[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: new users shell set to /bin/false - are there any security issues?

On Sun, 2004-08-29 at 12:12, kev wrote:
> i'm using a pretty much standard debian stable machine.......
> i need to allow users FTP only access - i can create them with
> #adduser --shell /bin/false <username>
> in the /etc/proftpd.conf file i can set
> RequireValidShell off
> so that the proftpd server allows the users access even though they don't 
> have a valid shell.
> but i'd like to know if there are any security considerations i should be 
> aware of with having a shell of /bin/false. 

i know you are talking about restricting ftp access, and regarding
/bin/false as a shell i cannot comment. 

you can provide no-shell scp and sftp access with the package "scponly".


Reply to: