40.8. Limiting Who Can Log In
ProFTPD does not allow every UNIX user to log in, even if they have valid usernames and passwords. The separate /etc/ftpusers file lists users who are not allowed to authenticate, which typically include system accounts such as bin, daemon, and uucp. In addition, there is a separate configuration option that controls whether the root user is allowed to log in or not. By default it is not, because passwords sent by the FTP protocol are not encrypted, so allowing root to authenticate could be a major security risk.
ProFTPD also prevents users without a valid shell from logging in by default. A valid shell is one listed in the /etc/shells file. This feature can be useful for preventing a large group of users from logging ...
Get Managing Linux® Systems with Webmin™ System Administration and Module Development now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
