only POP3
Hi there! I have a short question: What's the way, if I would like to provide only e-mail service to the users? No telnet, ftp account, only POP3. It works with giving a fake shell in the passwd file, but how would you do it? Should I create definitely a shell account? thanx: aboy
Re: only POP3
On Tue, Jul 18, 2000 at 12:52:01PM +0200, Aubert Gabor wrote: > Hi there! > > I have a short question: > What's the way, if I would like to provide only e-mail service to the > users? No telnet, ftp account, only POP3. You might look into qmail, and on the site at: http://www.tibus.net/pgregg/projects/qmail/single-uid-howto.html for instructions on how to support many POP3 users under one system UID. It's one possible solution -- there may be others. Because of the licensing of qmail, there's no binary .deb of it -- the packages you get include the sources, and the package includes scripts to handle the building of them. If you go for a reasonably complete qmail installation, with ucspi-tcp and rblsmtpd, one of the packages is messed up just a bit and will leave you with compiler warnings. I don't recall which it is, but it's an easy fix. Find the subdirectory named for the package in /tmp/ and change into it, then chmod u+x * the thing. The compiler warnings will go away, and the result will be a nicely installable .deb of the binary. I just started using qmail this year, and like it just fine. It's a lot easier to administer than sendmail or smail, and it's allegedly a lot more secure, too. -- Art Sackett
Re: only POP3
> What's the way, if I would like to provide only e-mail service to the > It works with giving a fake shell in the passwd file, but how would you do > it? Should I create definitely a shell account? There was a short discussion here about virtual services ... you can keep your pop3 password in anything supported by pam modules (like ldap, db, sql database, radius or anything ) there is also Mr Reed's patched gnu-pop3d which enables you to have completely separate passwd file for your pop3 users. I prefer pam solutions since it cleaner. just select your pop3 server with pam support (eg: solid-pop3d, ipopd, gnu-pop3d, cucipop for non-commercial use) and edit it's pam config : /etc/pam.d/spop3d, gnu-pop3d, pop, etc.. regards,
Re: PROFTPD root login
On Wed, Jul 12, 2000 at 09:33:31PM +0200, ?ts Attila wrote: > I've installed PROFTPD with factory settings. > Connecting with CuteFTP I cannot logon as root. > What is the reason and the solution? Reason, it's insanely insecure. Solution, read the FAQ on http://www.proftpd.net/docs/ and particualarly the "AllowRootLogin" directive. -- The Flying Hamster <[EMAIL PROTECTED]> Well not so much flying as sitting on the tube... All computers are evil, just remember that. -- Me.
how to limit area's users can traverse
hello How do you limit the area which a user can go with ftp? i.e, when user ftp's to my server, how do I keep him in his portion of the filesystem only. Way back when, I saw a setup on a redhat system which had a non standard "cd" binary which was put in each user's path. This "cd" could not be deleted by the user and it would not allow the user to cd to any directory not owned by the user. It seemed kinda weird, but it definitely did the trick. John
Fwd: only POP3
I give individual accounts e-mail only access by giving them a standard e-mail account but setting their home directory and their login shell to /dev/null or /dev/false. So, an entry in the passwd file looks like this: user1:x:101:103::/dev/null:/dev/null Which gives them and e-mail account, but no other access. Rod Hi there! I have a short question: What's the way, if I would like to provide only e-mail service to the users? No telnet, ftp account, only POP3. It works with giving a fake shell in the passwd file, but how would you do it? Should I create definitely a shell account? thanx: aboy R. W. "Rod" Rodolico Daily Data, Inc. POB 140465 - Dallas TX 75214-0465 214.827.2170 -- 214.821.5051 (fax) [EMAIL PROTECTED] http://www.dailydatainc.com Entia non sunt multiplicanda, praeter necessitatem William of Occam
Fwd: Re: PROFTPD root login
Just agreeing that this is a big Romper Room No No. It is as bad as allowing telnet access by root. As an aside, CuteFTP is one of the programs I read about that sends tracking information back to its advertisers telling them where you went and what you did. Unless they have changed that, be aware that your actions are being recorded and sent to third parties without your permission. Rod On Wed, Jul 12, 2000 at 09:33:31PM +0200, ?ts Attila wrote: > I've installed PROFTPD with factory settings. > Connecting with CuteFTP I cannot logon as root. > What is the reason and the solution? Reason, it's insanely insecure. Solution, read the FAQ on http://www.proftpd.net/docs/ and particualarly the "AllowRootLogin" directive. -- The Flying Hamster <[EMAIL PROTECTED]> Well not so much flying as sitting on the tube... All computers are evil, just remember that. -- Me. R. W. "Rod" Rodolico Daily Data, Inc. POB 140465 - Dallas TX 75214-0465 214.827.2170 -- 214.821.5051 (fax) [EMAIL PROTECTED] http://www.dailydatainc.com Entia non sunt multiplicanda, praeter necessitatem William of Occam
transfer control
Is there a way to control, how is amount of bits a computer in your net is transmiting (Tx and Rx)? Router / \ /\ computer1 computer2 How do I know how much of ban widht computer2 is using? thanx in advance.
