Re: PAM and FTP in Solaris 7

From: Casper Dik (Casper.Dik@Sun.COM)
Date: 09/20/02


To: cjclark@alum.mit.edu
Date: Fri, 20 Sep 2002 18:18:15 +0200
From: Casper Dik <Casper.Dik@Sun.COM>


>Short term, getting the debug output. The real end goal was to see if
>I could get in.ftpd to use a password for the ftp user rather than
>accept anything. I wanted the chroot feature _and_ a password. (AFAIK,
>there is no way to chroot arbitrary users with in.ftpd.) I thought that
>since the documentation claimed in.ftpd use PAM, there may be a way to
>do this through PAM. I have since realized in.ftpd bypasses PAM
>completely when "authenticating" the ftp user. I will need to go to
>another FTP server.

The "anonymous" user is not authenticated using PAM; that should not
come as a great surprise.

Other ftp daemons won't do that either but some allow imposing
restrictions on the password (such as: must be email@valid.domain).

Casper