Re: new users shell set to /bin/false - are there any security issues?
On Sun, 2004-08-29 at 12:12, kev wrote:
> i'm using a pretty much standard debian stable machine.......
> i need to allow users FTP only access - i can create them with
> #adduser --shell /bin/false <username>
> in the /etc/proftpd.conf file i can set
> RequireValidShell off
> so that the proftpd server allows the users access even though they don't
> have a valid shell.
> but i'd like to know if there are any security considerations i should be
> aware of with having a shell of /bin/false.
i know you are talking about restricting ftp access, and regarding
/bin/false as a shell i cannot comment.
you can provide no-shell scp and sftp access with the package "scponly".