Firstoff,
Welcome to the forums!!
I really don't feel like replying to this, I was just feeling like lurking at the moment -- I'm worn out and sweaty from walking half a mile for excersize, but nobody else has replied so here it goes, man.
I'll be brief but try and be simple, if you have questions about my brief post ask a question and i'll get back to ya, k?
Here's an example of my proftpd.conf (which for me is located in /etc/proftpd.conf -- use locate if you cant find)
Under the entry SystemLog I have an entry set for the
DefaultRoot parameter.
The line looks like this.
# Use this to excude users from the chroot
DefaultRoot ~ !adm
This seems to have set it up so every user (and i mean EVERY ftp user, no exceptions) is limited to their home directory.
E.g. Jon_K's home directory is /home/jon_k -- jon_k in ftp cannot get into the previous directory (/home) or even lower (/) -- it ONLY has access to its home directory and beyond.
In fact, if I'm in /home/jon_k and try to go up a directory -- it just takes me back to /home/jon_k --- it's because it's tricked into thinking that /home/jon_k literally -IS- root or /
This will prevent people from browsing into other user accounts or browsing the systems root -- / -- directory.
The good thing about this is that it does this to every FTP user so you don't have to fck around while setting up users.
Badside? What if you want an FTP user to have access to the "real root" or /? The ftp server won't allow it because it's tricked into thinking the home directory of the user is the real root.
Everything has it's advantages and disadvantages.
Well, this wasn't breif was it? It also isn't worded to well but give me a break it's 85 degrees in this room and I'm out of breath, heh. I'm also going to lay down and try to go get some sleep, I'm worn out today. (Also got fiberglass on my mouse arm today so resting my arm on the desk isn't comfortable) So any reply from me will be tomarrow.
Good luck, hope this works out for you.
sincere regards,
jon ;-)
P.S. you made a good choice to go with proftpd -- this is why I went for it -- the ability to sandbox people into their own little sheltered "world" per se and also because of the ease of use setting up anonymous ftp
P.S.S. How about you give me some free fast hosting? haha, never helps to try ;-) if you'd be so generous as to, email me pcmanjon@swbell.net
Post back to tell me/us how it works out!!