LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 02-05-2002, 10:31 PM   #1
Nephlite
LQ Newbie
 
Registered: Jan 2002
Posts: 12

Rep: Reputation: 0
Proftpd Permissions


Hi I was wondering how I can restrict a user from leaving his/her home dir? What do I do so they cant start wandering around my files?

THanx Nephlite
 
Old 02-05-2002, 10:34 PM   #2
contiga
Member
 
Registered: Feb 2002
Location: United Sates, Florida
Distribution: Contiga Linux 2004 & SuSE Linux 9 Professional
Posts: 41

Rep: Reputation: 15
I am surprised you even got the thing working. It has never worked for me. Ahh the day i dont have to pay $300 for tech support per incident. The Easiest way to do it is to change the permissions of the Folders. Make sure "Others" are set blank accross the screen and make sure you move your Main FTP folder at least 3 levels from the Root or "/" of the system.


 
Old 02-06-2002, 08:29 AM   #3
Mik
Senior Member
 
Registered: Dec 2001
Location: The Netherlands
Distribution: Ubuntu
Posts: 1,316

Rep: Reputation: 47
An even easier way is to add the following line to proftpd.conf

DefaultRoot ~
 
Old 02-06-2002, 02:21 PM   #4
contiga
Member
 
Registered: Feb 2002
Location: United Sates, Florida
Distribution: Contiga Linux 2004 & SuSE Linux 9 Professional
Posts: 41

Rep: Reputation: 15
Red face

I have done that before and i still got past the security of default root. Chmod is a ftp administrators worst fear.

 
Old 02-07-2002, 09:44 AM   #5
Mik
Senior Member
 
Registered: Dec 2001
Location: The Netherlands
Distribution: Ubuntu
Posts: 1,316

Rep: Reputation: 47
How did you get past that? I've had that line in my proftpd for a long time. And I've tried getting to a lower level then the users home directory but it just wasn't possible. If you have a way in which you can get around the DefaultRoot besides the fact that you might have configured it wrong, then you might want to send it as a security alert to the maintainers of proftpd. My guess is that you configured something wrong because it really does work.
 
Old 02-07-2002, 04:46 PM   #6
contiga
Member
 
Registered: Feb 2002
Location: United Sates, Florida
Distribution: Contiga Linux 2004 & SuSE Linux 9 Professional
Posts: 41

Rep: Reputation: 15
Possibly Mik. But out of cusiosity how do you maintain users?

mine delete. i think pam-ela hates me.
 
Old 02-08-2002, 10:26 AM   #7
Mik
Senior Member
 
Registered: Dec 2001
Location: The Netherlands
Distribution: Ubuntu
Posts: 1,316

Rep: Reputation: 47
Just create normal users using the 'useradd' command. To remove a user you can use 'userdel'. To set the users password just run 'passwd username'. You will have to do all that as root.
Each user you create will by default get a directory /home/username as their home directory. Setting the line 'DefaultRoot ~' in your proftpd.conf file will make sure they can only access files in that directory and won't be able to see anything else on the filesystem. If you want one of the users to be able to see everything then you could change it to something like:

DefaultRoot ~ !specialuser

I'm sure a lot of these are all answered in the proftpd faq and the documentation on their site.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Proftpd user permissions powadha Linux - Software 1 09-21-2005 02:18 PM
proftpd anon permissions DuPHaLaC Linux - Software 1 10-16-2004 12:44 PM
proftpd permissions msec strider17 Linux - Networking 1 02-09-2004 06:07 AM
proftpd and file permissions Moses420ca Linux - Security 1 12-08-2003 06:17 AM
proftpd permissions niehls Linux - Software 2 05-02-2003 03:33 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 08:20 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration