How to control FTP user/system access on an IBM AIX system ?

Today we will look how to control user and client system access to a FTP server on an IBM AIX server.

We will look at two files today.

1. ftpusers –> The users listed in this file are restricted not to use FTP on this system.
2. ftpaccess.ctl –> This is the file that contains the system list, i.e. the list of systems from where we can access this FTP server.

Lets have a look at these files.

I. FTP Access Control File

ngeaix01 --> cat ftpaccess.ctl
allow: 127.0.0.1, ngelt002.aix.ngelinux.net, 10.5.30.131, 10.56.32.214,vmnget1783,vmnget1784,vmnget1785,vmnget1786,vmnget1787,vmnget1788,vmnget1789,vmnget1790,vmnget1778
useronly: ngeappftp
readonly: /, /app, /app/ngeapppre, /app/ngeapppre/fileload
readwrite: /app/ngeapppre/fileload/incoming, /app/ngeapppre/fileload/temp
ngeaix01 -->

Here we have limited the FTP access from specific hostnames, and users.

II. FTP Users File

ngeaix01 --> cat ftpusers
adm
bin
daemon
ngeapppre
guest
invscout
ipsec
lp
lpd
metron
nobody
nuucp
oper
opermore
opstors
oracle
qualys
root
sshd
ssvtws
sys
tws
uucp
readonly
readonly
ngeaix01 -->

The above users can’t login via FTP remotely.

Tags: accessAIXcontrolctldaemonfileftpftpaccessftpusersIBMlimitlistoperatingrestrictsystemuser