/bin/false无法登录vsftp

两种方法：

1.在/etc/shells中添加

/bin/false

这应该是一个标准的做法，因为man中明确说了ftp服务器可能会通过该文件来检测用户的shell。

SHELLS(5)                  Linux Programmer's Manual                 SHELLS(5)

 

NAME
       shells - pathnames of valid login shells

DESCRIPTION
       /etc/shells  is  a text file which contains the full pathnames of valid
       login shells.  This file is consulted by chsh(1) and  available  to  be
       queried by other programs.

       Be aware that there are programs which consult this file to find out if
       a user is a normal user.   E.g.:  ftp  daemons  traditionally  disallow
       access to users with shells not included in this file.

 

参考：creating a user account to allow ftp but not login

 

2.将/etc/pam.d/vsftpd中的

auth    required    pam_listfile.so item=user sense=deny file=/etc/ftpusers onerr=succeed

注释掉。（未测试）