[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: restricted ftp-only accounts on Solaris 7?

To: sage-members@usenix.org
Subject: Re: restricted ftp-only accounts on Solaris 7?
From: "Stephen P. Potter" <spp@spotter.yi.org>
Date: Wed, 31 Jan 2001 19:42:33 -0500
cc: sage-members@usenix.org
In-Reply-To: Your message of "Wed, 31 Jan 2001 10:25:58 PST." <A0D9308D84ECD411929700805F65E51B02CB@exchange.mda.ca>
Sender: owner-sage-members@usenix.org

I don't have access to a SUN box this evening, but if I remember correctly,
you can create a chrooted environment for FTP by placing a /./ within the
home directory in the passwd file.  For example:

spp:x:2112:2112:Stephen Potter:/export/home/./spp:/bin/sh

will chroot to /export/home/spp.  Don't forget to set up the rest of the
chroot stuff in ~spp/{bin,etc,lib} and such.

You can create an FTP-only shell fairly simply in C, just have it do an
exit() only.  Then place this program in /etc/shells.  I can verify and
test all this tomorrow.

-spp

Lightning flashed, thunder crashed and John LLOYD <jal@mda.ca> whispered:
| How can I create or arrange for accounts allowing only ftp access to a
| certain set of directories?  Note that anonymous is insufficient; we want
| password authentication to be used, but we want the other features of
| "anonymous ftp" like chrooted directory, short list of authorized users
| independant of /etc/passwd, logging too.

References:
- restricted ftp-only accounts on Solaris 7?
  - From: John LLOYD <jal@mda.ca>

Prev by Date: Re: Serial Terminal Servers
Next by Date: Re: Serial Terminal Servers
Prev by thread: Re: restricted ftp-only accounts on Solaris 7?
Next by thread: Re: restricted ftp-only accounts on Solaris 7?
Index(es):
- Date
- Thread