Re: Allow FTP in, but not shell login
On Tue, Mar 13, 2001 at 12:08:17PM -0800, Eric N. Valor wrote: Try setting the shell to /bin/true (and make sure this is listed in /etc/shells). /bin/true returns a zero result and exits. It allows you to "log in" via daemons that require a valid shell, yet won't allow telnet-style access (no real shell, just a "true" result). [snip] /usr/bin/passwd can sometimes be usefull as shell... By the way, check the bugtraq archives -- remote exploits for accounts with /bin/false as shell have been seen on there. Jrgen -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Allow FTP in, but not shell login
On Tue, 13 Mar 2001, Kenneth Pronovici wrote: I have a situation where I've volunteered to host a few webpages for some users. They're at a university and are having problems getting timely access to their organizational websites on their school's server. Anyway, I'm happy to be the host, but I want these people to be able to FTP in ONLY, without interactive access. I want to do this specifically for a set of users, not for all users on the machine. I think, this could be quite hard to archive. Setting the shell to something non-interactive will disallow normal login. But the users will stil have many rights, that might allow them nasty things inluding getting interactive access: Perhaps you have procmail installed and they can send themself mail, so they can execute anything thay want. If they have write-access to some dir, which is not mounted no-exec, they can but there something to execute, they can thereby start programms there. Or you have installed some php, which is configuated in a way they can run programms they want from there. Then they may start some xterm and have an shell as nowhere and get interactiv-user-access by su giving an other shell to execute. And there might be many other possibilities, one had to check to ensure this. Hochachtungsvoll, Bernhard R. Link -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Allow FTP in, but not shell login
/usr/bin/passwd can sometimes be usefull as shell... By the way, check the bugtraq archives -- remote exploits for accounts with /bin/false as shell have been seen on there. cant seem to find any for these and as I understand it, false and true used to be shell scripts - but are now c programs to increase their security Neil _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
pam_chroot and pam_limit
Hello, I would like to chroot some of my local users. I would like to use pam because it runs at logon time with root priviledges and can do all correctly w/o any suid wrappers. In the manual pages I saw 2 ways to solve it * pam_chroot Problem: there is no such pam module in debian (I am using ``sid``) * pam_limits Problem: it does not work for me. May be some one already collide with this problem and can consult me? Thanks for the help. HDN -- Dmitry N. Hramtsov [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Server reboots
I think I can safely say that it's not an overheating problem. The system has done much more than run web browsers (i.e. Unreal servers, etc) for over 2 years without similar problems. It's reproduced when viewing a microsoft .asp or clicking between windows with a flash animation in one or both of them. I can probably reproduce it doing other tasks as well, but I haven't tried it. Josh Hattery [EMAIL PROTECTED] On Wed, 14 Mar 2001, Rob Kaper wrote: On Wed, Mar 14, 2001 at 01:07:26AM -0500, Josh Hattery wrote: The system is a Celeron 300a (o/c 450, haven't had a problem in 2 years) on an Abit BH6 motherboard. Yes, you have had problems: the "spontaneous" reboots. I am not sure if your motherboard supports it, but try installing lm_sensors to monitor your CPU/system temperature and see if it reaches unacceptable levels. Or, put it back at 300 and check if the reboots still occur. Rob -- Rob Kaper | [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] | http://capsi.com/ - telnet://chat.capsi.com:2300/ | 'What? In riddles?' said Gandalf. 'No! For I was talking aloud | to myself. A habit of the old: they choose the wisest person | present to speak to; the long explanations needed by the young | are wearying.' - "Lord of the Rings", JRR Tolkien -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Server reboots
Quoting Josh Hattery ([EMAIL PROTECTED]): I think I can safely say that it's not an overheating problem. The system has done much more than run web browsers (i.e. Unreal servers, etc) for over 2 years without similar problems. It's reproduced when viewing a microsoft .asp or clicking between windows with a flash animation in one or both of them. I can probably reproduce it doing other tasks as well, but I haven't tried it. You might want to test your memory (memtest). Cheers, -- Email: [EMAIL PROTECTED] Tel: +44 1908 653 739 Fax: +44 1908 655 151 Snail: David Wright, Earth Science Dept., Milton Keynes, England, MK7 6AA Disclaimer: These addresses are only for reaching me, and do not signify official stationery. Views expressed here are either my own or plagiarised. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Allow FTP in, but not shell login
