Hello,
I recently setup a slackware 10.1 box to be a ftp server among other things.
I have added two accounts "ftp-ro" and "ftp-rw". My intention is to set these up for ftp access, the rw account having read/write permissions and the ro having read only.
Both of those accounts have /usr/bin/false as the shell, so you cannot login as them to gain access to the shell.
Both accounts are a member of the "users" groups.
The permissions on /ftp are drwxr--r-- ftp-rw users, this sets full permissions to the user "ftp-rw" and read only to the group "users" and to other.
My /etc/vsftpd.conf file chroots each account (ftp-rw and ftp-ro), I edited /etc/passwd and set the home directory for each account to /ftp.
This allowed each account to be jailed into /ftp.
With my permissions, I can login as "ftp-rw" and read/write files.
I looked at the permissions of the file that I uploaded, it has the same permissions of /ftp, so that is good.
When I try to login as "ftp-ro" it says an error, "cannot change directory into /ftp".
To the extent of my knowledge, my file permissions and vsftpd.conf is correct.
I'm running vsFTPd 2.0.1 on Slackware 10.1 with Kernel 2.4.29 (all stock).
I'm learning a lot with UNIX file permissions but it seems like I don't have a full grasp on it.
What permissions are required for a user to cd into the directory, read only, correct?
If my settings are right, then any idea what might cause the issue?
Thanks in advance,
-Jason
PS: Here's the key settings in my /etc/vsftpd.conf
Code:
local_enable=YES
write_enable=YES
userlist_enable=YES
#this file contains "ftp-ro" and "ftp-rw" as a list of valid ftp users
userlist_file=/etc/vsftp.user_list
userlist_deny=NO
chroot_list_enable=YES
# this file is empty, since it's a list of users NOT to chroot
chroot_list_file=/etc/vsftp.chroot_list