[HPADM] RE: ftp only account (Summary)

From: Javier Zayas (javier_zayas_at_cuc.claremont.edu)
Date: 05/05/04

  • Next message: Brendan Doherty: "[HPADM] Sendmail.cf , how to change the senders name" 
    To: "'HP Admin List (hpux-admin@dutchworks.nl)'" <hpux-admin@dutchworks.nl>
Date: Wed, 5 May 2004 10:28:56 -0700

    Thanks to all the folks who answered my query. Turns out that this is quite
    a simple task after all if you stop thinking of how to make things harder.
    The solution was to make sure you have a false/nologin (or something along
    those lines) in /etc/shells and then create the login with that as it's
    shell. This will allow the user to ftp in, but not to have shell access. And
    don't forget about password expirations, which was something I was reminded
    of as well.
     
    Javier Zayas
    System Administrator
    x73143
     
    -----Original Message-----
    From: hpux-admin-owner@DutchWorks.nl [mailto:hpux-admin-owner@DutchWorks.nl]
    On Behalf Of Javier Zayas
    Sent: Wednesday, May 05, 2004 12:54 PM
    To: 'HP Admin List (hpux-admin@dutchworks.nl)'
    Subject: [HPADM] ftp only account
    Has anyone ever been asked to create a unix account that is only allowed to
    ftp into the system and not have a login shell at all? This is my first
    request ever of this type and am a bit unsure as to how I would set this up
    using a unix login. Anyone out there done this before?
    TIA
    Javier Zayas
    System Administrator
    The Claremont Colleges
    Administrative Information Services Office
    javier.zayas@cuc.claremont.edu
    Direct:(909)607-3143
    Cell: (909)319-0278
    http://www.cuc.claremont.edu <http://www.cuc.claremont.edu> 

    --
             ---> Please post QUESTIONS and SUMMARIES only!! <---
        To subscribe/unsubscribe to this list, contact majordomo@dutchworks.nl
       Name: hpux-admin@dutchworks.nl     Owner: owner-hpux-admin@dutchworks.nl
 
 Archives:  ftp.dutchworks.nl:/pub/digests/hpux-admin       (FTP, browse only)
            http://www.dutchworks.nl/htbin/hpsysadmin   (Web, browse & search)
  • Next message: Brendan Doherty: "[HPADM] Sendmail.cf , how to change the senders name"

    Relevant Pages

    • Re: root unable to get shell
      ... > UNIX Gurus, ... > user's shell. ... > When I login or do an su I get a message from the shell stating "No ... you get put a new /etc/passwd via ftp. ...
      (comp.unix.questions)
    • Re: DenyUsers not denying?
      ... login access need a shell to ftp? ... normal ftp will still work (most ftp servers ...
      (comp.security.ssh)
    • Re: IIS 6.0 FTP
      ... Server port: 21. ... I doubt IIS FTP has such feature. ... next, general 530 error indicating login failed, that could due to ... clients are using an order entry program created in Microsoft access. ...
      (microsoft.public.inetserver.iis.ftp)
    • RE: SSH Tunneling without console login
      ... > that the command will also login onto PC2. ... > not give a shell prompt, ... I only need SSH ... > tunneling purposes, i login to the remote server ...
      (SSH)
    • Re: RBAC auth/profile to allow ftp?
      ... > Roles are not supposed to be able to login. ... > or ftp, ssh or anything else. ... Assigning these auths to a role doesn't seem to accomplish ... > for these accounts to be roles? ...
      (comp.unix.solaris)