LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
Reload this Page vsftp and root directories for download
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 10-11-2010, 01:18 PM   #1
twallstrom
LQ Newbie
 
Registered: Jun 2007
Distribution: Ubuntu
Posts: 15

Rep: Reputation: 0
Question vsftp and root directories for download

Hi;

I just setup a vsftpd server and I am baffled about one issue. I allow local login and have not chroot anybody and disallow anonymous login. When connected as a local user I can browse the servers file system including the root (/) directory. There I can download whatever file I want but not write to it.
All permissions are untouched since installing the server.
Looking at the file permissions they are in general rwxr-xr-x (root root)

Isn't this a security threat? If so it seems strange as these are the default permissions. I don't dare changing the permissions for the entire file system.

Hope somebody can clarify this issue for me.

Thanks!
 
Old 10-11-2010, 01:35 PM   #2
unassassinable
Member
 
Registered: Sep 2010
Posts: 46

Rep: Reputation: 7
In short, yes this can be a security threat. You mentioned you have not chrooted users. A chroot jail is most likely what you are looking for, however. I can suggest a few places to look as I have set this up before in the past using these same pages (I kept them bookmarked).

This creates a script to auto setup a chroot jail. It's very easy to understand and follow:
http://www.fuschlberger.net/programs...p-chroot-jail/

This helps explain how to setup a chrooted environment for rssh:
http://www.cyberciti.biz/tips/howto-...ail-setup.html

This user, Falko Timme is brilliant with detailing his walkthroughs. For some reason anytime I look for how to do something, I always seem to find his guides:
http://www.howtoforge.com/chrooted-s...l-debian-lenny

Rich
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Q: vsftp how to specify several different user login directories stormcloud Linux - Server 6 01-29-2010 03:36 AM
vsftp virtual user access to different directories chandj Linux - Networking 0 10-03-2006 12:54 PM
setting up VSFTP for individual users and directories filch Linux - Software 0 05-12-2004 11:35 PM
How do I setup vsftp and private directories? muxman Linux - Software 0 04-22-2004 06:19 AM
VSFTP user directories SBSAdam Linux - Networking 0 02-23-2004 08:42 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 03:52 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration