Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Limit FTP user's access to a specific directory
Operating Systems Solaris Limit FTP user's access to a specific directory Post 302844047 by hicksd8 on Friday 16th of August 2013 08:17:28 AM
Old 08-16-2013
Firstly, you can create an account for your ftp client to use (with a unique userid/passwd). Create a separate group too just for this user. This means that they are very restricted with regards gaining access via userid and group access to other directories. When they connect they land in their home directory as specified on the account. You can disable them from interactive login too, so ftp access only (and they need to know the password for the account).

Secondly, (I'm assuming you are talking Solaris 10) you can restrict them to their own directory:

Code:
 
# ftpconfig /export/home/USERID
 
# vi /etc/ftpd/ftpaccess 
  guestuser USERID

where USERID is the special ftp account that you created.

I reckon that ought to do it. Make sure you test it.
Let us know if that doesn't work.

See this thread.........this may be useful too.............
How to restrict user to a specific directory in solaris 10
Last edited by hicksd8; 08-16-2013 at 09:26 AM..
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

failed to access directory thru ftp

Hi all, I am a beginner to unix and ftp too.So i request your valuable comments. Requirement: I want to put a specific file into a server(linux) and under a particular directory path in that server as /caps/details/data/ Problem : I login to that server through the command `ftp... (1 Reply)
Discussion started by: DILEEP410
1 Replies

2. UNIX for Advanced & Expert Users

Restrict FTP access to a single directory for only one user.

Hi All, It will be very great if you can help me in this issue. Thanks in advance. I need to enable FTP on a solaris9 server. I need to create a new user some "xxxxxx" and he can only FTP the files to and from between /tftpboot directory and network devices. Other users should not... (8 Replies)
Discussion started by: santhoshkumar_d
8 Replies

3. Solaris

when FTP user will go to specific directory

Hi experts, I have a user "bingo" in my sunsolaris 9. # /etc/passwd bingo:x:513:1::/export/home/bingo:/bin/bash when anyone Telnet to this user it goes to his home directory /export/home/bingo But now i want- when someone FTP to this user "bingo" it will NOT go to his home dir. Rather it... (5 Replies)
Discussion started by: thepurple
5 Replies

4. Solaris

create user with RWX access to a specific directory in Solaris 10

I need to create a user account for a developer that will allow him rwx access to all resources in a directory. How can I do that? Thanks (5 Replies)
Discussion started by: gsander
5 Replies

5. AIX

Limit user access

We have gotten an application that will read and display logs in a report format. The application need a user name and password to access the AIX servers where the logs reside. My problem is the logs are in a few different file systems on the server. Is there any way to lock the user to only the... (1 Reply)
Discussion started by: daveisme
1 Replies

6. Shell Programming and Scripting

User access to only specific subdirectory

is is possible to grant user access to only one subdirectory? example a. create ftp user with read/write/delete access (ftp user doesnt belong to uguys group) $ cd /etc/mydir $ls file1 file2 $ls -al -rw-rw-r-x 2 unixguy uguys 96 Dec 8 12:53 file1 -rw-rw-r-x 2 unixguy uguys 96... (0 Replies)
Discussion started by: lhareigh890
0 Replies

7. UNIX for Advanced & Expert Users

allow user to use sudo cp on a specific directory and only a specific file

Is there a way to allow a user to use sudo cp on a specific directory and only a specific file? (6 Replies)
Discussion started by: cokedude
6 Replies

8. Solaris

How to Limit ftp access parameters for specific users?

Dear friends, :) I create new user useradd -g other -d /export/home/sltftp -m -s /bin/bash -c "SLT user account for TMA ftp backup" sltftp now i need do restrict thees chmod delete overwrite rename from this user:(for all the files in the server ,sltftp user can only able to download... (4 Replies)
Discussion started by: darakas
4 Replies

9. UNIX and Linux Applications

Limit Website access upto specific count

Hi to all, I am new to Linux. but i am facing issue with my web server in Ubuntu 11.10. In my webserver i want to restrict maximum users website access (e.g., suppose i want to restrict users to access web to 250 persons in single time). So can you please suggest me to how to do that in... (1 Reply)
Discussion started by: Chintanghanti
1 Replies

10. Solaris

Limit bash/sh user's access to a specific directory

Hello Team, I have Solaris 10 u6 I have a user test1 using bash that belong to the group staff. I would like to restrict this user to navigate only in his home directory and his subfolders but not not move out to other directories. How can I do it ? Thanks in advance (1 Reply)
Discussion started by: csierra
1 Replies

LEARN ABOUT SUSE

useradd

useradd(8)						      System Manager's Manual							useradd(8)