Yes, we've got a bunch of people here using IE5x to update our sites via webDAV. You just open IE and click File-Open-(O)pen as web folder and then put in the URL. You then see the site much as you would if Indexing were somehow left enabled and can then drag-n-drop your files and folders. You'll need to have dav_module loaded in your webserver conf file, and then have a "DAV On" line in your Directory directive. There are other options as well. The documentation for a first-time DAV newbie is pretty dismal.. maybe the latest versions of the various Apache books (I tend to gravitated towards O'Reilly Assoc...) have better info. DAV is really great for this as it keeps users in their comfort zone of a GUI-based OS (you wouldn't believe the comical horror of some pure Windoze users at a command-line session...). At 01:01 PM 3/14/2001 +, Mike Moran wrote: Kenneth Pronovici wrote: you can change user's shell to /dev/null Well... it doesn't look like I can log in via telnet or FTP without a valid login shell. I tried that with various entries other than /dev/null ... If all that is needed is web page upload access, you could try installing WebDAV[1] and then disabling ftp entirely. Passwords for WebDAV are those used by apache for restricting access. You'd have to get them to use a WebDAV client though. I use "sitecopy" on unix and "Goliath" on MacOS. Dunno about Windows. Hmm, I think the "web folders" feature of Windows is actually just WebDAV. [1]: http://www.webdav.org -- [EMAIL PROTECTED] Web: http://houseofmoran.com/ AvantGo: http://houseofmoran.com/Lite/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- Eric N. Valor Webmeister/Inetservices Lutris Technologies [EMAIL PROTECTED] - This Space Intentionally Left Blank - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Allow FTP in, but not shell login
On Wed, Mar 14, 2001 at 11:56:13AM -, Neil Grant wrote: /usr/bin/passwd can sometimes be usefull as shell... By the way, check the bugtraq archives -- remote exploits for accounts with /bin/false as shell have been seen on there. cant seem to find any for these and as I understand it, false and true used to be shell scripts - but are now c programs to increase their security I couldn't find the article I thought of myself -- maybe I read it somewhere else. The point is that many feel a false sense of security since they use /bin/false as shell. Though I did find an example as good as any at: http://www.securityfocus.com/archive/1/46449 Jörgen -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: News server ?
On Wed, Mar 14, 2001 at 07:16:21PM +0100, Pshemol wrote: Is there any other way to get your mails? I have to fetch about a 20 mailis per day, Is the debian-security on any news server? like debian.security.annonce ? thx pshemol i was informed last time that i asked that all debian lists should be in USENET under linux.debian.* and this particular list should be linux.debian.announce.security (although all servers i've checked don't have this group) -- every nerd knows how to enjoy the little things of life, like: Cold pizza -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Allow FTP in, but not shell login
If I'm not mistaking and If you only have telnet enabled you can simply '*' disable the account for the user[s] you want to restrict access to in /etc/passwd file. ie - user:*:::UserName,,,:/home/user:/bin/bash ^ which *should* still let users ftp in and deny telnet sessions... If have your users login via ssh then 'sshd_config' file must be edited to have something like : sshd_config--- snip DenyUsers guest1 guest2 guest3 etc... snip eof--- cheers, xbud - [EMAIL PROTECTED] [EMAIL PROTECTED] "I only drink to make other people interesting." - On Tue, 13 Mar 2001, Kenneth Pronovici wrote: Hello - I'm not sure exactly where to look for this information, so if I should RTFM, just point me toward the right one. I have a situation where I've volunteered to host a few webpages for some users. They're at a university and are having problems getting timely access to their organizational websites on their school's server. Anyway, I'm happy to be the host, but I want these people to be able to FTP in ONLY, without interactive access. I want to do this specifically for a set of users, not for all users on the machine. My feeling is that PAM supports this somehow, but I'm not sure where to start. Anyone have any suggestions? Thanks for the help. KEN -- Kenneth J. Pronovici [EMAIL PROTECTED] Personal Homepage: http://www.skyjammer.com/~pronovic/ "The phrase, 'Happy as a clam' has never really held much meaning for me." -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: News server ?
