The UNIX Forums
 "Join the Network of UNIX System Users"

UNIX Forums » Network Security for Dummies Q & A » one accout for ftp other to telnet

 
Printable Version | Email to Friend | Subscription | Favorites
Subject: one accout for ftp other to telnet
Kaustubh
Newbie
Rank: 1



UID 216
Digest Posts 0
Credits 0
Posts 32
Reading Access 10
Registered Apr 25, 2007
Status Offline
#1
Post at Jun 6, 2007 09:01 AM  Profile | P.M. 
one accout for ftp other to telnet



one accout for ftp other to telnet



hi all,
if i want to have two user accounts from the same grop in unix solaries. however, i want one of them to be used only for ftp while the other for telnet. can anybody tell me how to do that?


Top
Michael_Goldman
Newbie
Rank: 1



UID 263
Digest Posts 0
Credits 0
Posts 14
Reading Access 10
Registered Apr 25, 2007
Status Offline
#2
Post at Jun 6, 2007 09:01 AM  Profile | P.M. 
don't open three threads to ask the same question. i deleted the other threads.

to create an account that can be used only for ftp, i would make the shell "/usr/bin/true". yeah, you can still telnet in, but you can't do anything and you will disconnect immediately. for such a user to be able to use ftp, "/usr/bin/true" must be added to the file "/etc/shells".

to create an account that can be used by telnet, but not ftp, give this user a regular shell like ksh. then add it to the file /etc/ftpd/ftpusers. this file, which is badly named, is a list of users who cannot use ftp.

and sure, both users can be in the same group if you want.
Top
Kelf
Newbie
Rank: 1



UID 217
Digest Posts 0
Credits 0
Posts 24
Reading Access 10
Registered Apr 25, 2007
Status Offline
#3
Post at Jun 6, 2007 09:01 AM  Profile | P.M. 
first of all sorry for putting the same question three time. but i did not know where excatly it fits. therefore, i opologize for that.

second, thank you very much for your valuable reply. however, i need some clarification please.

for the user that can only telnet i just have to add his name to /etc/ftpd/ftpusers. is this what you mean?

for the user that can only ftp. i did not get your point. what do you mean by creating shell "/usr/bin/true". i mean in the /etc/passwd file i just write shell "/usr/bin/true" in the shell space and add a line with shell "/usr/bin/true" in "/etc/shells file?

thank you again
Top
IGonza
Newbie
Rank: 1



UID 184
Digest Posts 0
Credits 0
Posts 39
Reading Access 10
Registered Apr 25, 2007
Status Offline
#4
Post at Jun 6, 2007 09:01 AM  Profile | P.M. 
yes just add the user to /etc/ftpd/ftpusers.

yes in /etc/passwd, make the last field be /usr/bin/true:

uftp:x:123:456:ftp only user:/home/uftp:/usr/bin/true

and yes, add
/usr/bin/true
to /etc/shells.

if /etc/shell does not exist, you must create it and add a line for all possible shells. ftpd will check this file and will kick out anyone whose shell is not in this file.
Top
ishan
Newbie
Rank: 1



UID 189
Digest Posts 0
Credits 0
Posts 72
Reading Access 10
Registered Apr 25, 2007
Status Offline
#5
Post at Jun 6, 2007 09:02 AM  Profile | P.M. 
thank you very much...i really appreciate your help
Top
dely^gun
Newbie
Rank: 1



UID 112
Digest Posts 0
Credits 0
Posts 62
Reading Access 10
Registered Apr 25, 2007
Status Offline
#6
Post at Jun 6, 2007 09:02 AM  Profile | P.M. 
hi again,
if i want to make that account that can be used for ftp only (while can not be used for telnet) bew accessable from other user (i.e., su and su - ) work. how can i do that?
thank you in advance
Top
 

 

All times are GMT, the time now is Jan 8, 2009 01:19 PM

Powered by Discuz! 5.0.0  © 2001-2006 UNIX Forums
Processed in 0.029213 second(s), 6 queries
TOP

Clear Cookies - Contact Us - UNIX Help - Archiver - WAP