NAME

       useradd - create a new user account

SYNOPSIS

       useradd [-D binddn] [-P path] [-c comment] [-d homedir]
	       [-e expire] [-f inactive] [-G group,...] [-g gid]
	       [-m [-k skeldir]] [-o] [-p password] [-u uid]
	       [-U umask] [-r] [-s shell] [--service service] [--help]
	       [--usage] [-v] [--preferred-uid uid] account

       useradd --show-defaults

       useradd --save-defaults [-d homedir] [-e expire] [-f inactive]
	       [-g gid] [-G group,...] [-k skeldir] [-U umask] [-s shell]

DESCRIPTION

       useradd	creates a new user account using the default values from /etc/default/useradd and the specified on the command line.  Depending on
       the command line options the new account will be added to the system files or LDAP database, the home directory will  be  created  and  the
       initial default files and directories will be copied.

       The  account name must begin with an alphabetic character and the rest of the string should be from the POSIX portable character class ([A-
       Za-z_][A-Za-z0-9_-.]*[A-Za-z0-9_-.$]).

OPTIONS

       -c, --comment comment
	      This option specifies the users finger information.

       -d, --home homedir
	      This option specifies the users home directory.  If not specified, the default from /etc/default/useradd is used.

       -e, --expire expire
	      With this option the date when the account will be expired can be changed. expiredate has to be specified as number  of  days  since
	      January 1st, 1970. The date may also be expressed in the format YYYY-MM-DD.  If not specified, the default from /etc/default/useradd
	      is used.

       -f, --inactive inactive
	      This option is used to set the number of days of inactivity after a password has expired before the account is locked. A user  whose
	      account  is  locked  must contact the system  administrator before being able to use the account again.  A value of -1 disables this
	      feature.	If not specified, the default from /etc/default/useradd is used.

       -G, --groups group,...
	      With this option a list of supplementary groups can be specified, which the user should become a member of. Each group is  separated
	      from the next one only by a comma, without whitespace.  If not specified, the default from /etc/default/useradd is used.

       -g, --gid gid
	      The  group name or number of the user's main group. The group name or number must refer to an already existing group.  If not speci-
	      fied, the default from /etc/default/useradd is used.

       -k, --skel skeldir
	      Specify an alternative skel directory. This option is only valid, if the home directory for the new user should be created, too.	If
	      not specified, the default from /etc/default/useradd or /etc/skel is used.

       -m, --create-home
	      Create home directory for new user account.

       -o, --non-unique
	      Allow duplicate (non-unique) User IDs.

       -p, --password password
	      Encrypted password as returned by crypt(3) for the new account. The default is to disable the account.

       -U, --umask umask
	      The permission mask is initialized to this value. It is used by useradd for creating new home directories. The default is taken from
	      /etc/default/useradd.

       -u, --uid uid
	      Force the new userid to be the given number. This value must be positive and unique. The default is to use the first free  ID  after
	      the greatest used one. The range from which the user ID is chosen can be specified in /etc/login.defs.

       --preferred-uid uid
	      Set the new userid to the specified value if possible. If that value is already in use the first free ID will be chosen as described
	      above.

       -r, --system
	      Create a system account. A system account is  an	user  with  an	UID  between  SYSTEM_UID_MIN  and  SYSTEM_UID_MAX  as  defined	in
	      /etc/login.defs, if no UID is specified. The GROUPS entry in /etc/default/useradd is ignored, too.

       -s, --shell  shell
	      Specify user's login shell. The default for normal user accounts is taken from /etc/default/useradd, the default for system accounts
	      is /bin/false.

       --service service
	      Add the account to a special directory. The default is files, but ldap is also valid.

       -D, --binddn binddn
	      Use the Distinguished Name binddn to bind to the LDAP directory.	The user will be prompted for a password  for  simple  authentica-
	      tion.

       -P, --path path
	      The  passwd  and	shadow	files  are  located  below  the specified directory path. useradd will use this files, not /etc/passwd and
	      /etc/shadow.

       --help Print a list of valid options with a short description.

       --usage
	      Print a short list of valid options.

       -v, --version
	      Print the version number and exit.

FILES

       /etc/passwd - user account information
       /etc/shadow - shadow user account information
       /etc/group - group information
       /etc/default/useradd - default values for account creation
       /etc/skel - directory containing default files

SEE ALSO

       passwd(1), login.defs(5), passwd(5), shadow(5), userdel(8), usermod(8)

AUTHOR

       Thorsten Kukuk <kukuk@suse.de>

pwdutils							     May 2010								useradd(8)
All times are GMT -4. The time now is 04:55 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy