Proftpd user permissions

powadha · 09-20-2005, 05:17 PM

I've got a server running and want a user to have access to the apache server. I created 2 new users on the server that proftpd 'jails' to /home/joomla and /home/joomla2. Now I want joomla to be able to write to /var/www/virtual/ so I can upload files for several websites using ftp. Joomla2 should only be able to write to /var/www/virtual/website1 and all it's subdirs (that's an account for a friend who helps on one website).

I've read numerous post about doing this but I'm not getting it done. Could someone please explain what to do? I'm stuck on basic things as: do I need to set-up a new group on the server, what to put in the proftp.config?

I've included my .config here. I've tried to disable access for anonymous users since for now the only users (with password) that should be able to connectare user joomla and joomla2.

Code:

# This is a basic ProFTPD configuration file (rename it to 
# 'proftpd.conf' for actual use.  It establishes a single server
# and a single anonymous login.  It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.

ServerName "ClarkConnect Office Edition"
ServerType	standalone
DefaultServer			on

# Port 21 is the standard FTP port.
Port				21

# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask				022

# To prevent DoS attacks, set the maximum number of child processes
# to 30.  If you need to allow more than 30 concurrent connections
# at once, simply increase this value.  Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd).
MaxInstances			30

# Set the user and group under which the server will run.
User				nobody
Group				nobody

# To cause every FTP user to be "jailed" (chrooted) into their home
# directory, uncomment this line.
DefaultRoot ~

# Normally, we want files to be overwriteable.
<Directory />
  AllowOverwrite		on
</Directory>

# A basic anonymous configuration, no upload directories.  If you do not
# want anonymous users, simply delete this entire <Anonymous> section.
#<Anonymous ~ftp>
#  User				ftp
#  Group				ftp

  # We want clients to be able to login with "anonymous" as well as "ftp"
#  UserAlias			anonymous ftp

#  # Limit the maximum number of anonymous logins
#  MaxClients			10

  # We want 'welcome.msg' displayed at login, and '.message' displayed
  # in each newly chdired directory.
#  DisplayLogin			welcome.msg
#  DisplayFirstChdir		.message

  # Limit WRITE everywhere in the anonymous chroot
#  <Limit WRITE>
#    DenyAll
#  </Limit>
#</Anonymous>

I hope someone can help me out getting this done.

Regards

powadha · 09-21-2005, 01:18 PM

Hmm, no one who can explain this or give me a slap and point me to a good howto? google is still cooling down from searching so I'm kinda lost here....

Oh, I did try mounting the virtual folder at /home/joomla that works but still leaves it unwritable. Guess this is a chmod thing but I'm not sure if I need joomla in a separate group just can chmod the dir.....Feels like a unsave situation to do that....

Regards