+- ispCP - Board - Support (http://www.isp-control.net/forum)
+-- Forum: ispCP Omega Development Area (/forum-1.html)
+--- Forum: Suggestions (/forum-2.html)
+--- Thread: ftp user shell (/thread-606.html)
ftp user shell - mjk - 05-19-2007 10:19 AM
Instead of giving a ftp user a valid shell, how about using /bin/false ?
Would be safer.
RE: ftp user shell - KeNt - 05-19-2007 10:53 PM
for do it please insert into proftpd.conf
RequireValidShell off
RE: ftp user shell - joximu - 05-20-2007 10:26 AM
Well, I think this is not needed.
/bin/false is a valid shell (in etch and also some other *nix os)
Since the values in the database are only questioned by the ftp daemon it makes no big difference - but to be on thes safe side, /bin/false should be absolutely enough...
RE: ftp user shell - Zothos - 05-20-2007 09:35 PM
someone should test this. And verify that bin/false is a valid one.
RE: ftp user shell - joximu - 05-20-2007 11:19 PM
Ok, I checked it.
I was wrong... :-( (in SuSE "/bin/false" was already a valid shell)
ok, two possibilities:
- "RequireValidShell off" in proftpd.conf
or
- "/bin/false" in /etc/shells
With this, you can set /bin/fals into the table ispcp.ftp_users...
both testet with etch.
/Joximu