I am running VSFTPD 1.2.1 on a suse 9.1 box to allow our users to upload and download files outside the office. Inside the office, users access the ftp directory via samba and a mapped drive letter.
Rencently some of our users started using the Firefox browser. Once logged in, the browser lists the contents of the directory, and also displays a hyperlink "UP TO HIGHER LEVEL DIRECTORY"... so I click on it and I am able to browse and view files all the way up to the root level!!! I am also able to cd up to root from command line ftp. This seems to affect all users on the server.
What can I do to correct this? Is this a misconfiguration in VSFTPD, or simply directory permissions that need to be changed?
Any information would be greatly appreciated.
Tom
tbaumann@planningcenter.com
PS: here is my vsftpd.conf file
~~~~~~~~~~~~~~~~~~~~
write_enable=YES
dirmessage_enable=YES
local_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
pam_service_name=vsftpd
anonymous_enable=NO
local_umask=000