Wednesday, May 26, 2010

FreeBSD FTP access without SSH access

I ran into this problem on the freebsd server today.  FTP users had FTP and SSH access to my entire system but i only wanted them to have access to their FTP home directory.  Using the following links i was able to solve my problem:


Listed below is how i fixed this issue:

  1. Add user names to /etc/ftpchroot. This makes the user accounts unable to navigate outside of their Home directory. # nano /etc/ftpchroot add [username]
  2. Add the nologin "shell" to your shell list so that ftpd sees it as a a valid shell. # nano /etc/shells
    add "    /sbin/nologin"

    Should look something like this:



    # $FreeBSD: src/etc/shells,v 1.5 2000/04/27 21:58:46 ache Exp $
    #
    # List of acceptable shells for chpass(1).
    # Ftpd will not allow users to connect who are not using
    # one of these shells.

    /bin/sh
    /bin/csh
    /bin/tcsh
    /usr/local/bin/bash
    /sbin/nologin

  3. Finally we need to edit the user account to use the nologin shell using the following command:

    # pw usermod -n [username] -s /sbin/nologin

Hope you find this helpful
-

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Phoenix

I am resurrecting this tech blog for notes related to Azure Logic Apps with SAP.

  • SQLITE NHibernate DateTime2
    While working on a project I was using a MsSQL 2012 database for my persistence layer but wanted to use a SQLITE in memory database for my u...
  • Redmine Setup using Turnkey Linux
    Redmine Install Process -- Download and install turnkey linux's redmine appliance http://www.turnkeylinux.org/redmine -- install up...
  • Visio Alternative
    If you are a developer you probably have Visio but if you don’t https://www.draw.io/  is a great  alternative and its free.