restricting certain users to certain things (pam?)

David Banning david at
Fri Mar 28 23:49:54 PST 2003

On Fri, Mar 28, 2003 at 10:46:59AM -0500, Michael Grant wrote:
> I have a requirement to restrict certain users to logging in in
> certain ways.  For example, some users can ftp, others can ftp, ssh,
> and get a shell, other users can relay mail using auth login.
> I am pretty sure I can do this though pam.conf.  Has anyone actually
> done this?  Can someone slide me some examples?

I have users who collect mail via pop and webmail, and other
users who use ftp. I just put /sbin/nologin as their shell in
the password file. This prevents them from logging in.
I have heard that rsh is insecure.

More information about the freebsd-questions mailing list