Operating System - HP-UX
1833770 Members
2371 Online
110063 Solutions
New Discussion

Securing ftp to limited users

 
SOLVED
Go to solution
Joanne Keegan
Regular Advisor

Securing ftp to limited users

Hi Everyone,

What is the easiest way of limiting the use of ftp to certain users (e.g. root & other designated users)?

With the new version of qvterm being rolled out, users will have the ability to ftp to the system - this is where the concern lies. While we can tighten up permissions, there are some limitations to this in relation to the applications on the server. I don't want to close off the port if I can avoid it.

Any advice will be appreciated - and I do assign points.

Regards,

Jo
4 REPLIES 4
Michael Tully
Honored Contributor
Solution

Re: Securing ftp to limited users

Hi,

The simplest way you can do it is usign the /etc/ftpusers file where you will put the name of the users you want to deny ftp. For Hosts you can use inetd.sec file to allow or deny the access to ftp on your machine.

HTH
-Michael
Anyone for a Mutiny ?
S.K. Chan
Honored Contributor

Re: Securing ftp to limited users

You can try this ..

a) Create /etc/ftpusers file
b) Add the login id of the users you wanted to deny the ftp access.
For example:
root
guest
jimbob
Darrell Allen
Honored Contributor

Re: Securing ftp to limited users

Hi Joanne,

To add to Michael's reply, you can use a combination of ftpusers and inetd.sec to limit access to specific users (ftpusers) from specific addresses (inetd.sec).

Darrell
"What, Me Worry?" - Alfred E. Neuman (Mad Magazine)
Joanne Keegan
Regular Advisor

Re: Securing ftp to limited users

Thanks to those that have replied. The file is actually /etc/dtpd/ftpusers.

I tested it, and it works. Brilliant!!

Thanks,

Jo