LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 03-22-2004, 04:32 PM   #1
michael247
LQ Newbie
 
Registered: Feb 2004
Distribution: RedHat 7.3
Posts: 2

Rep: Reputation: 0
vsftp-local users jailed, but.......


Hello all!

I found threads close to my answer but not quite on the mark.
I have Vsftpd-1.2.1 on Linux 7.3. I am setting up an FTP server so clients cn upload files. It is not an anonymous server, users cannot download: only upload. I have added the following to my vsftpd.conf file:

anonymous_enable=NO
ascii_upload_enable=YES
local_enable=YES
write_enable=YES
local_umask=077
anon_upload_enable=NO
anon_mkdir_write_enable=NO
dirmessage_enable=YES
download_enable=NO
xferlog_enable=YES
xferlog_std_format=YES
idle_session_timeout=600
data_connection_timeout=120
listen=NO
chroot_local_user=NO
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd.chroot_list
dirmessage_enable=YES
hide_ids=YES
#banner_file=YES

I have created local user accounts (test accounts) to make sure the users are in a 'jail' so they can only see the contents of thier own home directory and that works fine.
However, if the same user logs on to the system at the console, they can roam freely about the server. For security purposes, I need these users to have access ONLY to thier home directories. This server will be out on a DMZ.

Also I have the vsftpd.chroot_list file in place but I am not sure of the formatting for this file.

So, Is there a way to keep these users locked up regardless of how they logon without using Virtual users?
Any help would be appreciated!

Thanks
M
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
how to authenticate external users but bypass prompt on local LAN users? taiwf Linux - Security 5 07-13-2005 09:01 AM
vsftp.conf slackware -- local user login Pozican Linux - Software 3 05-08-2005 10:03 AM
Jailed(chrooted) users and ftp linux_terror Linux - Security 4 08-29-2004 06:56 PM
VSFTP - Local users can delete any file! Help! joelf Linux - Security 8 02-05-2004 12:10 AM
change password local user vsftp ?? cosmonate Linux - Security 8 02-19-2003 07:56 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 05:49 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration