[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: [rhelv5-list] Sorry OT wrt vsftpd

From: Anthony J Placilla <anthony_placilla SUTH COM>
To: "Red Hat Enterprise Linux 5 (Tikanga) discussion mailing-list" <rhelv5-list redhat com>
Subject: Re: [rhelv5-list] Sorry OT wrt vsftpd
Date: Thu, 03 May 2007 14:21:47 -0400


ImagePlace IT wrote:
> Greetings,
> 
> Please except my apologies for being off topic.  I'm looking for a
> pointer to recommended practices.  (With an explanation and attached
> question).
> 
> I need to configure a vsftpd service denying anonymous logins and
> sharing nothing.  That is, customers get a username, password and a dir,
> with full permissions, without the ability to see other dirs.
> 
> Q: How to create and manage usernames and passwords without giving them
> a system user/group account?  Or should I give the system account and
> deny shell logins  and access to other services etc...?
> 
> Thanks for any pointers.
> 
> Jeff
> 
> _______________________________________________
> rhelv5-list mailing list
> rhelv5-list redhat com
> https://www.redhat.com/mailman/listinfo/rhelv5-list

at the basic level

in /etc/vsftpd/vsftpd.conf

chroot_local_user=YES

create the user as appropriate but set their shell to be /sbin/nologin



-- 
Tony Placilla, RHCT, GSEC
anthony_placilla suth com


GPG-Key-ID: 1024D/C78F8B64              http://pgp.mit.edu
Key fingerprint = A8D5 7AFF CE88 4179 C792  D9A9 F197 2A15 C78F 8B64

References:
- [rhelv5-list] Sorry OT wrt vsftpd
  - From: ImagePlace IT

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]