Re: VSFTPD issues
Tom Haddon wrote:
> Hi Tim,
>
> So how to I determine if I'm using a PAM build and/or change to a
> non-PAM build? Seems like something of a security exposure to me to
> have to enable a correct shell for ftp users. I guess I can control
> access to ssh, etc., but even so...
It is a pam build, you can check the build scripts, the notes or the README
that gets installed with the package to find out.
To switch to a non pam build, you would need to build your own, this should
help
http://www.debian.org/doc/FAQ/ch-pkg_basics.en.html#s-sourcepkgs
>
> Thanks, Tom
>
> -----Original Message-----
> From: Tim Hunter [mailto:tim@brokenbits.com]
> Sent: Thursday, April 21, 2005 1:38 PM
> To: debian-testing@lists.debian.org
> Subject: Re: VSFTPD issues
>
>
> Tom Haddon wrote:
>> Hi Folks,
>>
>> I have a strange issue with vsftpd. The check_shell option doesn't
>> seem to be working for me. Here's my config:
>>
>> listen=YES
>> anonymous_enable=NO
>> local_enable=YES
>> write_enable=YES
>> local_umask=022
>> userlist_enable=YES
>> userlist_file=/etc/vsftpd/userlist
>> userlist_deny=NO
>> check_shell=NO
>> dirmessage_enable=YES
>> xferlog_enable=YES
>> connect_from_port_20=YES
>> nopriv_user=ftp
>> ftpd_banner=Welcome to Tom's FTP service.
>> chroot_local_user=YES
>>
>> I had the same config working fine on Mandrake 9.1 but am migrating
>> to debian. Basically, a user in the /etc/vsftpd/userlist file can
>> only login if their shell is in /etc/shells. And I specifically don't
>> want that. Can anyone help?
>>
>
> check_shell
> Note! This option only has an effect for non-PAM builds of vsftpd. If
> disabled, vsftpd will not check /etc/shells for a valid user shell
> for local
> logins.
>> Thanks, Tom
Reply to: