Unjailing certain users with Proftpd

Kalevra · 03-27-2008, 12:27 PM

I have a server which hosts two domains (domain.com and virtualhost.com). I currently have all of my FTP users jailed to their /home directories and would like it if I could set up a user account for the web administrator to upload the web content which is stored in /home/vhosts/domain.com and /home/vhosts/virtualhost.com. This would require the web admin to navigate outside of his jailed /home directory, preferably have the web admin dropped directly into the /home/vhosts directory.

Thanks!

bathory · 03-28-2008, 04:26 AM

You can use the following:

Code:

DefaultRoot ~ !web-admins
DefaultChdir /home/vhosts web-admins

web-admins is a group which member is your web administrator

Kalevra · 03-28-2008, 12:05 PM

bathory, thanks for the input, however, it didn't quite work for me. I did end up using this though:

DefaultRoot /home/vhosts www

Allowing the group www to default into /home/vhosts. Thanks for the starting point though!

I do have one more question that maybe someone can help me with here regarding this set up. I would like for any file uploaded to the /home/vhosts directory to automatically chown wwwrun. Is there a way to do this?

Thanks!

bathory · 03-29-2008, 02:55 AM

That's the generic idea. You define a defaultroot for everyone except a group and another defaultroot or defaultchdir for that specific group.
As for your question you can try the "UserOwner" directive. I haven't use it but I think that your server must run as root in order to be able to chown the files uploaded.

Regards