How to control FTP user/system access on an IBM AIX system ?
Today we will look how to control user and client system access to a FTP server on an IBM AIX server.
We will look at two files today.
1. ftpusers –> The users listed in this file are restricted not to use FTP on this system.
2. ftpaccess.ctl –> This is the file that contains the system list, i.e. the list of systems from where we can access this FTP server.
Lets have a look at these files.
I. FTP Access Control File
ngeaix01 --> cat ftpaccess.ctl allow: 127.0.0.1, ngelt002.aix.ngelinux.net, 10.5.30.131, 10.56.32.214,vmnget1783,vmnget1784,vmnget1785,vmnget1786,vmnget1787,vmnget1788,vmnget1789,vmnget1790,vmnget1778 useronly: ngeappftp readonly: /, /app, /app/ngeapppre, /app/ngeapppre/fileload readwrite: /app/ngeapppre/fileload/incoming, /app/ngeapppre/fileload/temp ngeaix01 -->
Here we have limited the FTP access from specific hostnames, and users.
II. FTP Users File
ngeaix01 --> cat ftpusers adm bin daemon ngeapppre guest invscout ipsec lp lpd metron nobody nuucp oper opermore opstors oracle qualys root sshd ssvtws sys tws uucp readonly readonly ngeaix01 -->
The above users can’t login via FTP remotely.