Fwd: transfer control
Look for a program named iptraf. It allows you to break down everything in real time. Rod Is there a way to control, how is amount of bits a computer in your net is transmiting (Tx and Rx)? Router / \ /\ computer1 computer2 How do I know how much of ban widht computer2 is using? thanx in advance. R. W. "Rod" Rodolico Daily Data, Inc. POB 140465 - Dallas TX 75214-0465 214.827.2170 -- 214.821.5051 (fax) [EMAIL PROTECTED] http://www.dailydatainc.com Entia non sunt multiplicanda, praeter necessitatem William of Occam
only POP3
Hi there! I have a short question: What's the way, if I would like to provide only e-mail service to the users? No telnet, ftp account, only POP3. It works with giving a fake shell in the passwd file, but how would you do it? Should I create definitely a shell account? thanx: aboy -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: only POP3
On Tue, Jul 18, 2000 at 12:52:01PM +0200, Aubert Gabor wrote: > Hi there! > > I have a short question: > What's the way, if I would like to provide only e-mail service to the > users? No telnet, ftp account, only POP3. You might look into qmail, and on the site at: http://www.tibus.net/pgregg/projects/qmail/single-uid-howto.html for instructions on how to support many POP3 users under one system UID. It's one possible solution -- there may be others. Because of the licensing of qmail, there's no binary .deb of it -- the packages you get include the sources, and the package includes scripts to handle the building of them. If you go for a reasonably complete qmail installation, with ucspi-tcp and rblsmtpd, one of the packages is messed up just a bit and will leave you with compiler warnings. I don't recall which it is, but it's an easy fix. Find the subdirectory named for the package in /tmp/ and change into it, then chmod u+x * the thing. The compiler warnings will go away, and the result will be a nicely installable .deb of the binary. I just started using qmail this year, and like it just fine. It's a lot easier to administer than sendmail or smail, and it's allegedly a lot more secure, too. -- Art Sackett -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: only POP3
> What's the way, if I would like to provide only e-mail service to the > It works with giving a fake shell in the passwd file, but how would you do > it? Should I create definitely a shell account? There was a short discussion here about virtual services ... you can keep your pop3 password in anything supported by pam modules (like ldap, db, sql database, radius or anything ) there is also Mr Reed's patched gnu-pop3d which enables you to have completely separate passwd file for your pop3 users. I prefer pam solutions since it cleaner. just select your pop3 server with pam support (eg: solid-pop3d, ipopd, gnu-pop3d, cucipop for non-commercial use) and edit it's pam config : /etc/pam.d/spop3d, gnu-pop3d, pop, etc.. regards, -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: PROFTPD root login
On Wed, Jul 12, 2000 at 09:33:31PM +0200, ?ts Attila wrote: > I've installed PROFTPD with factory settings. > Connecting with CuteFTP I cannot logon as root. > What is the reason and the solution? Reason, it's insanely insecure. Solution, read the FAQ on http://www.proftpd.net/docs/ and particualarly the "AllowRootLogin" directive. -- The Flying Hamster <[EMAIL PROTECTED]> Well not so much flying as sitting on the tube... All computers are evil, just remember that. -- Me. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
how to limit area's users can traverse
hello How do you limit the area which a user can go with ftp? i.e, when user ftp's to my server, how do I keep him in his portion of the filesystem only. Way back when, I saw a setup on a redhat system which had a non standard "cd" binary which was put in each user's path. This "cd" could not be deleted by the user and it would not allow the user to cd to any directory not owned by the user. It seemed kinda weird, but it definitely did the trick. John -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Fwd: only POP3
