Linux - Server This forum is for the discussion of Linux Software used in a server related context. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
04-11-2011, 04:13 PM
|
#1
|
Senior Member
Registered: May 2007
Location: Sydney
Distribution: RHEL, CentOS, Ubuntu, Debian, OS X
Posts: 1,305
Rep:
|
Restrict FTP commands
Hi All,
I have CentOS 5.5 boxes with vsftpd installed on them and users are authenticated through LDAP (Windows AD).
I need to restrict FTP commands like mget, mput, ls, e.t.c. for users.
The commands permissions may vary from user to user.
Is it somehow possible in VSFTPD or some other FTP package like pureftp or proftp.
|
|
|
04-12-2011, 02:16 AM
|
#2
|
LQ Guru
Registered: Aug 2004
Location: Sydney
Distribution: Rocky 9.2
Posts: 18,419
|
I'd bookmark this page http://vsftpd.beasts.org/vsftpd_conf.html and read the cmds_allowed, cmds_denied sections.
|
|
|
04-12-2011, 02:50 AM
|
#3
|
Senior Member
Registered: May 2007
Location: Sydney
Distribution: RHEL, CentOS, Ubuntu, Debian, OS X
Posts: 1,305
Original Poster
Rep:
|
Quote:
Originally Posted by chrism01
|
Very useful Chris. Many thanks.
I am going to try this and post my results here if in case I stuck somewhere, But does it have an option to say create a group of users and then restrict commands to them only and everybody else has access to all commands.
|
|
|
04-15-2011, 11:53 AM
|
#4
|
Senior Member
Registered: May 2007
Location: Sydney
Distribution: RHEL, CentOS, Ubuntu, Debian, OS X
Posts: 1,305
Original Poster
Rep:
|
Chris this really worked well for me, But I am looking for some options in which I can set manage access to FTP commands to specific users.
For E.g.
user john1 can access mget command
and at the same time
user john2 cannot access mget command
What "cmds_allowed" option does is that it allows/disables commands for all (not specific) users.
However, I believe "cmds_denied" option is not valid anymore.
Code:
[root@box1 ~]# service vsftpd restart
Shutting down vsftpd: [ OK ]
Starting vsftpd for vsftpd: 500 OOPS: unrecognised variable in config file: cmds_denied
[FAILED]
|
|
|
04-18-2011, 07:43 AM
|
#5
|
Senior Member
Registered: May 2007
Location: Sydney
Distribution: RHEL, CentOS, Ubuntu, Debian, OS X
Posts: 1,305
Original Poster
Rep:
|
Dear Chris/All,
Any ideas ?
|
|
|
04-18-2011, 10:00 PM
|
#6
|
LQ Guru
Registered: Aug 2004
Location: Sydney
Distribution: Rocky 9.2
Posts: 18,419
|
You'll have to read that entire page I'm afraid;. I don't use vsftpd, but I do know it has a LOT of options.
You may find a way in there to do that.
As re cmds_denied, that's new as of
in that link.
Good luck.
|
|
|
04-19-2011, 09:08 AM
|
#7
|
Senior Member
Registered: May 2007
Location: Sydney
Distribution: RHEL, CentOS, Ubuntu, Debian, OS X
Posts: 1,305
Original Poster
Rep:
|
Quote:
Originally Posted by chrism01
You'll have to read that entire page I'm afraid;. I don't use vsftpd, but I do know it has a LOT of options.
You may find a way in there to do that.
As re cmds_denied, that's new as of
in that link.
Good luck.
|
I have read the whole page, could not find anything.
Do you have any idea about any other FTP package which could serve my purpose (like proFTP, pureFTP e.t.c.) ?
|
|
|
All times are GMT -5. The time now is 05:58 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|