Need to block root access in VSFTPD

Davpronk · 01-29-2009, 07:12 AM

Dear Linux users,

At the company where i work i'm setting up a ftp server using Ubuntu 8.01 in combination with VSFTPD.

In default when logging into the server as the main user, the home/username directory is displayed.

But when i go up a few folders i'm able to access the root of the hard drive, in our case an unsafe operation.

Is it possible to block access to any folders outside the home folder? I've checked the VSFTPD.conf configuration file but i've found nothing relevant.

Greets,

David

Hangdog42 · 01-29-2009, 07:33 AM

You need to look at the chroot_local_user setting in vsftpd.conf. That is supposed to keep users in their home directory. I'm not sure what is in a default vsftpd.conf file, but if you look at the man page, the options are pretty well explained.

acid_kewpie · 01-29-2009, 07:34 AM

http://www.cyberciti.biz/tips/vsftp-...directory.html

Davpronk · 02-05-2009, 02:45 AM

I've looked at the vsftpd.conf file and gave a "yes" to chroot_local_user. Then i created a file in wich i made a list of jailed users. Afterwards i did a reset and everything worked. The specified users couldn't reach the root folders anymore, only the home folder!

Thanks a million!