unixdev.net


Switch to SpeakEasy.net DSL

The Modular Manual Browser

Home Page
Manual: (SunOS-5.9)
Page:
Section:
Apropos / Subsearch:
optional field



File Formats                                          ftpusers(4)



NAME
     ftpusers - file listing users to  be  disallowed  ftp  login
     privileges

SYNOPSIS
     /etc/ftpd/ftpusers

DESCRIPTION
     The ftpusers file lists users for whom ftp login  privileges
     are  disallowed.  Each ftpuser entry is a single line of the
     form:

     name

     where name is the user's login name.

     The FTP Server, in.ftpd(1M), reads the ftpusers file. If the
     login name of the user matches one of the entries listed, it
     rejects the login attempt.

     The ftpusers file has the  following  default  configuration
     entries:

     root
     daemon
     bin
     sys
     adm
     lp
     uccp
     nuucp
     smmsp
     listen
     nobody
     noaccess
     nobody4

     These entries match the default  instantiated  entries  from
     passwd(4).  The  list  of default entries typically contains
     the superuser  root  and  other  administrative  and  system
     application identities.

     The root entry is included in the ftpusers file as  a  secu-
     rity  measure since the default policy is to disallow remote
     logins for this identity. This policy is also set in the the
     default value of the CONSOLE entry in the /etc/default/login
     file. See login(1). If you allow root  login  privileges  by
     deleting  the root entry in ftpusers, you should also modify
     the security policy in  /etc/default/login  to  reflect  the
     site security policy for remote login access by root.





SunOS 5.9           Last change: 18 Feb 2003                    1






File Formats                                          ftpusers(4)



     Other default entries are administrative identities that are
     typically  assumed by system applications but never used for
     local or remote login, for example  sys  and  nobody.  Since
     these  entries  do  not  have a valid password field instan-
     tiated in shadow(4), no login can be performed.

     If a site adds similar administrative or system  application
     identities  in  passwd(4) and shadow(4), for example, major-
     domo,  the  site  should  consider  including  them  in  the
     ftpusers file for a consistent security policy.

     Lines that begin with # are treated as comment lines and are
     ignored.

FILES
     /etc/ftpd/ftpusers
            A file that lists users for whom ftp login privileges
           are disallowed.

     /etc/ftpusers
           See  /etc/ftpd/ftpusers.  This  file  is   deprecated,
           although its use is still supported.

     /etc/default/login


     /etc/passwd
           password file

     /etc/shadow
           shadow password file

ATTRIBUTES
     See attributes(5)  for descriptions of the following  attri-
     butes:

     ____________________________________________________________
    |       ATTRIBUTE TYPE        |       ATTRIBUTE VALUE       |
    |_____________________________|_____________________________|
    | Availability                | SUNWftpr                    |
    |_____________________________|_____________________________|


SEE ALSO
     login(1), in.ftpd(1M), ftpaccess(4), ftphosts(4), passwd(4),
     shadow(4), attributes(5), environ(5)









SunOS 5.9           Last change: 18 Feb 2003                    2