[SOLVED] User requires SSH access to connect to FTP, why?

[the182guy]

Hi all,

I have a CentOS dedicated server running ProFTP. I have created user accounts which are meant for FTP access only but the users cannot connect to the FTP unless their shell access is /bin/bash

Here is an example line that is outputted when I use this command:

cat /etc/passwd

johnsmith:502:501::/var/www/vhosts/johnsmith.com:/bin/bash

This user can access the FTP fine, but he can also access SSH which I don't want to allow him to do. If I set his shell access to /bin/false then he can't connect to the FTP.

What can I use in instead of /bin/bash to allow FTP but don't allow SSH?

[bigtomrodney]

There are a few options you can use in sshd_config to specifically allow/deny users or groups from logging in. I'd say in your case you'd be better off creating a group for users who are allowed to log in via ssh, maybe add the AllowGroups option after creating a group called ssh_users or similar. Anyone else will then be denied.

Knowledge Layer :: How do I permit specific users SSH access?

[the182guy]

thanks, I have added /bin/false to /etc/shells which solved the problem.