restricting certain users to certain things (pam?)
David Banning
david at skytracker.ca
Fri Mar 28 23:49:54 PST 2003
On Fri, Mar 28, 2003 at 10:46:59AM -0500, Michael Grant wrote:
> I have a requirement to restrict certain users to logging in in
> certain ways. For example, some users can ftp, others can ftp, ssh,
> and get a shell, other users can relay mail using auth login.
>
> I am pretty sure I can do this though pam.conf. Has anyone actually
> done this? Can someone slide me some examples?
I have users who collect mail via pop and webmail, and other
users who use ftp. I just put /sbin/nologin as their shell in
the password file. This prevents them from logging in.
I have heard that rsh is insecure.
More information about the freebsd-questions
mailing list