Re: Allow FTP in, but not shell login
If I'm not mistaking and If you only have telnet enabled you can simply '*' disable the account for
the user[s] you want to restrict access to in /etc/passwd file.
ie -
user:*:xxxx:xxxx:UserName,,,:/home/user:/bin/bash
^ which *should* still let users ftp in and deny telnet sessions...
If have your users login via ssh then 'sshd_config' file must be edited to
have something like :
----sshd_config-------
<snip>
DenyUsers guest1 guest2 guest3 etc...
<snip>
----eof---------------
cheers,
xbud
-----------------------------
xbud@g0thead.com
opadilla@lonestar.utsa.edu
"I only drink to make other people interesting."
-----------------------------
On Tue, 13 Mar 2001, Kenneth Pronovici wrote:
> Hello -
>
> I'm not sure exactly where to look for this information, so if I should
> RTFM, just point me toward the right one.
>
> I have a situation where I've volunteered to host a few webpages for
> some users. They're at a university and are having problems getting timely
> access to their organizational websites on their school's server. Anyway,
> I'm happy to be the host, but I want these people to be able to FTP in ONLY,
> without interactive access. I want to do this specifically for a set of
> users, not for all users on the machine.
>
> My feeling is that PAM supports this somehow, but I'm not sure where to
> start. Anyone have any suggestions?
>
> Thanks for the help.
>
> KEN
>
> --
> Kenneth J. Pronovici <pronovic@ieee.org>
> Personal Homepage: http://www.skyjammer.com/~pronovic/
> "The phrase, 'Happy as a clam' has never really held much meaning for me."
>
>
> --
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>
>
Reply to: