# =========                                         NOSview [301] 
# /ftpusers
# =========
#
# Format:
# --------------------------------------------------------------
# <username> <password> <root_dir> <permissions>
# --------------------------------------------------------------
#
# N.B.     EXACTLY ONE SPACE between fields.
#
# <password> is any string of characters, without spaces/tabs.
#   An asterisk in this field indicates that any password will
#   be accepted; by convention, users then give their callsign
#   as the password.
#
# <root_dir> is the highest directory level which the user is
#   permitted to access.  This must be expressed as an absolute
#   full pathname from the DOS root, but without drive letter.
#
#   N.B.  In the examples included in NOSview, the DOS root is
#         N: (because of the SUBST N: command in NOSENV.BAT).
#         This removes the risk of accidentally allowing users
#         to access directories outside the scope of NOS.
#
# <permissions>
#    ftp and telnet
#    --------------
#       1     read file
#       2     create new file
#       4     write/delete file
#
#    telnet only
#    -----------
#       8     AX.25 Gateway access
#      16     Telnet Gateway access
#      32     NET/ROM Access
#      64     Remote control
#     128     Disallow access
#
#    ppp only
#    --------
#     256     PPP connection
#     512     peer ID/password lookup
#
# Be very careful about giving access to sensitive directories.
# Although you can theoretically prevent unauthorised access
# through password protection, remember that anyone can monitor
# the channel and discover user passwords as they are being
# transmitted.
#
# If a user connects to the BBS using vanilla AX.25 or NET/ROM
# (not telnet), access is granted without having to provide a
# login username or password.  In this case the user name is
# assumed to be the AX.25 callsign (without SSID).
# IF THIS CALLSIGN MATCHES A USER NAME IN FTPUSERS, THE CALLER
# GAINS THE PERMISSIONS ASSIGNED TO THAT USER.  THUS ANY USER
# NAMES THAT LOOK LIKE CALLSIGNS SHOULD HAVE A SAFE SET OF
# PERMISSIONS.
#
# Therefore if you wish to prevent vanilla AX.25 users gaining
# directory access, user names should be 7 or 8 characters long.

# Miscellaneous accounts requiring no password:
anonymous * /public 3
anon * /public 3
bbs * /public 3
guest * /public 3

# Special accounts:
ns9bob bobby /public 7 
roberto robertspw / 127          # Login name > 6 characters
superuser supasswd /public 67    # Remote sysop permission

# Friendly visitors
ns9ken kenneth /public 7
ns9liz lizzie /public 7

# Unwanted visitors:
NS9NRD * /public/tmp 128         # Sorry, no access