"Matus \"fantomas\" Uhlar" [EMAIL PROTECTED] writes: - Is there any other way to get your mails? I have to fetch about a 20 mailis - per day, Is the debian-security on any news server? like - debian.security.annonce ? - thx pshemol - - i was informed last time that i asked that all debian lists should be in USENET - under linux.debian.* and this particular list should be - linux.debian.announce.security (although all servers i've checked don't have - this group) well so, 1. I've heard some time ago the linux.* hierarchy is dead. Yes, I don't think that ever really got off the ground. 2. debian is NOT a linux distribution - it's packaging system It's both. so, if at all, comp.os.debian or comp.unix.debian would be much better. Usenet is such a zoo nowadays that would be too painful to contemplate. I am planning to make gateway with debian mailing lists gatewayed for my personal tests, on my machine or our firm news server, but it will take some time. Then, probably... I wonder if the maintainers of lists.debian.org would consider running INND and converting the lists to newsgroups. There are tools to translate newsgroups to/from mailing lists for those who want that, and you can also access them directly with a newsreader if you wish. It's not really common, but it's not unusual for sites that have a lot of mailing lists to run a news server in this way, and I'm sure some of the software for it is already part of Debian. --Bill. -- William R Ward[EMAIL PROTECTED] http://www.bayview.com/~hermit/ - "Those are my principles. If you don't like them I have others."-Groucho Marx -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Server reboots
The system is a Celeron 300a (o/c 450, haven't had a problem in 2 years) on an Abit BH6 motherboard. Bios is made by Award and I'm not sure if power management is enabled in the Bios, but it's not compiled into my current kernel. I don't have any software watchdogs running. I have an identical CPU/Motherboard pair that used to be in another box of mine, but I haven't gotten ambitious enough to swap the two and see if it continues to have the problem. I also don't know if it's worth the effort since it could be a simple design flaw. *shrug* Thanks for the help. Josh Hattery [EMAIL PROTECTED] On Tue, 13 Mar 2001, Mike Fedyk wrote: On Wed, Mar 14, 2001 at 12:23:52AM -0500, Josh Hattery wrote: I'm having a similar problem but it's only when running netscape or some other web browser such as konqueror or mozilla. Lynx doesn't do anything, and I've checked the RAM. It's easily reproducable and I can't ever run netscape without worrying about the system spontaneously rebooting. It's an odd problem and I'm kind of tired of it... :) For now I just avoid web browsing in XFree86/enlightenment. Do you have a software watchdog? What is your system? bios type ? power management enabled? acpi? apm? Mike -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Server reboots
On Wed, Mar 14, 2001 at 01:07:26AM -0500, Josh Hattery wrote: The system is a Celeron 300a (o/c 450, haven't had a problem in 2 years) on an Abit BH6 motherboard. Yes, you have had problems: the spontaneous reboots. I am not sure if your motherboard supports it, but try installing lm_sensors to monitor your CPU/system temperature and see if it reaches unacceptable levels. Or, put it back at 300 and check if the reboots still occur. Rob -- Rob Kaper | [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] | http://capsi.com/ - telnet://chat.capsi.com:2300/ | 'What? In riddles?' said Gandalf. 'No! For I was talking aloud | to myself. A habit of the old: they choose the wisest person | present to speak to; the long explanations needed by the young | are wearying.' - Lord of the Rings, JRR Tolkien
Re: Server reboots
On Wed, Mar 14, 2001 at 01:07:26AM -0500, Josh Hattery wrote: The system is a Celeron 300a (o/c 450, haven't had a problem in 2 years) on an Abit BH6 motherboard. Bios is made by Award and I'm not sure Try without the o/cing, of course I know you don't want to do that, but if you really want to try to fix it... if power management is enabled in the Bios, but it's not compiled into my current kernel. I'd compile it in, and have the kernel auto turn it off. If you have an atx MB, it should shutdown your box on halt. I don't have any software watchdogs running. I have an identical CPU/Motherboard pair that used to be in another box of mine, but I haven't gotten ambitious enough to swap the two and see if it continues to have the problem. I also don't know if it's worth the effort since it could be a simple design flaw. *shrug* Compare them. What's the difference on the two systems? Are both running linux? Does one have more power hungry devices connected to it? Did you check the temperature? Power supply?
