Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
creating an ftp user
- Thread starter 230173
- Start date
Guest_imported
New member
- Jan 1, 1970
- 0
Try using something like wu-ftp if you wish to use heavily configured FTP. There are plenty of docs on how to use/configure this product.
Other wise you might consider using the /etc/ftpusers file. If a user exists in this file they can't connect using FTP. So add all the people you don't want to give ftp access into here.
Other wise you might consider using the /etc/ftpusers file. If a user exists in this file they can't connect using FTP. So add all the people you don't want to give ftp access into here.
- Thread starter
- #3
- Thread starter
- #5
What is the message that the users that cannot connect to the server are getting? Are they getting denied when they enter their logon id or do they have problems connecting to the server?
Run the lsuser -f username for a user who can connect and one who cannot connect and look for differences.
Run the lsuser -f username for a user who can connect and one who cannot connect and look for differences.
For application specific users, we have FTP IDs that have home directories in the actual directory where they either `put` or `get` files. The ownership and group of these directories belongs to that FTP ID, in other words, the FTP ID has it's own group ID. The main ID for the application is then set to be a member of that directory so it can go in and move the files that the ftp ID placed there. And you have the security that the FTP ID cannot get into any other directory.
EXample:
Application = app1
Application location = /app/AIX433/v2.4
ownership appadmin.appgrp
Application main admin user = appadmin (groups=appgrp, ftpgrp)
Application FTP user = appftp (groups=ftpgrp)
appftp ID home location = /app/AIX433/v2.4/reports (rwxrwxr--)
ownership ftpid.ftpgrp Remember, amateurs built the Ark, professionals built the Titanic.
EXample:
Application = app1
Application location = /app/AIX433/v2.4
ownership appadmin.appgrp
Application main admin user = appadmin (groups=appgrp, ftpgrp)
Application FTP user = appftp (groups=ftpgrp)
appftp ID home location = /app/AIX433/v2.4/reports (rwxrwxr--)
ownership ftpid.ftpgrp Remember, amateurs built the Ark, professionals built the Titanic.
- Thread starter
- #8
Hi,
These are the two user.
first one can ftp and the second doesn't.
lmserver:
id=7
pgrp=lmusers
groups=lmusers,system,dba
home=/opt/lmlogging
shell=/usr/bin/ksh
login=true
su=false
rlogin=true
daemon=true
admin=false
sugroups=ALL
admgroups=dba
tpath=nosak
ttys=ALL
expires=0
auth1=SYSTEM
auth2=NONE
umask=22
registry=files
SYSTEM=compat
logintimes=
loginretries=0
pwdwarntime=0
account_locked=false
minage=0
maxage=0
maxexpired=-1
minalpha=0
minother=0
mindiff=0
maxrepeats=8
minlen=6
histexpire=0
histsize=0
pwdchecks=
dictionlist=
fsize=4194302
cpu=-1
data=262144
stack=65536
core=2048
rss=65536
time_last_login=1023186777
time_last_unsuccessful_login=1000818528
tty_last_login=/dev/pts/1
tty_last_unsuccessful_login=/dev/pts/2
host_last_login=10.160.35.229
host_last_unsuccessful_login=10.160.6.26
unsuccessful_login_count=0
roles=
ltlocal:
id=8
pgrp=lmusers
groups=lmusers,bin,sys,security,cron,audit,dba,oper,oinstall,admins
home=/home/ltlocal
shell=/usr/bin/ksh
login=true
su=true
rlogin=true
daemon=true
admin=false
sugroups=ALL
admgroups=dba
tpath=nosak
ttys=ALL
expires=0
auth1=SYSTEM
auth2=NONE
umask=22
registry=files
SYSTEM=compat
logintimes=
loginretries=0
pwdwarntime=0
account_locked=false
minage=0
maxage=0
maxexpired=-1
minalpha=0
minother=0
mindiff=0
maxrepeats=8
minlen=6
histexpire=0
histsize=0
pwdchecks=
dictionlist=
fsize=4194302
cpu=-1
data=262144
stack=65536
core=2048
rss=65536
time_last_login=1024392511
tty_last_login=/dev/pts/4
host_last_login=10.160.36.85
unsuccessful_login_count=0
roles=
PS: I can login remotely with both.
These are the two user.
first one can ftp and the second doesn't.
lmserver:
id=7
pgrp=lmusers
groups=lmusers,system,dba
home=/opt/lmlogging
shell=/usr/bin/ksh
login=true
su=false
rlogin=true
daemon=true
admin=false
sugroups=ALL
admgroups=dba
tpath=nosak
ttys=ALL
expires=0
auth1=SYSTEM
auth2=NONE
umask=22
registry=files
SYSTEM=compat
logintimes=
loginretries=0
pwdwarntime=0
account_locked=false
minage=0
maxage=0
maxexpired=-1
minalpha=0
minother=0
mindiff=0
maxrepeats=8
minlen=6
histexpire=0
histsize=0
pwdchecks=
dictionlist=
fsize=4194302
cpu=-1
data=262144
stack=65536
core=2048
rss=65536
time_last_login=1023186777
time_last_unsuccessful_login=1000818528
tty_last_login=/dev/pts/1
tty_last_unsuccessful_login=/dev/pts/2
host_last_login=10.160.35.229
host_last_unsuccessful_login=10.160.6.26
unsuccessful_login_count=0
roles=
ltlocal:
id=8
pgrp=lmusers
groups=lmusers,bin,sys,security,cron,audit,dba,oper,oinstall,admins
home=/home/ltlocal
shell=/usr/bin/ksh
login=true
su=true
rlogin=true
daemon=true
admin=false
sugroups=ALL
admgroups=dba
tpath=nosak
ttys=ALL
expires=0
auth1=SYSTEM
auth2=NONE
umask=22
registry=files
SYSTEM=compat
logintimes=
loginretries=0
pwdwarntime=0
account_locked=false
minage=0
maxage=0
maxexpired=-1
minalpha=0
minother=0
mindiff=0
maxrepeats=8
minlen=6
histexpire=0
histsize=0
pwdchecks=
dictionlist=
fsize=4194302
cpu=-1
data=262144
stack=65536
core=2048
rss=65536
time_last_login=1024392511
tty_last_login=/dev/pts/4
host_last_login=10.160.36.85
unsuccessful_login_count=0
roles=
PS: I can login remotely with both.
- Status