- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: no shell account
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-02-2008 11:49 PM
тАО03-02-2008 11:49 PM
Any way to create a no shell account.
Please help.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-03-2008 12:08 AM
тАО03-03-2008 12:08 AM
Re: no shell account
If it's only for sending and receiving files then "ftp" or "sftp" is probably simpler. You can restrict the user to which ever directories you want and give them an "ftpshell" as their shell too.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-03-2008 12:16 AM
тАО03-03-2008 12:16 AM
Re: no shell account
#vipw
and in shell area replace the existing shell by /usr/bin/ftpshell.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-03-2008 12:57 AM
тАО03-03-2008 12:57 AM
Re: no shell account
# pwd
/usr/bin
# ll ftp*
-r-xr-xr-x 1 bin bin 374364 Nov 10 2006 ftp
-r-xr--r-- 1 bin bin 42828 Nov 10 2006 ftpcount
-r-xr--r-- 1 bin bin 48244 Nov 10 2006 ftprestart
-r-xr--r-- 1 bin bin 56828 Nov 10 2006 ftpshut
lrwxr-xr-x 1 root bin 10 Nov 16 14:16 ftpwho -> ./ftpcount
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-03-2008 01:49 AM
тАО03-03-2008 01:49 AM
Re: no shell account
1. Create a bogus shell for users that will only have FTP access to the system:
a. vi /usr/bin/ftpshell
b. exit 0
c. chmod 555 /usr/bin/ftpshell
d. chown bin:bin /usr/bin/ftpshell
2. Create an /etc/shells file:
a. vi /etc/shells
b. Include these lines in the file:
/sbin/sh
/usr/bin/ksh
/usr/bin/sh
/usr/bin/csh
/usr/bin/rsh
/usr/bin/rksh
/usr/bin/keysh
/bin/sh
/bin/ksh
/bin/csh
/bin/rsh
/bin/rksh
/usr/bin/ftpshell
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-03-2008 02:13 AM
тАО03-03-2008 02:13 AM
Re: no shell account
Connection has been unexpectedly closed. Server sent command exit status 1.
# cat /usr/bin/ftpshell
exit 0
# cat /etc/shells
/bin/sh
/usr/bin/sh
/bin/ksh
/usr/bin/ksh
/usr/bin/ftpshell
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-03-2008 02:24 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-03-2008 02:28 AM
тАО03-03-2008 02:28 AM
Re: no shell account
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-03-2008 03:29 AM
тАО03-03-2008 03:29 AM
Re: no shell account
There are proper ftp clients that support encryption and will also allow you to restrict what the user can see/do and remove the requirement for a shell.
"oftp" is one though and I believe there is an "eftp" as well.
Alternatively, use ftp and encrypt the files before transferring.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-03-2008 09:36 AM
тАО03-03-2008 09:36 AM