>From shells(5)<div><div>NAME</div><div> shells - pathnames of valid login shells</div><div><br></div><div>DESCRIPTION</div><div> /etc/shells is a text file which contains the full pathnames of valid login shells. This file is consulted by chsh(1) and available to be queried</div>
<div> by other programs.</div><div><br></div><div> Be aware that there are programs which consult this file to find out if a user is a normal user. E.g.: ftp daemons traditionally disallow access to</div><div>
users with shells not included in this file.</div><div><br></div><br><div class="gmail_quote">On Tue, Mar 22, 2011 at 1:14 PM, Kevin McGregor <span dir="ltr"><<a href="mailto:kevin.a.mcgregor@gmail.com">kevin.a.mcgregor@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">I already had put in<div><span style="border-collapse:collapse;color:rgb(80, 0, 80);font-family:arial, sans-serif;font-size:13px">local_enable=YES<br>
write_enable=YES</span></div><div><br>
</div><div>Then on a whim I took out</div><div><span style="border-collapse:collapse;font-family:arial, sans-serif;font-size:13px">auth required pam_shells.so</span></div><div><font face="arial, sans-serif"><span style="border-collapse:collapse"><br>
</span></font></div><div><font face="arial, sans-serif"><span style="border-collapse:collapse">from /etc/vsftpd.conf, and then it started working. I guess it didn't like that /bin/bash was set as my shell in /etc/passwd and also in /etc/shells. Or something.<br>
</span></font><br><div class="gmail_quote">On Tue, Mar 22, 2011 at 12:43 PM, Trevor Cordes <span dir="ltr"><<a href="mailto:trevor@tecnopolis.ca" target="_blank">trevor@tecnopolis.ca</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div><div></div><div>On 2011-03-22 Kevin McGregor wrote:<br>
> Maybe someone can throw in their two cents on this:<br>
><br>
> I installed vsftpd on my Ubuntu 10.04 server, and I set<br>
><br>
> local_enable=YES<br>
> write_enable=YES<br>
><br>
> When I FTP to the server, I get prompted for a username and password,<br>
> but it seems to just reject it and ask for username/password again.<br>
> What else do I need to do? I just want one account to be able to FTP<br>
> upload files to this server.<br>
<br>
</div></div>Ah, you're assuming it's easy. Vsftp config is for sure not that!<br>
<br>
Here's my config:<br>
anonymous_enable=NO<br>
<div>local_enable=YES<br>
write_enable=YES<br>
</div>local_umask=0002<br>
dirmessage_enable=YES<br>
xferlog_enable=YES<br>
connect_from_port_20=YES<br>
xferlog_file=/var/log/vsftpd.log<br>
xferlog_std_format=YES<br>
idle_session_timeout=3600<br>
nopriv_user=ftp<br>
ascii_upload_enable=YES<br>
ascii_download_enable=YES<br>
ftpd_banner=This is a private system. Unauthorized use is strictly<br>
prohibited. Violators will prosecuted.<br>
pam_service_name=vsftpd<br>
userlist_enable=YES<br>
userlist_deny=NO<br>
userlist_file=/etc/vsftpd/user_list<br>
listen=YES<br>
tcp_wrappers=YES<br>
chroot_local_user=YES<br>
anon_max_rate=50000<br>
local_max_rate=100000<br>
anon_umask=0007<br>
file_open_mode=0666<br>
user_config_dir=/etc/vsftpd/userconfs<br>
<br>
Then make a /etc/vsftpd/user_list and populate it with allowed user ids<br>
for login. One per line. Mine only has 2 entries (the more locked<br>
down the better).<br>
<br>
Then make files, one per user allowed, the filename the same as the<br>
username in /etc/vsftpd/userconfs/. I have 1 line in each:<br>
local_root=/var/ftp/pub<br>
<br>
Or wherever you want them to be able to access.<br>
<div><div></div><div>_______________________________________________<br>
Roundtable mailing list<br>
<a href="mailto:Roundtable@muug.mb.ca" target="_blank">Roundtable@muug.mb.ca</a><br>
<a href="http://www.muug.mb.ca/mailman/listinfo/roundtable" target="_blank">http://www.muug.mb.ca/mailman/listinfo/roundtable</a><br>
</div></div></blockquote></div><br></div>
<br>_______________________________________________<br>
Roundtable mailing list<br>
<a href="mailto:Roundtable@muug.mb.ca">Roundtable@muug.mb.ca</a><br>
<a href="http://www.muug.mb.ca/mailman/listinfo/roundtable" target="_blank">http://www.muug.mb.ca/mailman/listinfo/roundtable</a><br>
<br></blockquote></div><br><br clear="all"><br>-- <br>Sean Walberg <<a href="mailto:sean@ertw.com" target="_blank">sean@ertw.com</a>> <a href="http://ertw.com/" target="_blank">http://ertw.com/</a><br>
</div>