Re: Allow FTP in, but not shell login
On Tue, Mar 13, 2001 at 10:10:09PM +0200, Sami Haahtinen wrote: try falselogin, it acts as shell for the user, (what it really does it shows that the user can't login and dies) thats what i use for mail only accounts. ofcourse you need to add falselogin to list of valid shells. i prefer OpenBSD's nologin, which does the same thing as falselogin but with FAR less code. OpenBSD nologin compiles just fine on linux. -- Ethan Benson http://www.alaska.net/~erbenson/ pgpE8XcLBbgMu.pgp Description: PGP signature
Re: Allow FTP in, but not shell login
On Tue, Mar 13, 2001 at 10:09:58PM -0900, Ethan Benson wrote: On Tue, Mar 13, 2001 at 10:10:09PM +0200, Sami Haahtinen wrote: try falselogin, it acts as shell for the user, (what it really does it shows that the user can't login and dies) thats what i use for mail only accounts. ofcourse you need to add falselogin to list of valid shells. i prefer OpenBSD's nologin, which does the same thing as falselogin but with FAR less code. OpenBSD nologin compiles just fine on linux. Maybe this should be a debian package. Does anyone know if there are any plans? Mike
Re: Allow FTP in, but not shell login
On Tue, Mar 13, 2001 at 12:08:17PM -0800, Eric N. Valor wrote: Try setting the shell to /bin/true (and make sure this is listed in /etc/shells). /bin/true returns a zero result and exits. It allows you to log in via daemons that require a valid shell, yet won't allow telnet-style access (no real shell, just a true result). [snip] /usr/bin/passwd can sometimes be usefull as shell... By the way, check the bugtraq archives -- remote exploits for accounts with /bin/false as shell have been seen on there. Jörgen
Re: Server reboots
Am Mit, 14 Mär 2001 Josh Hattery: The system is a Celeron 300a (o/c 450, haven't had a problem in 2 years) on an Abit BH6 motherboard. Apperently You have one. When I o/ced my Pentium 133 to 166 I had similar symptoms. Markus
Re: Allow FTP in, but not shell login
On Tue, 13 Mar 2001, Kenneth Pronovici wrote: I have a situation where I've volunteered to host a few webpages for some users. They're at a university and are having problems getting timely access to their organizational websites on their school's server. Anyway, I'm happy to be the host, but I want these people to be able to FTP in ONLY, without interactive access. I want to do this specifically for a set of users, not for all users on the machine. I think, this could be quite hard to archive. Setting the shell to something non-interactive will disallow normal login. But the users will stil have many rights, that might allow them nasty things inluding getting interactive access: Perhaps you have procmail installed and they can send themself mail, so they can execute anything thay want. If they have write-access to some dir, which is not mounted no-exec, they can but there something to execute, they can thereby start programms there. Or you have installed some php, which is configuated in a way they can run programms they want from there. Then they may start some xterm and have an shell as nowhere and get interactiv-user-access by su giving an other shell to execute. And there might be many other possibilities, one had to check to ensure this. Hochachtungsvoll, Bernhard R. Link
Re: Allow FTP in, but not shell login
/usr/bin/passwd can sometimes be usefull as shell... By the way, check the bugtraq archives -- remote exploits for accounts with /bin/false as shell have been seen on there. cant seem to find any for these and as I understand it, false and true used to be shell scripts - but are now c programs to increase their security Neil _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com
Re: 127.0.0.0/8 addresses from the network
On Tue, Mar 13, 2001 at 09:42:19PM -0400, Peter Cordes wrote: ... The result is that, as expected, llama doesn't route or accept the packet. thanks for the crisp and clear explanation; now I get it:) -- groetjes, carel
Re: Allow FTP in, but not shell login
Kenneth Pronovici wrote: you can change user's shell to /dev/null Well... it doesn't look like I can log in via telnet or FTP without a valid login shell. I tried that with various entries other than /dev/null ... If all that is needed is web page upload access, you could try installing WebDAV[1] and then disabling ftp entirely. Passwords for WebDAV are those used by apache for restricting access. You'd have to get them to use a WebDAV client though. I use sitecopy on unix and Goliath on MacOS. Dunno about Windows. Hmm, I think the web folders feature of Windows is actually just WebDAV. [1]: http://www.webdav.org -- [EMAIL PROTECTED] Web: http://houseofmoran.com/ AvantGo: http://houseofmoran.com/Lite/
