vsftpd port not honoring /etc/shells
Malcolm Kay
malcolm.kay at internode.on.net
Sat Aug 23 20:54:05 PDT 2003
On Sun, 24 Aug 2003 00:31, H.Wade Minter wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> I installed the vsftpd port on my RELENG_4_8 system as a replacement
> for the standard ftpd. However, it doesn't appear to be honoring
> /etc/shells - a user listed in the passwd file with a shell
> (/sbin/nologin) that does not appear in /etc/shells is still allowed to
> FTP into the system.
>
> I'm guessing this may be a problem with PAM, as I have
> "check_shell=YES" in /usr/local/etc/vsftpd.conf, and the manpage for
> vsftpd.conf says that this setting is only valid for non-PAM builds.
> But I'm stumped as to how to lock down users via /etc/shells in the
> default port build.
>
Just a thought;
Have you looked at sftp
Malcolm Kay
More information about the freebsd-questions
mailing list