Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to restrict ftpusers in AIX to home directory?
Top Forums UNIX for Beginners Questions & Answers How to restrict ftpusers in AIX to home directory? Post 302991341 by Padow1 on Thursday 9th of February 2017 10:52:23 AM
Old 02-09-2017
I'm not sure you can achieve that with the base ftp setup on AIX. You could try installing vsftp or other ftp servers that will allow you to chroot ftp users.
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Restrict users to ther home directory

Hello! I want users in a certain group to be restricted to their home directory. So that they have full access to all files and folders in their home directory but the cant go to any directory above. Does anyone know how to do this? Anders (1 Reply)
Discussion started by: alfabetman
1 Replies

2. Solaris

need to restrict user to his home dir

Hello, i need to create a user who's access is restricted only to his home directory and below, i restricted his pty access by adding 'no-pty' to the options of the ssh key in authorized_keys file. However, sftp access still allows this user access to all my file system thanks (5 Replies)
Discussion started by: lidram
5 Replies

3. UNIX for Dummies Questions & Answers

Restrict user access to their home dir

Hi! i'm using FreeBSD 6.2 and hosting my pc to frens in particular of sensitive information being saved to the PC, i would like to know is it possible for me to restrict user access to their /home dir. only? and also, i wanted to restrict them listing files under /etc thanks all! (10 Replies)
Discussion started by: rdns
10 Replies

4. AIX

How to restrict Highports in AIX 5.2

Hello, I am using wu-ftp 2.4.2 in AIX 5.2. I wanted to restrict high ports for dataconnection. by default dataconnection ports will be from range 1024 to 65536. But i wanted to restrict it to some range like 10000 - 10500. This setting is to enable ports at client firewall. Please let me... (0 Replies)
Discussion started by: balareddy
0 Replies

5. UNIX for Dummies Questions & Answers

restrict one user to see only his home directory in his profile

Hi I need to restrict one user to see only his home directory and one more directory how i can do this in his profile. The OS is Red hat linux I create a user -- tec and group calle --tec one the user log in he will see /home/tec and he need to see /opt/load this dirctory... (6 Replies)
Discussion started by: aboorkuma
6 Replies

6. Red Hat

Restrict user to a particular directory

Hi I have a Fedora10 server and i need a particular user to view files only in a particular folder. All other files in other folders having "read" permission for all shouldn't be accessible to this user. Please let me know if ther's a way. Thanks, HG (5 Replies)
Discussion started by: Hari_Ganesh
5 Replies

7. Solaris

Restrict FTP User to a Directory

I am using Solaris 10 on SPARC. SunOS ddw 5.10 Generic_139555-08 sun4u sparc SUNW,SPARC-Enterprise I have put some text files in a directory '/u01/network' I want to create a ftp user which can just read the files in the network directory. The ftp user shouldn't be able to navigate or see... (4 Replies)
Discussion started by: fahdmirza
4 Replies

8. UNIX for Advanced & Expert Users

IBM directory server - how to restrict AIX client access to read-only

Hello all, I am using IBM Directory Server (as a part of AIX7 extension pack) in an AIX environment. To set up the server I use command: mksecldap -s -a cn=admin -p PWD -S RFC2307AIX -d o=COMPANY -u NONE Then, to set up IDS clients I use the following (I have 2 mutually replicating servers... (0 Replies)
Discussion started by: Myaso
0 Replies

9. AIX

How to restrict user to a particular directory?

hi, I want to restrict some user access to only 1 directory (including all sub-directories/files in it). can you please explain me, how can we do this? example; Filesystem GB blocks Used Free %Used Mounted on /dev/hd4 2.61 1.02 1.59 40% / /dev/hd2 ... (7 Replies)
Discussion started by: aaron8667
7 Replies

10. AIX

Can I restrict IP and AIX account at the same time?

Hi Everyone, I want to know is it possible, restrict user login to AIX by IP and user name? e.g. user alice can login to AIX (via ssh or telnet) from 192.168.1.100 user alice can not login to AIX (via ssh or telnet) from 172.16.1.100 user bob can not login to AIX (via ssh or telnet)... (6 Replies)
Discussion started by: nnnnnnine
6 Replies

LEARN ABOUT OPENSOLARIS

ftpusers

ftpusers(4)							   File Formats 						       ftpusers(4)

NAME

       ftpusers - file listing users to be disallowed ftp login privileges

SYNOPSIS

       /etc/ftpd/ftpusers

DESCRIPTION

       The ftpusers file lists users for whom ftp login privileges are disallowed. Each ftpuser entry is a single line of the form:

	 name

       where name is the user's login name.

       The FTP Server, in.ftpd(1M), reads the ftpusers file. If the login name of the user matches one of the entries listed, it rejects the login
       attempt.

       The ftpusers file has the following default configuration entries:

	 root
	 daemon
	 bin
	 sys
	 adm
	 lp
	 uccp
	 nuucp
	 smmsp
	 listen
	 nobody
	 noaccess
	 nobody4

       These entries match the default instantiated entries from passwd(4). The list of default entries typically contains the superuser root  and
       other administrative and system application identities.

       The  root entry is included in the ftpusers file as a security measure since the default policy is to disallow remote logins for this iden-
       tity. This policy is also set in the default value of the CONSOLE entry in the /etc/default/login file. See login(1).  If  you  allow  root
       login  privileges  by  deleting the root entry in ftpusers, you should also modify the security policy in /etc/default/login to reflect the
       site security policy for remote login access by root.

       Other default entries are administrative identities that are typically assumed by system applications but never used for  local	or  remote
       login,  for  example sys and nobody. Since these entries do not have a valid password field instantiated in shadow(4), no login can be per-
       formed.

       If a site adds similar administrative or system application identities in passwd(4) and shadow(4), for example, majordomo, the site  should
       consider including them in the ftpusers file for a consistent security policy.

       Lines that begin with # are treated as comment lines and are ignored.

FILES

       /etc/ftpd/ftpusers    A file that lists users for whom ftp login privileges are disallowed.

       /etc/ftpusers	     See /etc/ftpd/ftpusers. This file is deprecated, although its use is still supported.

       /etc/default/login

       /etc/passwd	     password file

       /etc/shadow	     shadow password file

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWftpr			   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |See below.		   |
       +-----------------------------+-----------------------------+

       The interface stability for /etc/ftpd/ftpusers is Volatile. The interface stability for /etc/ftpusers is (Obsolete).

SEE ALSO

       login(1), in.ftpd(1M), ftpaccess(4), ftphosts(4), passwd(4), shadow(4), attributes(5), environ(5)

SunOS 5.11							    1 May 2003							       ftpusers(4)
All times are GMT -4. The time now is 03:49 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy