HPE Community
Operating System - HP-UX
1847893 Members
3763 Online
104021 Solutions
New Discussion

Re: ftp only

 
SOLVED
Go to solution
Steve Whitfies
Occasional Contributor

‎06-19-2002 10:56 AM

‎06-19-2002 10:56 AM

ftp only


How do I limit a specific user to have ftp access only, where they are unable to telnet into the server.
0 Kudos
Reply
8 REPLIES 8
Rodney Hills
Honored Contributor

‎06-19-2002 10:59 AM

‎06-19-2002 10:59 AM

Re: ftp only

In /etc/passwd, specify their shell as /bin/false

-- Rod Hills
There be dragons...
0 Kudos
Reply
steven Burgess_2
Honored Contributor

‎06-19-2002 10:59 AM

‎06-19-2002 10:59 AM

Re: ftp only

Hi Steve

Have a look at the below link

regarding giving a user /usr/bin/false shell

http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x270760260cafd4118fef0090279cd0f9,00.html

Regards

Steve
take your time and think things through
0 Kudos
Reply
Joseph C. Denman
Honored Contributor

‎06-19-2002 11:00 AM

‎06-19-2002 11:00 AM

Re: ftp only

Hi Steve,

This one is easy. Don't give them a shell. Change there login shell to /usr/bin/false. Add /usr/bin/false to /etc/shells. The user will be able to ftp, but not telnet.

...jcd...
If I had only read the instructions first??
0 Kudos
Reply
PIYUSH D. PATEL
Honored Contributor

‎06-19-2002 11:00 AM

‎06-19-2002 11:00 AM

Re: ftp only

Hi,

Give the user /usr/bin/false or /bin/false shell in the /etc/password file.

Piyush
0 Kudos
Reply
Steve Whitfies
Occasional Contributor

‎06-19-2002 11:20 AM

‎06-19-2002 11:20 AM

Re: ftp only


Changing the shell to /sbin/false for the user not only stops him from telnet, but also stops him from ftp'ing into the box.
How do I limit a specific user to have ftp access only???, where they are unable to telnet into the server?
0 Kudos
Reply
Christopher McCray_1
Honored Contributor

‎06-19-2002 11:24 AM

‎06-19-2002 11:24 AM

Solution

Re: ftp only

Hello,

Try putting an exit 0 statement in their appropriate startup file (.profile, .cshrc).

Should work.

Chris
It wasn't me!!!!
Reply
Tom Dawson
Regular Advisor

‎06-19-2002 11:26 AM

‎06-19-2002 11:26 AM

Re: ftp only

Steve,

The replies about setting /usr/bin/false as the default shell for the user are correct I think. But you probably have to add an entry for that shell to the /etc/shells file. I know you have to do that on Solaris.

HTH,
Tom
0 Kudos
Reply
Christopher McCray_1
Honored Contributor

‎06-19-2002 11:47 AM

‎06-19-2002 11:47 AM

Re: ftp only

Hello again,

Thank you for your kindness, but I'd like to point out that the other's inputs of a false shell are also viable.

Change the users shell to /bin/false, /usr/bin/false, or /dev/null (one of your own). Then just add that "shell" to /etc/shells. Same effect.

Regards,

Chris
It wasn't me!!!!
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.