Re: new users shell set to /bin/false - are there any security issues?

To: debian-user@lists.debian.org
Subject: Re: new users shell set to /bin/false - are there any security issues?
From: matt zagrabelny <mzagrabe@d.umn.edu>
Date: Mon, 30 Aug 2004 09:23:44 -0500
Message-id: <[🔎] 1093875823.1243.12.camel@zero>
In-reply-to: <[🔎] cgt2qg$jb3$1$8300dec7@news.demon.co.uk>
References: <[🔎] cgt2qg$jb3$1$8300dec7@news.demon.co.uk>

On Sun, 2004-08-29 at 12:12, kev wrote:
> i'm using a pretty much standard debian stable machine.......
> 
> 
> i need to allow users FTP only access - i can create them with
> 
> #adduser --shell /bin/false <username>
> 
> in the /etc/proftpd.conf file i can set
> RequireValidShell off
> 
> so that the proftpd server allows the users access even though they don't 
> have a valid shell.
> 
> but i'd like to know if there are any security considerations i should be 
> aware of with having a shell of /bin/false. 
> 

i know you are talking about restricting ftp access, and regarding
/bin/false as a shell i cannot comment. 

you can provide no-shell scp and sftp access with the package "scponly".

-matt

Reply to:

References:
- new users shell set to /bin/false - are there any security issues?
  - From: kev <kbailey@freewayprojects.com>

Prev by Date: Re: cdrecord issues since 2.6 move
Next by Date: Re: How do I add MS Verdana to OpenOffice?
Previous by thread: new users shell set to /bin/false - are there any security issues?
Next by thread: eroaster atapi ide-scsi and burning files - fail to detect reader/writer
Index(es):
- Date
- Thread