[PLUG] Hmmm, under proftpd setting shell to /bin/false doesn't seem to work...
Michael Robinson
michael at robinson-west.com
Mon Apr 28 13:30:24 UTC 2003
> Like I said before, try using /dev/null as the login shell, instead of
> /bin/false. I ran into the same problem.
>
> Derek Loree
Gave it a shot, no dice. I don't know not setting a password for ftp
if logging in as ftp works. One possibility I'm looking at is chrooting
the home directory of the ftp user to the anonymous archive I'm setting
up by setting it to,"/path-to-archive/ . /pub." On top of that I'd set the
permissions of everything in the archive so that the ftp user can only
read the files there. If there are no login scripts and you can't write or
append to your home directory or anywhere else, what damage can
you do? Maybe the latter is what you're supposed to do for proftpd.
I don't know what happens if I want to place suid scripts in the archive
for people to download.
-- Michael
More information about the PLUG
mailing list