06-07-2011
ftp access without shell access
Hi all,
I'm using AIX v 5.3
I want to create system users to access through ftp or sftp and restrict those users into specific directory and don't traverse the whole file system just to be restricted within a directory and don't get shell access . i don't want to use any other third party software or nfs to implement because my user will connect from windows clients.
any idea would be a great assist
Last edited by h@foorsa.biz; 06-07-2011 at 08:37 AM..
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi
I need to access files from a specific folder of a Linux system from an another Linux System Remotely.
I know how to, Export a folder on One SCO System & can access the same by using Import via., NFS in the Sco Unix SVR4 System using the scoadmin utility.
Also, I know to use mount -t ... (2 Replies)
Discussion started by: S.Vishwanath
2 Replies
2. UNIX for Dummies Questions & Answers
I created a user which I would like to have access only to FTP. I am able to get FTP to the machine with that user, but I only want him to have access to two directories, and no shell access. How can I accomplish this?
Thanx,
Aaron (1 Reply)
Discussion started by: Spetnik
1 Replies
3. UNIX for Dummies Questions & Answers
How to restrict ftp user to move to the parent directory of his home directory.
Any suggestions will be appreciated.
O.S Sun solaris
Regards (3 Replies)
Discussion started by: sehgalniraj
3 Replies
4. UNIX for Dummies Questions & Answers
Folks;
I'm working on building ACL for our Solaris 10 box. I'm going to use LDAP for authentication.
We have a mounted drive on that server & users would like to be able to write to it.
We need to restrict the write access to that mounted drive on the box to be only through FTP, so if they... (13 Replies)
Discussion started by: Katkota
13 Replies
5. Solaris
Hi ,
I want to deny ftp access to some user. Currently I don't have /etc/ftpusers file. From the man page , i can modify the login shell at /etc/passwd to invalid one. How to add it ? replaced with /dev/null or something. If you have any other method to disabled it . Pls show me.
My FTP is... (10 Replies)
Discussion started by: skully
10 Replies
6. UNIX for Dummies Questions & Answers
hi all,
i want to know y kernel is giving access for multiple users to access a file when one user may be the owner is executing that file. Because other user can manipulate that file when the other user is executing that file, it will give the unexpected result to owner . plz help me... (1 Reply)
Discussion started by: jimmyuk
1 Replies
7. IP Networking
Hi
Good Day, i would like to ask for further info about my problems experiencing this evening. Im a PPP0 connection in the internet using 3G located in asia pacific region.i had this problem this evening in my INTERNET connections that there are some sites i can't open example ( Gizmodo.com,... (2 Replies)
Discussion started by: jao_madn
2 Replies
8. Solaris
Hi All,
I want to configure samba share permission so that only directory creator/owner has a read and write permission and other users should not have any read/write access to that folder.Will that be possible and how can this be achieved within samba configuration.
Regards,
Sahil (1 Reply)
Discussion started by: sahil_shine
1 Replies
9. Shell Programming and Scripting
Hello,
I use the following SSH script to upload *.jpg files via FTP:
#!/usr/bin/expect
set timeout -1
spawn ftp -v -i
expect ""
send "\r"
expect "Password:"
send "\r"
expect "ftp>"
send "mput *.jpg\r"
expect "ftp>"
send "quit\r"
replaced with actual ftp server/account data.
... (5 Replies)
Discussion started by: mrpi007
5 Replies
10. Proxy Server
Dear all experts here,
:)
I would like to install a proxy server on Linux server to perform solely to control the access of Web server.
In this case, some of my vendor asked me to try Squid and I have installed it onto my Linux server.
I would like know how can I set the configuration to... (1 Reply)
Discussion started by: kwliew999
1 Replies
LEARN ABOUT NETBSD
ftpchroot
FTPUSERS(5) BSD File Formats Manual FTPUSERS(5)
NAME
ftpusers, ftpchroot -- ftpd(8) access control file
DESCRIPTION
The ftpusers file provides user access control for ftpd(8) by defining which users may login.
If the ftpusers file does not exist, all users are denied access.
A ``'' is the escape character; it can be used to escape the meaning of the comment character, or if it is the last character on a line,
extends a configuration directive across multiple lines. A ``#'' is the comment character, and all characters from it to the end of line are
ignored (unless it is escaped with the escape character).
The syntax of each line is:
userglob[:groupglob][@host] [directive [class]]
These elements are:
userglob matched against the user name, using fnmatch(3) glob matching (e.g, 'f*').
groupglob matched against all the groups that the user is a member of, using fnmatch(3) glob matching (e.g, '*src').
host either a CIDR address (refer to inet_net_pton(3)) to match against the remote address (e.g, '1.2.3.4/24'), or an fnmatch(3)
glob to match against the remote hostname (e.g, '*.NetBSD.org').
directive If ``allow'' or ``yes'' the user is allowed access. If ``deny'' or ``no'', or directive is not given, the user is denied
access.
class defines the class to use in ftpd.conf(5).
If class is not given, it defaults to one of the following:
chroot If there is a match in /etc/ftpchroot for the user.
guest If the user name is ``anonymous'' or 'ftp'.
real If neither of the above is true.
No further comparisons are attempted after the first successful match. If no match is found, the user is granted access. This syntax is
backward-compatible with the old syntax.
If a user requests a guest login, the ftpd(8) server checks to see that both ``anonymous'' and ``ftp'' have access, so if you deny all users
by default, you will need to add both ``anonymous allow'' and ``ftp allow'' to /etc/ftpusers in order to allow guest logins.
/etc/ftpchroot
The file /etc/ftpchroot is used to determine which users will have their session's root directory changed (using chroot(2)), either to the
directory specified in the ftpd.conf(5) chroot directive (if set), or to the home directory of the user. If the file does not exist, the
root directory change is not performed.
The syntax is similar to ftpusers, except that the class argument is ignored. If there's a positive match, the session's root directory is
changed. No further comparisons are attempted after the first successful match. This syntax is backward-compatible with the old syntax.
FILES
/etc/ftpchroot List of normal users who should have their ftp session's root directory changed by using chroot(2).
/etc/ftpusers This file.
/usr/share/examples/ftpd/ftpusers A sample ftpusers file.
SEE ALSO
fnmatch(3), inet_net_pton(3), ftpd.conf(5), ftpd(8)
BSD
July 17, 2000 BSD