pam_chroot and pam_limit
Hello, I would like to chroot some of my local users. I would like to use pam because it runs at logon time with root priviledges and can do all correctly w/o any suid wrappers. In the manual pages I saw 2 ways to solve it * pam_chroot Problem: there is no such pam module in debian (I am using ``sid``) * pam_limits Problem: it does not work for me. May be some one already collide with this problem and can consult me? Thanks for the help. HDN -- Dmitry N. Hramtsov [EMAIL PROTECTED]
Re: Server reboots
I think I can safely say that it's not an overheating problem. The system has done much more than run web browsers (i.e. Unreal servers, etc) for over 2 years without similar problems. It's reproduced when viewing a microsoft .asp or clicking between windows with a flash animation in one or both of them. I can probably reproduce it doing other tasks as well, but I haven't tried it. Josh Hattery [EMAIL PROTECTED] On Wed, 14 Mar 2001, Rob Kaper wrote: On Wed, Mar 14, 2001 at 01:07:26AM -0500, Josh Hattery wrote: The system is a Celeron 300a (o/c 450, haven't had a problem in 2 years) on an Abit BH6 motherboard. Yes, you have had problems: the spontaneous reboots. I am not sure if your motherboard supports it, but try installing lm_sensors to monitor your CPU/system temperature and see if it reaches unacceptable levels. Or, put it back at 300 and check if the reboots still occur. Rob -- Rob Kaper | [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] | http://capsi.com/ - telnet://chat.capsi.com:2300/ | 'What? In riddles?' said Gandalf. 'No! For I was talking aloud | to myself. A habit of the old: they choose the wisest person | present to speak to; the long explanations needed by the young | are wearying.' - Lord of the Rings, JRR Tolkien -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Server reboots
Quoting Josh Hattery ([EMAIL PROTECTED]): I think I can safely say that it's not an overheating problem. The system has done much more than run web browsers (i.e. Unreal servers, etc) for over 2 years without similar problems. It's reproduced when viewing a microsoft .asp or clicking between windows with a flash animation in one or both of them. I can probably reproduce it doing other tasks as well, but I haven't tried it. You might want to test your memory (memtest). Cheers, -- Email: [EMAIL PROTECTED] Tel: +44 1908 653 739 Fax: +44 1908 655 151 Snail: David Wright, Earth Science Dept., Milton Keynes, England, MK7 6AA Disclaimer: These addresses are only for reaching me, and do not signify official stationery. Views expressed here are either my own or plagiarised.
Re: Allow FTP in, but not shell login
Yes, we've got a bunch of people here using IE5x to update our sites via webDAV. You just open IE and click File-Open-(O)pen as web folder and then put in the URL. You then see the site much as you would if Indexing were somehow left enabled and can then drag-n-drop your files and folders. You'll need to have dav_module loaded in your webserver conf file, and then have a DAV On line in your Directory directive. There are other options as well. The documentation for a first-time DAV newbie is pretty dismal.. maybe the latest versions of the various Apache books (I tend to gravitated towards O'Reilly Assoc...) have better info. DAV is really great for this as it keeps users in their comfort zone of a GUI-based OS (you wouldn't believe the comical horror of some pure Windoze users at a command-line session...). At 01:01 PM 3/14/2001 +, Mike Moran wrote: Kenneth Pronovici wrote: you can change user's shell to /dev/null Well... it doesn't look like I can log in via telnet or FTP without a valid login shell. I tried that with various entries other than /dev/null ... If all that is needed is web page upload access, you could try installing WebDAV[1] and then disabling ftp entirely. Passwords for WebDAV are those used by apache for restricting access. You'd have to get them to use a WebDAV client though. I use sitecopy on unix and Goliath on MacOS. Dunno about Windows. Hmm, I think the web folders feature of Windows is actually just WebDAV. [1]: http://www.webdav.org -- [EMAIL PROTECTED] Web: http://houseofmoran.com/ AvantGo: http://houseofmoran.com/Lite/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- Eric N. Valor Webmeister/Inetservices Lutris Technologies [EMAIL PROTECTED] - This Space Intentionally Left Blank -
News server ?
