unixdev.net


Switch to SpeakEasy.net DSL

The Modular Manual Browser

Home Page
Manual: (SunOS-5.10)
Page:
Section:
Apropos / Subsearch:
optional field

ftpusers(4)                      File Formats                      ftpusers(4)



NAME
       ftpusers - file listing users to be disallowed ftp login privileges

SYNOPSIS
       /etc/ftpd/ftpusers

DESCRIPTION
       The  ftpusers file lists users for whom ftp login privileges are disal-
       lowed. Each ftpuser entry is a single line of the form:

       name


       where name is the user's login name.

       The FTP Server, in.ftpd(1M), reads the ftpusers file. If the login name
       of  the  user  matches  one of the entries listed, it rejects the login
       attempt.

       The ftpusers file has the following default configuration entries:

       root
       daemon
       bin
       sys
       adm
       lp
       uccp
       nuucp
       smmsp
       listen
       nobody
       noaccess
       nobody4


       These entries match the default instantiated  entries  from  passwd(4).
       The  list  of default entries typically contains the superuser root and
       other administrative and system application identities.

       The root entry is included in the ftpusers file as a  security  measure
       since  the  default  policy is to disallow remote logins for this iden-
       tity. This policy is also set in the the default value of  the  CONSOLE
       entry  in  the /etc/default/login file. See login(1). If you allow root
       login privileges by deleting the root entry  in  ftpusers,  you  should
       also  modify  the  security policy in /etc/default/login to reflect the
       site security policy for remote login access by root.

       Other default entries are administrative identities that are  typically
       assumed  by  system  applications  but  never  used for local or remote
       login, for example sys and nobody. Since these entries do  not  have  a
       valid  password  field  instantiated in shadow(4), no login can be per-
       formed.

       If a site adds similar administrative or system application  identities
       in  passwd(4)  and  shadow(4),  for example, majordomo, the site should
       consider including them in the ftpusers file for a consistent  security
       policy.

       Lines that begin with # are treated as comment lines and are ignored.

FILES
       /etc/ftpd/ftpusers       A  file  that  lists  users for whom ftp login
                               privileges are disallowed.



       /etc/ftpusers           See /etc/ftpd/ftpusers.  This  file  is  depre-
                               cated, although its use is still supported.



       /etc/default/login



       /etc/passwd             password file



       /etc/shadow             shadow password file



ATTRIBUTES
       See attributes(5)  for descriptions of the following attributes:


       tab()     allbox;     cw(2.750000i)|    cw(2.750000i)    lw(2.750000i)|
       lw(2.750000i).  ATTRIBUTE TYPEATTRIBUTE VALUE  AvailabilitySUNWftpr  T{
       Interface Stability

        /etc/ftpd/ftpusers T}External T{ Interface Stability

        /etc/ftpusers T}Obsolete


SEE ALSO
       login(1), in.ftpd(1M), ftpaccess(4), ftphosts(4), passwd(4), shadow(4),
       attributes(5), environ(5)



SunOS 5.10                        1 May 2003                       ftpusers(4)