vsftpd configuration for group

comeatmanish · 01-24-2012, 06:09 AM

Hi,
I want to configure vsftpd server. Requirement is little different.
5 users should have read & write access.
5 users should have read only access.

Below is configuration of my vsftpd.conf file.

Quote:

listen=YES
anonymous_enable=YES
no_anon_password=NO
anon_root=/opt/ftp/pub
local_enable=YES
write_enable=YES
chroot_local_user=YES
pam_service_name=vsftpd
local_umask=002
xferlog_enable=YES
xferlog_file=/var/log/vsftpd.log

I have also added group with name ftp-users and added user1 to user5 to it.
#groupadd ftp-users
#useradd -g ftp-users -d /opt/ftp/pub user1
#useradd -g ftp-users -d /opt/ftp/pub user2
#useradd -g ftp-users -d /opt/ftp/pub user3

Using user1 to user5 I am able to make read write operations on /opt/ftp/pub directory.
but using anonymous user i am not able to download any thing nor able to change the directory created in pub folder.
Is it becoz I have assigned same directory for all ftp users?

Please guide me to resolve this.

Regards,
Manish

deep27ak · 01-24-2012, 06:44 AM

by default anonymous user is not allowed to login to any directory which has write permission so if you want anonymous to download or create any doc then

create a upload directory inside pub and give 777 permission on it so that anonymous can get full permission for it

comeatmanish · 02-01-2012, 12:05 AM

I dont want to provide access to anonymous user still it is given in above mentioned file as I was not able to provide read only access to users (user 5 to 10) on the same directory.
Is there any way by which we can create 2 groups and provide different level of access to them.
group 1 - read, write & execute to /opt/ftp/pub directory.
group 2 - read, execute to /opt/ftp/pub directory.

deep27ak · 02-01-2012, 12:10 AM

use setfacl

Code:

#setfacl -m g:group1:rwx /opt/ftp/pub
#setfacl -m g:group2:rx /opt/ftp/pub