Is there any other way to get your mails? I have to fetch about a 20 mailis per day, Is the debian-security on any news server? like debian.security.annonce ? thx pshemol
Re: Allow FTP in, but not shell login
On Wed, Mar 14, 2001 at 11:56:13AM -, Neil Grant wrote: /usr/bin/passwd can sometimes be usefull as shell... By the way, check the bugtraq archives -- remote exploits for accounts with /bin/false as shell have been seen on there. cant seem to find any for these and as I understand it, false and true used to be shell scripts - but are now c programs to increase their security I couldn't find the article I thought of myself -- maybe I read it somewhere else. The point is that many feel a false sense of security since they use /bin/false as shell. Though I did find an example as good as any at: http://www.securityfocus.com/archive/1/46449 Jörgen
Re: Allow FTP in, but not shell login
If I'm not mistaking and If you only have telnet enabled you can simply '*' disable the account for the user[s] you want to restrict access to in /etc/passwd file. ie - user:*:::UserName,,,:/home/user:/bin/bash ^ which *should* still let users ftp in and deny telnet sessions... If have your users login via ssh then 'sshd_config' file must be edited to have something like : sshd_config--- snip DenyUsers guest1 guest2 guest3 etc... snip eof--- cheers, xbud - [EMAIL PROTECTED] [EMAIL PROTECTED] I only drink to make other people interesting. - On Tue, 13 Mar 2001, Kenneth Pronovici wrote: Hello - I'm not sure exactly where to look for this information, so if I should RTFM, just point me toward the right one. I have a situation where I've volunteered to host a few webpages for some users. They're at a university and are having problems getting timely access to their organizational websites on their school's server. Anyway, I'm happy to be the host, but I want these people to be able to FTP in ONLY, without interactive access. I want to do this specifically for a set of users, not for all users on the machine. My feeling is that PAM supports this somehow, but I'm not sure where to start. Anyone have any suggestions? Thanks for the help. KEN -- Kenneth J. Pronovici [EMAIL PROTECTED] Personal Homepage: http://www.skyjammer.com/~pronovic/ The phrase, 'Happy as a clam' has never really held much meaning for me. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: News server ?
On Wed, Mar 14, 2001 at 07:16:21PM +0100, Pshemol wrote: Is there any other way to get your mails? I have to fetch about a 20 mailis per day, Is the debian-security on any news server? like debian.security.annonce ? thx pshemol i was informed last time that i asked that all debian lists should be in USENET under linux.debian.* and this particular list should be linux.debian.announce.security (although all servers i've checked don't have this group) -- every nerd knows how to enjoy the little things of life, like: Cold pizza
Re: News server ?
- Is there any other way to get your mails? I have to fetch about a 20 mailis - per day, Is the debian-security on any news server? like - debian.security.annonce ? - thx pshemol - - i was informed last time that i asked that all debian lists should be in USENET - under linux.debian.* and this particular list should be - linux.debian.announce.security (although all servers i've checked don't have - this group) well so, 1. I've heard some time ago the linux.* hierarchy is dead. 2. debian is NOT a linux distribution - it's packaging system so, if at all, comp.os.debian or comp.unix.debian would be much better. I am planning to make gateway with debian mailing lists gatewayed for my personal tests, on my machine or our firm news server, but it will take some time. Then, probably... -- Matus fantomas Uhlar, sysadmin at NEXTRA, Slovakia; IRCNET admin of *.sk [EMAIL PROTECTED] ; http://www.fantomas.sk/ ; http://www.nextra.sk/ WinError #9: Out of error messages.
Re: News server ?
Matus \fantomas\ Uhlar [EMAIL PROTECTED] writes: - Is there any other way to get your mails? I have to fetch about a 20 mailis - per day, Is the debian-security on any news server? like - debian.security.annonce ? - thx pshemol - - i was informed last time that i asked that all debian lists should be in USENET - under linux.debian.* and this particular list should be - linux.debian.announce.security (although all servers i've checked don't have - this group) well so, 1. I've heard some time ago the linux.* hierarchy is dead. Yes, I don't think that ever really got off the ground. 2. debian is NOT a linux distribution - it's packaging system It's both. so, if at all, comp.os.debian or comp.unix.debian would be much better. Usenet is such a zoo nowadays that would be too painful to contemplate. I am planning to make gateway with debian mailing lists gatewayed for my personal tests, on my machine or our firm news server, but it will take some time. Then, probably... I wonder if the maintainers of lists.debian.org would consider running INND and converting the lists to newsgroups. There are tools to translate newsgroups to/from mailing lists for those who want that, and you can also access them directly with a newsreader if you wish. It's not really common, but it's not unusual for sites that have a lot of mailing lists to run a news server in this way, and I'm sure some of the software for it is already part of Debian. --Bill. -- William R Ward[EMAIL PROTECTED] http://www.bayview.com/~hermit/ - Those are my principles. If you don't like them I have others.-Groucho Marx