SUMMARY: ftp-only account

From: David Stern (stern@software.org)
Date: Thu Jan 04 1996 - 15:27:27 CST


Original posting:

> >Without using additional software (such as wu-ftp, tcpwrapper), is it
> >possible to create an account that a user can only ftp into but cant
> >telnet, rsh or rlogin?
> >
> >I've found a hackey way by giving the account a real shell (/bin/csh) to
> >satify the general restrictions of ftpd but set up a .login and .cshrc file
> >not owned by him that closes the connection. Is there a better way?
> >

Here's where I claim my New years hangover got to me. DOH!!
As many quickly replied (and I should have remember) I just nee to
put an entry in /etc/shells that is the "phony shell" listed in the
users /etc/passwd file. In this case I created the following shell:
#! /bin/sh
#
exit 0

Thanks to the following people (and I'm sure there will be more response to
follow):

Mike Fletcher <fletch@ain.bls.com>
Michael Maciolek <mikem@centerline.com>
js@cctechnol.com (Johnie Stafford)
"Jim Meritt" <jmeritt@smtpinet.aspensys.com>
DenBesten@cs.bgsu.edu (William C. DenBesten)
Kevin.Sheehan@uniq.com.au

----------
Dave Stern Software Productivity Consortium
Information Services Division 2214 Rock Hill Road
stern@software.org Herndon, Virginia 22070
703-742-7296



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:10:50 CDT