HPE Community
Operating System - HP-UX
1752795 Members
6009 Online
108789 Solutions
New Discussion юеВ

how to restrict ftp user only access it's own home directory

 
SOLVED
Go to solution
Md. Minhaz Khan
Super Advisor

тАО01-21-2009 09:37 PM

тАО01-21-2009 09:37 PM

how to restrict ftp user only access it's own home directory

When an HP-UNIX user login as a ftp user, it can access other directory besides it's own home directory.

How can i restrict ftp user only access it's own home directory
0 Kudos
7 REPLIES 7
Robert-Jan Goossens_1
Honored Contributor

тАО01-22-2009 02:46 AM

тАО01-22-2009 02:46 AM

Re: how to restrict ftp user only access it's own home directory

Hi,

You will need to have a registered support contract to view next document.

Title: How to set up restricted or chroot'd user accounts with FTP
Document ID: emr_na-c00905690-5

http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c00905690-5

Regards,
Robert-Jan

Ps, please assign points for answers to your questions!
http://forums11.itrc.hp.com/service/forums/pageList.do?userId=WW185421&listType=unassigned&forumId=1
0 Kudos
Jeeshan
Honored Contributor

тАО01-22-2009 03:03 AM

тАО01-22-2009 03:03 AM

Solution

Re: how to restrict ftp user only access it's own home directory

salam minhaz

take a look at the attachement
a warrior never quits
0 Kudos
Kapil Jha
Honored Contributor

тАО01-22-2009 03:10 AM

тАО01-22-2009 03:10 AM

Re: how to restrict ftp user only access it's own home directory

If that user is not very important , i mean only doing ftp thing....change his/her shell to restricted shell , this would stop him from moving anwhere aprt from his home directory.

google+restricted shell

BR,
Kapil+
I am in this small bowl, I wane see the real world......
0 Kudos
Steven Schweda
Honored Contributor

тАО01-22-2009 03:29 AM

тАО01-22-2009 03:29 AM

Re: how to restrict ftp user only access it's own home directory

> You will need to have a registered support
> contract [...]

There is some evidence to the contrary [*],
but I claim that "man ftpd" and "man
ftpaccess" contain all you need to know to
set up "guest" users. For these "guest"
users, the ftpd does a chroot(), which should
hide other parts of the file system.

As explained ("man ftpd"), you do need to add
some things to a guest user's home directory
if you want all the usual FTP commands to
work.


[*] http://forums.itrc.hp.com/service/forums/questionanswer.do?threadId=1303627
0 Kudos
Md. Farhan A Azam
Trusted Contributor

тАО01-22-2009 04:34 AM

тАО01-22-2009 04:34 AM

Re: how to restrict ftp user only access it's own home directory

Salam Minhaz, it will help you,


1) FTP restricted user creation {modify it as per your requirment}
#useradd -m -d /homedirectory/./ -s /usr/bin/false -g {group} {username}

2) If you alreday have created the user,

#vi /etc/passwd

and add /./ after home directory...user will not be able to move to other directory (but user can login through telnet)

3) If want to block telnet also (user can login through ftp only).

#vi /etc/passwd

/usr/bin/false (chnage the shell)
0 Kudos
Md. Farhan A Azam
Trusted Contributor

тАО01-22-2009 07:36 AM

тАО01-22-2009 07:36 AM

Re: how to restrict ftp user only access it's own home directory

Hello,

Don't forgot to assign the points..
0 Kudos
Md. Minhaz Khan
Super Advisor

тАО01-25-2009 11:12 PM

тАО01-25-2009 11:12 PM

Re: how to restrict ftp user only access it's own home directory

Thanks a lot to everybody.
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.