HP-UX Remote Access Services Administrator's Guide
Figure 2-1 Directory Structure for Anonymous FTP Account
/
usr
passwd file
ftp
home
ftp
etc bin
usr
bin
etc pub
ls
passwd <user file> <user file>
group <user file> <user file>
<user file> <user file>
dist
.
.
.
.
.
.
.
.
.
Configuring the Authentication Service in FTP
FTP provides support for the Pluggable Authentication Module (PAM). PAM is an
Open Group standard (RFC 86.0) for user authentication, password modification,
session management, and validation of accounts.
The PAM configuration file, /etc/pam.conf, lists the services, and each service is
paired with a corresponding service module. When a service is requested, its associated
module is invoked. Each entry has the following format:
service_name module_type control_flag module_path options
You can specify an authentication mechanism for FTP in the PAM configuration file.
The default authentication mechanism is UNIX, and its entry in the /etc/pam.conf
file is as follows:
ftp auth required /usr/lib/security/libpam_unix.1
ftp account required /usr/lib/security/libpam_unix.1
Among other authentication methods, FTP supports the DCE and Kerberos
authentication methods. To change the default UNIX® authentication method to DCE,
edit the entry in the /etc/pam.conf file as follows:
Configuring the Authentication Service in FTP 41