I give individual accounts e-mail only access by giving them a standard e-mail account but setting their home directory and their login shell to /dev/null or /dev/false. So, an entry in the passwd file looks like this: user1:x:101:103::/dev/null:/dev/null Which gives them and e-mail account, but no other access. Rod >Hi there! > >I have a short question: >What's the way, if I would like to provide only e-mail service to the >users? No telnet, ftp account, only POP3. >It works with giving a fake shell in the passwd file, but how would you do >it? Should I create definitely a shell account? > >thanx: aboy > R. W. "Rod" Rodolico Daily Data, Inc. POB 140465 - Dallas TX 75214-0465 214.827.2170 -- 214.821.5051 (fax) [EMAIL PROTECTED] http://www.dailydatainc.com Entia non sunt multiplicanda, praeter necessitatem William of Occam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Fwd: Re: PROFTPD root login
Just agreeing that this is a big Romper Room No No. It is as bad as allowing telnet access by root. As an aside, CuteFTP is one of the programs I read about that sends tracking information back to its advertisers telling them where you went and what you did. Unless they have changed that, be aware that your actions are being recorded and sent to third parties without your permission. Rod >On Wed, Jul 12, 2000 at 09:33:31PM +0200, ?ts Attila wrote: > > I've installed PROFTPD with factory settings. > > Connecting with CuteFTP I cannot logon as root. > > What is the reason and the solution? > >Reason, it's insanely insecure. > >Solution, read the FAQ on http://www.proftpd.net/docs/ and >particualarly the "AllowRootLogin" directive. > >-- >The Flying Hamster <[EMAIL PROTECTED]> >Well not so much flying as sitting on the tube... > >All computers are evil, just remember that. -- Me. > R. W. "Rod" Rodolico Daily Data, Inc. POB 140465 - Dallas TX 75214-0465 214.827.2170 -- 214.821.5051 (fax) [EMAIL PROTECTED] http://www.dailydatainc.com Entia non sunt multiplicanda, praeter necessitatem William of Occam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
transfer control
Is there a way to control, how is amount of bits a computer in your net is transmiting (Tx and Rx)? Router / \ /\ computer1 computer2 How do I know how much of ban widht computer2 is using? thanx in advance. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Fwd: transfer control
Look for a program named iptraf. It allows you to break down everything in real time. Rod >Is there a way to control, how is amount of bits a computer in your net is >transmiting (Tx and Rx)? > > > Router > / \ > /\ > computer1 computer2 > >How do I know how much of ban widht computer2 is using? > > >thanx in advance. > > R. W. "Rod" Rodolico Daily Data, Inc. POB 140465 - Dallas TX 75214-0465 214.827.2170 -- 214.821.5051 (fax) [EMAIL PROTECTED] http://www.dailydatainc.com Entia non sunt multiplicanda, praeter necessitatem William of Occam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Strange Qmail problem...
dear all, i've just installed qmail and set it to use maildir. but mail for alias cannot be delivered. maillog tells something like this: "deferral: Temporary_error_on_maildir_delivery" i've tried to change ~alias/.qmail with both "/var/qmail/alias/Maildir/" and "./Maildir/" but nothing happened. Is there any step i miss? other users can receive mail normally. TIA -parlin- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Strange Qmail problem...
Did you use maildirmake on the maildir? Aside from that, a quick post to the qmail list is probably a better idea then here. On Wed, 19 Jul 2000, parlin imanuel wrote: | dear all, | i've just installed qmail and set it to use maildir. | but mail for alias cannot be delivered. | maillog tells something like this: | "deferral: Temporary_error_on_maildir_delivery" | i've tried to change ~alias/.qmail with both | "/var/qmail/alias/Maildir/" and "./Maildir/" | but nothing happened. Is there any step i miss? | other users can receive mail normally. | | TIA | -parlin- | | | -- | To UNSUBSCRIBE, email to [EMAIL PROTECTED] | with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] | | -- ___ _ __ _ __ /___ ___ /__ John Gonzalez/Net.Tech __ __ \ __ \ __/_ __ `__ \/ __ /_ ___/ MDC Computers/netMDC! _ / / / `__/ /_ / / / / / / /_/ / / /__ (505)437-7600/fax-437-3052 /_/ /_/\___/\__/ /_/ /_/ /_/\__,_/ \___/ http://www.netmdc.com [-[system info]---] 11:15pm up 69 days, 5:18, 3 users, load average: 0.00, 0.03, 0.00 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
