Quote:
Originally Posted by avlsubbarao
Hi,
We have enabled chroot and created file chroot_list. in chroot_list contains 50 users chroot is working after that chroot not working right now chroot_list contains 5000 users is their any limit is their?
|
Your question is hard to understand, but I think you're saying chroot works fine for 50 users, but not 5,000? If so...why? I suggest you read the man page of the vsftpd.conf file:
https://security.appspot.com/vsftpd/vsftpd_conf.html
...and pay particular attention to this:
Quote:
|
Originally Posted by VSFTPD Docs
chroot_list_fileThe option is the name of a file containing a list of local users which will be placed in a chroot() jail in their home directory. This option is only relevant if the option chroot_list_enable is enabled. If the option chroot_local_user is enabled, then the list file becomes a list of users to NOT place in a chroot() jail.
|
Would seem to be far easier, with 5,000 users, to put a list of folks *NOT* to chroot, versus keeping up with that many.
Quote:
Red Hat Enterprise Linux Server release 5.5 (Tikanga)
vsftpd: version 2.0.5
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd/chroot_list
|
And RHEL 5.5 is VERY old, and unsupported totally. You are MANY versions/patches/bugfixes behind, and the latest vsftpd is 3.0.3. Trying to implement 'security' when you are so far behind is pointless. Have you contacted RHEL support so you can
PAY FOR RHEL, and get upgraded and current?
