/bin/false无法登录vsftp
两种方法:
1.在/etc/shells中添加
/bin/false
这应该是一个标准的做法,因为man中明确说了ftp服务器可能会通过该文件来检测用户的shell。
SHELLS(5) Linux Programmer's Manual SHELLS(5)
NAME
shells - pathnames of valid login shells
DESCRIPTION
/etc/shells is a text file which contains the full pathnames of valid
login shells. This file is consulted by chsh(1) and available to be
queried by other programs.
Be aware that there are programs which consult this file to find out if
a user is a normal user. E.g.: ftp daemons traditionally disallow
access to users with shells not included in this file.
参考:creating a user account to allow ftp but not login
2.将/etc/pam.d/vsftpd中的
auth required pam_listfile.so item=user sense=deny file=/etc/ftpusers onerr=succeed
注释掉。(未测试)