How do I restrict access to telnet

[isonlyme]

Hi,
I'm a newbie in Unix.

I have HP/UX 10 I created a user for ftp access using SAM, but I didn't find a tool for giving access to ftp only to the user I created.

My goal:

To restrict a user "TEST" to ftp access only. No telnet or anything else.

Any help will be apreciated!!!

 

[soma1958]

I am using tcp_wrappers for that and i am happy with it
find a compiled version including HP10.20 and 9.01 at ftp://ftp.uwsg.indiana.edu/pub/security/wrapbin/

 

[isonlyme]

how do i use it?

 

[isonlyme]

how do i use it?

 

[ramu74]

what ftp program do you use?
if the "test" user doesnt need a password, try creating anonymous user. this shud solve ur pbm.

 

[JasonDeckard]

Just a thought:

-Use chroot to make Test's home directory his root directory.
-Either copy the FTP client executable to Test's home directory, or link to it (I'm not sure if the chroot will invalidate the link).

This should leave you with a user that can access FTP but nothing else (assuming there are no other executables in his home directory).

 

[fatsheldon]

hey wilfredo,

i found this site:

http://medlib.med.utah.edu/medstat_ops/node24.html

step 5 was particularly helpful to me.

basically just place a bogus entry in /etc/shells and set the users shell in /etc/passwd to that bogus entry.

trying to login produces the classic "Access Denied" but ftp is fine.