "/sbin/ftponly" >> /etc/shells Now, if you have a user that should be able to authenticate with other services (mail, ftp, etc) but should not be able to login via a shell, set their shell to /sbin/ftponly. (/sbin/nologin works too, but if you want an ftp-only account the shell must be in /etc/shells, and having /sbin/nologin in /etc/shells can be a problem.. say if you set suspended users to /sbin/nologin they could still ftp in). Good luck, -pete -- Pete Fritchman <petef@databits.net> Databits Network Services, Inc. <http://databits.net>; finger petef@databits.net for PGP key To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010523111624.A69978>