From owner-freebsd-isp Wed May 23 8:55:40 2001 Delivered-To: freebsd-isp@freebsd.org Received: from smtp012.mail.yahoo.com (smtp012.mail.yahoo.com [216.136.173.32]) by hub.freebsd.org (Postfix) with SMTP id 2266137B423 for ; Wed, 23 May 2001 08:55:37 -0700 (PDT) (envelope-from fbsdq@yahoo.com) Received: from h2.impactidealsolutions.com (HELO support10) (216.98.200.91) by smtp.mail.vip.sc5.yahoo.com with SMTP; 23 May 2001 15:55:36 -0000 X-Apparently-From: Message-Id: Date: Wed, 23 May 2001 09:59:23 -0600 X-Priority: 3 From: Peter X-Mailer: Mail Warrior To: petef@databits.net, "freebsd-isp@freebsd.org" MIME-Version: 1.0 Subject: Re: restrict user (re post) Content-Type: Text/Plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8Bit X-Mailer-Version: v3.57 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org . . . .|| Someone from x.x.x.x tried to login as "test" user, whose shell is illegal . . . .|| (/sbin/nologin). By what you said, it's illegal only in the sense that they can't telnet/ssh into that box. ftpd works by only allowing a user in who has a shell [/sbin/nologin] in /etc/shells. so does the nologin shell exist in /etc/shells? if yes, ftp is workign properly remove /sbin/nologin from /etc/shells and user won't be able to use ftp. On 05/23/2001 9:44:41 AM, Pete Fritchman is quoted as saying: . . . .|++ 23/05/01 11:42 -0400 - alexus: . . . .|| I'm using FreeBSD 4.3 w/ NcFTPd 2.6.x . . . .|| . . . .|| Someone from x.x.x.x tried to login as "test" user, whose shell is illegal . . . .|| (/sbin/nologin). . . . .|| . . . .| . . . .|So, obviously, NcFTPd must be using another method to verify a user's . . . .|shell. A quick search on google reveals: . . . .| . . . .|http://www.ncftpd.com/ncftpd/doc/faq/trouble.html . . . .| . . . .|[excerpt] . . . .|User has an illegal shell; . . . .| Fix: Add the user's shell to /etc/shells, or change the user's . . . .| shell. Then restart NcFTPd. . . . .| . . . .|Did you restart NcFTPd, or follow other troubleshooting procedures . . . .|listed on their webpage? This is drifting OT from freebsd-isp because . . . .|it seems to be an issue with your FTP server. . . . .| . . . .|-pete . . . .| . . . .|-- . . . .|Pete Fritchman . . . .|Databits Network Services, Inc. . . . .|finger petef@databits.net for PGP key . . . .| . . . .| . . . .|To Unsubscribe: send mail to majordomo@FreeBSD.org . . . .|with "unsubscribe freebsd-isp" in the body of the message www.nul.cjb.net www.FreeBSD.org _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message