Problem:
On a DEC Unix system that will contain thousands of accounts
in which users can only ftp in, users can still pull down
a copy of /etc/passwd, thus, giving them the ability to
look at usernames/encrypted passwords.
Running enhanced security and utilizing the password
authentication database is not an option at this time.
Questions:
Is there a working, trustworthy passwd/shadow file
solution for DEC Unix available?
OR
Is there a way to limit where the users can 'change directory'
to during an ftp session? (prevent them from cd'ing to /etc)
I am using the version of ftp that comes with DEC Unix 3.2D.
Thanks,
Chris Ruffieux
Systems Integration
(804) 624-2461
ruffieux_at_norfolk.infi.net
Received on Fri Mar 22 1996 - 14:13:49 NZST