Date: Sun, 27 Jun 2004 01:35:43 +0300 From: Giorgos Keramidas <keramida@ceid.upatras.gr> To: Bill Moran <wmoran@potentialtech.com> Cc: doc@freebsd.org Subject: Re: ftp-chroot in login.conf ... doc error? Message-ID: <20040626223543.GC1176@gothmog.gr> In-Reply-To: <20040626190214.GC1016@gothmog.gr> References: <20040621213819.43df0591.wmoran@potentialtech.com> <20040626190214.GC1016@gothmog.gr>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2004-06-26 22:02, Giorgos Keramidas <keramida@ceid.upatras.gr> wrote: > IMHO, if a small description is added it should probably be something > like this: > > ftp-chroot If your ftpd(8) has been compiled with login.conf(5) > support, then you can set this boolean option for a > user class to tell ftpd(8) that it should use > chroot(2) to restrict the specific class of users in > their HOME directory after they have successfully > authenticated. > Does this look ok as an addition to login.conf(5)? Well, apparently it doesn't. After reading the manpage more carefully, I withdraw the above proposal and substitute this diff in its place: %% Index: login.conf.5 =================================================================== RCS file: /home/ncvs/src/lib/libutil/login.conf.5,v retrieving revision 1.49 diff -u -r1.49 login.conf.5 --- login.conf.5 5 May 2003 06:25:03 -0000 1.49 +++ login.conf.5 26 Jun 2004 22:34:24 -0000 @@ -183,6 +183,14 @@ value. .It "hushlogin bool false Same as having a ~/.hushlogin file. .It "ignorenologin bool false Login not prevented by nologin. +.It "ftp-chroot bool false Limit ftp access with +.Xr chroot 2 +to the +.Ev HOME +directory of the user. +See +.Xr ftpd 8 +for details. .It "label string Default MAC policy; see .Xr maclabel 7 . .It "lang string Set $LANG environment variable to the specified value. @@ -399,6 +407,7 @@ .Sh SEE ALSO .Xr cap_mkdb 1 , .Xr login 1 , +.Xr chroot 2 , .Xr getcap 3 , .Xr getttyent 3 , .Xr login_cap 3 , @@ -406,4 +415,5 @@ .Xr pam 3 , .Xr passwd 5 , .Xr ttys 5 , +.Xr ftpd 8 , .Xr pam_passwdqc 8 %%
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040626223543.GC1176>