<div>
Ok... nevermind... I figured it out! In the sshd_config file I just needed the line:<br />
<br />
DenyGroups &lt;group&gt;<br />
<br />
Now that I feel stupid for asking the question, and then answering it myself; I will be nice and award the first person to leave a response the 50 points. 
</div>


Ok... nevermind... I figured it out! In the sshd_config file I just needed the line:

DenyGroups <group>

Now that I feel stupid for asking the question, and then answering it myself; I will be nice and award the first person to leave a response the 50 points.

<div>
<div class="content wysiwyg-content">
I am running Mandrake 9 with SSH, FTP and Apache. &nbsp;I want to allow all of my users to access the server via FTP, but I only want administrators to access it via SSH. &nbsp;<br />
<br />
I tried to edit the /etc/security/access.conf file, but it didn't work for me, maybe I used incorrect syntax. <br />
-:&lt;group&gt;:ALL<br />
<br />
I also tried changing the shell in /etc/passwd from /bin/bash to /sbin/nologin, but that eliminated FTP access too. &nbsp;<br />
<br />
Any suggestions would be helpful! Thanks<br />
<br />
Matthew Brainard<br />
brainarm_mweb@yahoo.com
</div>
</div>


I am running Mandrake 9 with SSH, FTP and Apache.  I want to allow all of my users to access the server via FTP, but I only want administrators to access it via SSH.  

I tried to edit the /etc/security/access.conf file, but it didn't work for me, maybe I used incorrect syntax. 
-:<group>:ALL

I also tried changing the shell in /etc/passwd from /bin/bash to /sbin/nologin, but that eliminated FTP access too.  

Any suggestions would be helpful! Thanks

Matthew Brainard
brainarm_mweb@yahoo.com

Selectively disable SSH and FTP

The Linux operating system, in all its flavors, has its own share of security flaws that allow intrusions, but there are various mechanisms by which these flaws can be removed, generally divided into two parts: authentication and access control. Authentication is responsible for ensuring that a user requesting access to the system is really the user with the account, while access control is responsible for controlling which resources each account has access to and what kind of access is permitted.