LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices



Reply
 
Search this Thread
Old 11-23-2012, 11:03 AM   #1
nelsone
LQ Newbie
 
Registered: Jan 2011
Posts: 11

Rep: Reputation: 0
can't delete folder in vsftp


I was able to delete the new folder or file, but some can not

User rights as follows

download_enable=yes
anon_world_readable_only=NO
anon_upload_enable=YES
anon_mkdir_write_enable=YES
anon_other_write_enable=YES
local_root=/var/backup/www.showreel.hk/upload

vsftpd.conf configuration is as follows

anonymous_enable=NO
local_enable=YES
write_enable=YES
dirmessage_enable=YES
xferlog_enable=YES
xferlog_std_format=YES
ascii_upload_enable=YES
ascii_download_enable=YES
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd/chroot_list
ls_recurse_enable=YES
listen=YES
pam_service_name=vsftpd.vu
userlist_enable=YES
userlist_deny=YES
tcp_wrappers=YES
chroot_local_user=YES
use_localtime=YES
guest_enable=YES
guest_username=root
anon_umask=001
anon_world_readable_only=NO
user_config_dir=/etc/vsftpd/guest_config
local_root=/var/backup/ftpsite
pasv_enable=YES
reverse_lookup_enable=NO



Finally, all the file permissions are 777,selinux is also disabled,I really do not understand in the end is that where there is wrong, hoping to get everyone's help in this. Thank you!
Attached Images
File Type: jpg error.JPG (18.9 KB, 14 views)
 
Old 11-23-2012, 12:31 PM   #2
custangro
Senior Member
 
Registered: Nov 2006
Location: California
Distribution: Fedora , CentOS , Solaris 10, RHEL
Posts: 1,935
Blog Entries: 1

Rep: Reputation: 188Reputation: 188
Two Questions

1) What are the perms on the Parent directory set to?

2) Who are the owners of the Parent directory?

--C
 
Old 11-23-2012, 08:02 PM   #3
nelsone
LQ Newbie
 
Registered: Jan 2011
Posts: 11

Original Poster
Rep: Reputation: 0
Quote:
Originally Posted by custangro View Post
Two Questions

1) What are the perms on the Parent directory set to?

2) Who are the owners of the Parent directory?

--C
The owners of the parent directory root privileges is 777
 
Old 11-24-2012, 01:08 PM   #4
Hangdog42
LQ Veteran
 
Registered: Feb 2003
Location: Maryland
Distribution: Slackware
Posts: 7,791
Blog Entries: 1

Rep: Reputation: 414Reputation: 414Reputation: 414Reputation: 414Reputation: 414
Quote:
Originally Posted by nelsone
guest_username=root
Please tell me I'm not seeing that in your vsftpd.conf.

Quote:
Originally Posted by nelsone
Finally, all the file permissions are 777,selinux is also disabled,
Please, please, PLEASE tell me this computer is not accessible in any way, shape or form from the internet.
 
Old 11-27-2012, 04:05 AM   #5
nelsone
LQ Newbie
 
Registered: Jan 2011
Posts: 11

Original Poster
Rep: Reputation: 0
Quote:
Originally Posted by Hangdog42 View Post
Please tell me I'm not seeing that in your vsftpd.conf.



Please, please, PLEASE tell me this computer is not accessible in any way, shape or form from the internet.
vsftpd.conf configuration above, the server can access anywhere, this is a very strange question, I tested for a long time still did not find a solution.
 
Old 11-27-2012, 05:32 AM   #6
deep27ak
Senior Member
 
Registered: Aug 2011
Location: Bangalore, India
Distribution: rhel 5x,6.0,6.2, centOS 5x,6.0,6.2
Posts: 1,190
Blog Entries: 4

Rep: Reputation: 220Reputation: 220Reputation: 220
Quote:
Originally Posted by nelsone View Post
vsftpd.conf configuration above, the server can access anywhere, this is a very strange question, I tested for a long time still did not find a solution.
Had you restarted your server after you disabled your selinux?

what is the location of this directory you are trying to delete?
 
Old 12-01-2012, 10:56 AM   #7
Hangdog42
LQ Veteran
 
Registered: Feb 2003
Location: Maryland
Distribution: Slackware
Posts: 7,791
Blog Entries: 1

Rep: Reputation: 414Reputation: 414Reputation: 414Reputation: 414Reputation: 414
Quote:
Originally Posted by nelsone View Post
vsftpd.conf configuration above, the server can access anywhere, this is a very strange question, I tested for a long time still did not find a solution.
No, its not a strange question. With those configuration options you are running a very high risk of giving random users root access to your machine. Not good.

Quote:
guest_username=root
This means that anyone who logs into your sftp server is made root. Since ftp transmits usernames and passwords as clear text, anyone sniffing your server will have a pretty easy time taking it over.

Quote:
Finally, all the file permissions are 777,selinux is also disabled,
If making any user root isn't bad enough, you've now removed absolutely any barrier to someone installing and running whatever they jolly well please on your machine.

In short, if your machine hasn't been thoroughly compromised already, it is only a matter of time before it is. And you've laid out the welcome mat for the bad guys.

Maybe you should lay out the overall goal you're trying to accomplish and we can suggest a way that doesn't involve giving root access to the planet.
 
  


Reply

Tags
vsftpd


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
A Command to Delete the Oldest Sub-folder in a Specific Folder imayneed Linux - Newbie 13 08-05-2012 08:53 PM
VSFTP can't open softlink folder lb1111830 Linux - Software 1 10-23-2011 09:37 AM
VSFTP - Local users can delete any file! Help! joelf Linux - Security 8 02-05-2004 01:10 AM
VSFTP allowing upload/download but not DELETE joelf Red Hat 2 09-25-2003 01:05 PM


All times are GMT -5. The time now is 07:06 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration