Hello

We're using Ubuntu and vsftpd.

This machine serves as an Apache web server and an FTP server.

We would like to create an FTP folder where one user account has read&write permissions but not delete (Account "A"), and another account which has full control permissions for the folder (Account "B").

Account A is supposed to send files to this folder on a daily basis. We want this folder to be like a drop box for this user.

We want a large number of people to use this account so we won't have to set up numerous user accounts.

If we set "Write" only permission for this user, he will not be able to view what he has uploaded. We want him to be able to view the folder's contents.

If we set his rights to "Read&Write" he will be able to delete all the files in the folder, including other people's.

How can we deny delete from this user?

Thanks very much,
Gant.

Hmm, well this may not help you, but the problem seems worse than you suggest. Even if you are able to deny "delete" support, the read+write (or even only write for that matter) will be able to overwrite existing files. This user could even overwrite the existing files with an empty version, thus, having the same effect as removing the file.

If it is imperative that the uploaded data remains safe from renegade users, you really need to make a separate account for each user, and only allow each user to write to their own location.

I don't, off the top of my head, see any other way around the problem.

Thank you.

I really didn't believe UNIX will not offer such a permission (i.e. "Delete"), even Windows has this permission.

Anyway, thanks for your reply.