httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Jeff Lee" <jeffleeismyh...@hotmail.com>
Subject Re: [users@httpd] Basic Security upgrades
Date Tue, 19 Aug 2003 00:14:04 GMT
Right I know this and I have done this for test users

----- Original Message ----- 
From: "Leif W" <warp-9.9@usa.net>
To: <users@httpd.apache.org>
Sent: Monday, August 18, 2003 3:02 PM
Subject: Re: [users@httpd] Basic Security upgrades


> This segment is off-topic.
>
> > It's advisable NOT to give shell access to anyone by default,
> > and then only if they really need it
>
> Forgot to mention how.  When creating a user, or in the /etc/passwd file,
> set the shell to /bin/false, so if someone does get the FTP user/password
> and tries to log in via shell, they can't get a shell, they can only get
FTP
> access, which hopefully slows things down a bit.
>
> Leif
>
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message