1833779 Members
2601 Online
110063 Solutions
New Discussion

restrict ftp-access

 
SOLVED
Go to solution
Jens Ebert
Frequent Advisor

restrict ftp-access

Any configuration idea for the following: ftp on HP-UX 11.0 only possible for one certain user, all other users are disallowed. I looked into PAM, but it's quite complex to understand.
8 REPLIES 8
Jeff Schussele
Honored Contributor

Re: restrict ftp-access

Hi Jens,

Take a look at your /var/adm/inetd.sec file
This is where the ftp security would be defined.
Note - If you alter it you should run
inetd -c
to put the changes in effect.

HTH,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
Christopher McCray_1
Honored Contributor

Re: restrict ftp-access

Hello,

You can also add all the users you DON'T want to grant access to in the /etc/ftpd/ftpusers file (assuming you dont have a lot).

Just a thought.

Hope this helps

Chris
It wasn't me!!!!
V. V. Ravi Kumar_1
Respected Contributor

Re: restrict ftp-access

hi,

put all entries for whom u don't want ftp access in /etc/ftpd/ftpusers.

regds
ravi
Never Say No
PIYUSH D. PATEL
Honored Contributor

Re: restrict ftp-access

Hi,

Put the user names in /etc/ftpusers to prevent ftp access to them. or /etc/ftpd/ftpusers

Piyush
Arockia Jegan
Trusted Contributor

Re: restrict ftp-access

You can do that as mentioned by Jeff and Christoper.

But you want to allow only one user. If the user is in outside the firewall, you can restrict the ftp access(block the port 20&21 in the firewall. Allow only one user to access through the ports)to rest other people other than one user. It's easy to setup too.
Sanjay_6
Honored Contributor
Solution

Re: restrict ftp-access

Hi,

you can try to setup ftpaccess for this user.

http://support2.itrc.hp.com/service/cki/docDisplay.do?docLocale=en_US&docId=500000000092476

Hope this helps.

Regds
Daimian Woznick
Trusted Contributor

Re: restrict ftp-access

An easy way to put all the users with the exception of the one user would be:

grep -v ^ACCOUNT: /etc/passwd | awk -F: '{print $1}' > /etc/ftpusers

The ACCOUNT is the account you want to allow access.

Hope this helps.
Jens Ebert
Frequent Advisor

Re: restrict ftp-access

Thank you for answering - I have a solution now that works.
The ideal szenario for me would have been that the file ftpusers supports "allow" and "deny" lines, as just deny-lines are hard to maintain if you add users.