HPE Community
Operating System - HP-UX
1833137 Members
3172 Online
110051 Solutions
New Discussion

FTP Users

 
SOLVED
Go to solution
Christian Briddon_1
Occasional Advisor

‎07-08-2002 11:23 PM

‎07-08-2002 11:23 PM

FTP Users

Hi there,

I am wanting to block FTP access to all but a few selected users.

My question is, are there any system users that MUST have ftp access? Such as ftp or tftp. I'd hate to block something important.

thanks in advance,

Christian Briddon
0 Kudos
Reply
5 REPLIES 5
V. V. Ravi Kumar_1
Respected Contributor

‎07-08-2002 11:52 PM

‎07-08-2002 11:52 PM

Re: FTP Users

hi,

put the entries of users (login names) for whom u want to block ftp in /etc/ftpd/ftpusers.

see man page for ftpusers.

an entry in ftpusers will block ftp access for that user. if the file doesn't exist u can create it.

ftp access for ftp or tftp is not required.

regds
ravi


Never Say No
0 Kudos
Reply
Christian Briddon_1
Occasional Advisor

‎07-09-2002 12:01 AM

‎07-09-2002 12:01 AM

Re: FTP Users

Thanks for your reply Ravi.

What I actually need to know is if there are ANY users that absolutly MUST have ftp access. I don't want to block something important.

Cheers,

Christian
0 Kudos
Reply
sven verhaegen
Respected Contributor

‎07-09-2002 12:09 AM

‎07-09-2002 12:09 AM

Solution

Re: FTP Users

normally FTP is an ADD-on feature out of the ARPA subset of functions , there are no standard products in hp-ux using FTP to my knowledge , however you could have script or 3rd party software or hop softwares that do need ftp because they rely on data transfer trough the FTP protocol but that is something you should know about as you are aware of the software running on the system , you could just block FTP completely by commenting it inetd.conf or by adding a deny statement for *.*.*.* inetd.sec and the machine shouldn't suffer from this at all , this is a common practice is you are making bastion hosts in a DMZ zone for internet access , the same applias to telnet , rcp etc...
...knowing one ignores a greath many things is the first step to wisdom...
Reply
V. V. Ravi Kumar_1
Respected Contributor

‎07-09-2002 12:14 AM

‎07-09-2002 12:14 AM

Re: FTP Users

hi,

i have blocked ftp for all these system users, but i don't have any problem with the ftp.

root, daemon, bin, sys, lp, uucp, adm, nuucp, www

i don't think there is no user who must have ftp access, it is ur wish.

regds
ravi
Never Say No
0 Kudos
Reply
Simon R Wootton
Regular Advisor

‎07-09-2002 01:08 AM

‎07-09-2002 01:08 AM

Re: FTP Users

Good question Christian

Like others have already said, no user actually needs ftp access although I'm sure that user 'srw' would appreciate the ability to ftp ... ;-)
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.