https://community.hpe.com/t5/operating-system-hp-ux/ftpaccess-file/m-p/4097884#M738401 Thanks for the information, from the link attached I can't see a work around though.<BR /><BR />Moving to sftp would be quite a big change, are there any versions of ftp that allow whitelist (or can anyone think of any work arounds foe wu-ftp - other than writing a script to move every user not requiring ftp to ftpusers).<BR /><BR />btw I am just interested in blocking on user names not IP address. Wed, 07 Nov 2007 05:56:19 GMT DaveJC 2007-11-07T05:56:19Z https://community.hpe.com/t5/operating-system-hp-ux/ftpaccess-file/m-p/4097882#M738399 Hello,<BR /> I would like to move away a blacklist approach for blocking ftp access (involving listing users to be blocked in /etc/ftpd/ftpusers) and use a whitelist involving allowing only a certain list of users to use ftp.<BR /><BR />I need to use the /etc/ftpd/ftpaccess file, however I cannot find any detailed documentation on exactly what I need to do (including the man page). Any pointers to appropriate examples would be useful, or a pointer to some useful documentation.<BR /><BR />All I want to do is say allow the following users to allow logging in with ftp. At the moment I do not want to put restrictions on IP range etc.<BR /><BR />Thanks Tue, 06 Nov 2007 08:36:26 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftpaccess-file/m-p/4097882#M738399 DaveJC 2007-11-06T08:36:26Z https://community.hpe.com/t5/operating-system-hp-ux/ftpaccess-file/m-p/4097883#M738400 Shalom,<BR /><BR />wu-ftpd is based on the blacklist approach. Thats how its designed.<BR /><BR />There may be a workaround.<BR /><BR /><A href="http://www.landfield.com/wu-ftpd/mail-archive/1998/Mar/0004.html" target="_blank">http://www.landfield.com/wu-ftpd/mail-archive/1998/Mar/0004.html</A><BR /><BR />However you may want to abandon the clear text authentication world of ftpd and use Secure shell, as in SFTP, ported from Open SSH.<BR /><BR />With ssh and perhaps tcpwrappers your goal would be very easy to reach.<BR /><BR />SEP Tue, 06 Nov 2007 08:51:15 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftpaccess-file/m-p/4097883#M738400 Steven E. Protter 2007-11-06T08:51:15Z https://community.hpe.com/t5/operating-system-hp-ux/ftpaccess-file/m-p/4097884#M738401 Thanks for the information, from the link attached I can't see a work around though.<BR /><BR />Moving to sftp would be quite a big change, are there any versions of ftp that allow whitelist (or can anyone think of any work arounds foe wu-ftp - other than writing a script to move every user not requiring ftp to ftpusers).<BR /><BR />btw I am just interested in blocking on user names not IP address. Wed, 07 Nov 2007 05:56:19 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftpaccess-file/m-p/4097884#M738401 DaveJC 2007-11-07T05:56:19Z https://community.hpe.com/t5/operating-system-hp-ux/ftpaccess-file/m-p/4097885#M738402 this is one type of entry i have observed on the ftpaccess file..I have NOT implelemnetd anything myself this way.<BR /><BR />upload /home/ftp /pub yes nobody nogroup 0600 dirs Sun, 11 Nov 2007 18:48:12 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftpaccess-file/m-p/4097885#M738402 skt_skt 2007-11-11T18:48:12Z