HPE Community
Operating System - HP-UX
1847411 Members
2583 Online
110264 Solutions
New Discussion

Re: FTP Processes /etc/passwd Command

 
SOLVED
Go to solution
Craig Johnson_1
Regular Advisor

‎10-18-2006 08:32 AM

‎10-18-2006 08:32 AM

FTP Processes /etc/passwd Command

On one 11.11 machine I have, if I put /usr/bin/false in there, not only does login not work but either does FTP.

Why would ftp process that field? On other 11.11 servers I see the desired behaviour, which is no login but ftp allowed.
0 Kudos
Reply
2 REPLIES 2
Bill Hassell
Honored Contributor

‎10-18-2006 08:49 AM

‎10-18-2006 08:49 AM

Solution

Re: FTP Processes /etc/passwd Command

This is correct behavior. The ftpd daemon 'validates' a login by checking the userID in /etc/passwd and seeing if the shell for the user is 'standard' or listed in the file: /etc/shells. The man page for shells covers this file's format. The file is normally not present--you have to create it if you want non-standard shells. The starting point for /etc/shells is found in the man page for getusershell:

/sbin/sh
/usr/bin/sh
/usr/bin/rsh
/usr/bin/ksh
/usr/bin/rksh
/usr/bin/csh
/usr/bin/keysh

Just add /usr/bin/false to the list and not ftp login will work.


Bill Hassell, sysadmin
Reply
Craig Johnson_1
Regular Advisor

‎10-19-2006 12:27 AM

‎10-19-2006 12:27 AM

Re: FTP Processes /etc/passwd Command

Thanks - I got talking with another admin last night who told me the same thing. I'm a little rusty after a year of not really doing pure admin work, and though when I build two servers recently and remembered /etc/shells, I completely skipped on it here. Thanks!

Craig
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.