Date: Tue, 20 Apr 2004 02:33:05 +0000 From: Andy Miller <andy@trit.org> To: Robert Storey <y2kbug@ms25.hinet.net> Cc: freebsd-questions@freebsd.org Subject: Re: restricting ssh to authorized users Message-ID: <20040420023305.GA19605@charade.trit.org> In-Reply-To: <20040420102506.120a0298.y2kbug@ms25.hinet.net> References: <20040420102506.120a0298.y2kbug@ms25.hinet.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--2fHTh5uZTiUOsy+g Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Apr 20, 2004 at 10:25:06AM +0800, Robert Storey wrote: > I've been wondering what is the best way to prevent certain users from > being able to login with ssh, even though I want to allow them ftp access? >=20 > The opposite is easy to accomplish - if I put somebody's name in file > /etc/ftpusers, that person cannot login with ftp, but they could still > login with ssh. But I don't see a file /etc/sshusers, and I'm wondering if > there is some equivalent. If you don't want someone to be able to login, you can change their login shell to /sbin/nologin. -- Andy Miller --2fHTh5uZTiUOsy+g Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFAhIvf7Gy/m4mCrLkRAraMAJ44YycPwnsdM2MwoTi+F1Q93XE01QCeJYcL FPS5iVQDAw0xvip3wB2ujJo= =+J5H -----END PGP SIGNATURE----- --2fHTh5uZTiUOsy+g--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040420023305.GA19605>