Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: aix nologin shell
Operating Systems AIX aix nologin shell Post 302099755 by Keith Johnson on Wednesday 13th of December 2006 02:47:57 PM
Old 12-13-2006
I am not sure I am following your question, however on all the AIX systems I have ran over the years I have used /etc/ftpusers file as a deny users to ftp...
I have read of many ways to do this but this is the only one I have used.
...I use “smit users” and change the logs rights to stop telnet etc:

Is this user ACCOUNT LOCKED? false +
User can LOGIN? true +
User can LOGIN REMOTELY(rsh,tn,rlogin)? true +

is this were you are going?
 

10 More Discussions You Might Find Interesting

1. AIX

Difference between writing Unix Shell script and AIX Shell Scripts

Hi, Please give me the detailed Differences between writing Unix Shell script and AIX Shell Scripts. Thanks in advance..... (0 Replies)
Discussion started by: haroonec
0 Replies

2. Solaris

nologin shell on Solaris?

I'm setting up a Solaris 10 box to run Lawson application, which needs users to have Unix acounts, but the users will not be using interactive shell. To make it more secure, I'd rather not give them a valid shell. I know there's a trick by putting /noshell in the /etc/passwd file, but the problem... (2 Replies)
Discussion started by: GKnight
2 Replies

3. Programming

Porting of Shell to AIX

Hi All, I would like to know of the steps needed for the implementation of a shell in AIX. This shell is written by one of our developers and is currently running in Solaris. This needs to be ported to AIX. Does any of you guys know the implementation steps to do this. If so please do let me... (5 Replies)
Discussion started by: dhanamurthy
5 Replies

4. Shell Programming and Scripting

shell script on AIX

Hi! I have made a simple script for writing the following line on a file (file.txt): list= 1 2 3 and thr script looks like this: N=3 ll=(1 2 3) echo -n "list= ">> file.txt j=0 while ; do echo -n ${ll}" ">> file.txt let j++ done The code works fine on Linux,... (3 Replies)
Discussion started by: carl.alv
3 Replies

5. AIX

AIX and Secure Shell

I just installed 5.3 TL0 on a B50 server. I need to get ssh installed. I tried the links at http://sourceforge.net/projects/openssh-aix] I downloaded openssh_5.2p1_aix53.tar and openssh-4.5_srcpatch.tar. The installation failed. The notes say that this was compiled for TL 8, and mine is... (3 Replies)
Discussion started by: Geekasaurus
3 Replies

6. Shell Programming and Scripting

Need help regarding user with nologin

Hi, Need one clarification.. If suppose, I have disabled the login to a particular user XXX, but not deleted the user. So the scripts which must be executed using the user XXX can still be executed using that user or is it not possible..? In our tasks, we are disabling the user XXX, and after... (1 Reply)
Discussion started by: Dpu
1 Replies

7. UNIX for Dummies Questions & Answers

SSH with a nologin account

Is it possible to SSH with an account that has its shell set to /sbin/nologin? The reason I ask is because I am running an instance of nagios where I need to use SSH keys to run a check, but I am getting connect errors in Nagios. Also, what is the risk I run into if I just simply change my... (2 Replies)
Discussion started by: streetfighter2
2 Replies

8. UNIX for Dummies Questions & Answers

Shell Script in AIX

Hi , Good Morning every one !!! I am very new to this forum and new to Shell Script as well , hope some script Guru's will help me . I have a requirment to write a shell script . The requirment is like this . There are couple of shell scripts scheduled in the Crontab (some scripts run... (5 Replies)
Discussion started by: dilipd21
5 Replies

9. Solaris

Is there a difference between setting a user as nologin and setting it as a role?

Trying to figure out the best method of security for oracle user accounts. In Solaris 10 they are set as regular users but have nologin set forcing the dev's to login as themselves and then su to the oracle users. In Solaris11 we have the option of making it a role because RBAC is enabled but... (1 Reply)
Discussion started by: os2mac
1 Replies

10. Shell Programming and Scripting

System shell nologin script required

Hi Part of our security audit we found that following system account's had shells configured; sync halt shutdown I believe this can be achieved by following commands: chsh -s /sbin/nologin (user) usermod -s /sbin/nologin (user) However, I would like simple script to... (5 Replies)
Discussion started by: Gamma
5 Replies

LEARN ABOUT NETBSD

ftpchroot

FTPUSERS(5)						      BSD File Formats Manual						       FTPUSERS(5)

NAME

     ftpusers, ftpchroot -- ftpd(8) access control file

DESCRIPTION

     The ftpusers file provides user access control for ftpd(8) by defining which users may login.

     If the ftpusers file does not exist, all users are denied access.

     A ``'' is the escape character; it can be used to escape the meaning of the comment character, or if it is the last character on a line,
     extends a configuration directive across multiple lines.  A ``#'' is the comment character, and all characters from it to the end of line are
     ignored (unless it is escaped with the escape character).

     The syntax of each line is:
	   userglob[:groupglob][@host] [directive [class]]

     These elements are:

	   userglob   matched against the user name, using fnmatch(3) glob matching (e.g, 'f*').

	   groupglob  matched against all the groups that the user is a member of, using fnmatch(3) glob matching (e.g, '*src').

	   host       either a CIDR address (refer to inet_net_pton(3)) to match against the remote address (e.g, '1.2.3.4/24'), or an fnmatch(3)
		      glob to match against the remote hostname (e.g, '*.NetBSD.org').

	   directive  If ``allow'' or ``yes'' the user is allowed access.  If ``deny'' or ``no'', or directive is not given, the user is denied
		      access.

	   class      defines the class to use in ftpd.conf(5).

     If class is not given, it defaults to one of the following:

	   chroot  If there is a match in /etc/ftpchroot for the user.

	   guest   If the user name is ``anonymous'' or 'ftp'.

	   real    If neither of the above is true.

     No further comparisons are attempted after the first successful match.  If no match is found, the user is granted access.	This syntax is
     backward-compatible with the old syntax.

     If a user requests a guest login, the ftpd(8) server checks to see that both ``anonymous'' and ``ftp'' have access, so if you deny all users
     by default, you will need to add both ``anonymous allow'' and ``ftp allow'' to /etc/ftpusers in order to allow guest logins.

   /etc/ftpchroot
     The file /etc/ftpchroot is used to determine which users will have their session's root directory changed (using chroot(2)), either to the
     directory specified in the ftpd.conf(5) chroot directive (if set), or to the home directory of the user.  If the file does not exist, the
     root directory change is not performed.

     The syntax is similar to ftpusers, except that the class argument is ignored.  If there's a positive match, the session's root directory is
     changed.  No further comparisons are attempted after the first successful match.  This syntax is backward-compatible with the old syntax.

FILES

     /etc/ftpchroot			List of normal users who should have their ftp session's root directory changed by using chroot(2).
     /etc/ftpusers			This file.
     /usr/share/examples/ftpd/ftpusers	A sample ftpusers file.

SEE ALSO

     fnmatch(3), inet_net_pton(3), ftpd.conf(5), ftpd(8)

BSD
								   July 17, 2000							       BSD
All times are GMT -4. The time now is 11:12 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy