LinuxQuestions.org
Page 2 of 2 1 2
Show 50 post(s) from this thread on one page

LinuxQuestions.org (/questions/)
-   Linux - Software (https://www.linuxquestions.org/questions/linux-software-2/)
-   -   VSFTPD Local Test (https://www.linuxquestions.org/questions/linux-software-2/vsftpd-local-test-374481/)

gsgleason 10-25-2005 08:17 AM
when the local user logs in, there are going to be in their home, /home/user, NOT /var/ftp. /var/ftp is for the user 'ftp, which is typically for anonymous logins. if you change the local users home to /var/ftp, then they will see /var/ftp/pub and other such subdirectories. or instead, if you add guest_enable = yes, then all local users will be treated as the guest login, default ftp, and thus go to /var/ftp when they log in, and will be chrooted there according to your conf.

Palula 10-26-2005 07:18 AM
Is it safe for me to put their home directory inside the /var/ftp? And another thing... Will this prevent them from accessing upperwards folders like /var for example?

I can change their home directory by changing the configs in passwd can I?

Thanks a lot!

gsgleason 10-26-2005 08:09 AM
the chroot will prevent them from accessing the parent folder of their home and above, yes.

btw, guest enable will treat them as anonymous ftp, but it will still use their home specified in the /etc/passwd.

There should be nothing wrong with having their home in /var/ftp. just make sure your file permissions are appropriate

Palula 10-26-2005 01:19 PM
Nice IŽll give it a try and either way if it works or not, IŽll let you know!

By the way, I have one question right now... If I want any of my users (the logged ones) to have right permissions to the FTP, the first thing I have to do is uncomment this line right?

# Uncomment this to enable any form of FTP write command.
#write_enable=YES

If I give write permissions to the folders for the users but still keep this line commented, even then they wonŽt have permission to right anything right?

Thanks in advance!!!
You are very helpful. IŽd like to thank you for your time and patience, gsgleason!!! :-)

Palula 10-26-2005 08:58 PM
Looks like everything is working fine. The jailing procedure for keeping the user inside the tree I want is using the chroot in conjunction with the "local_root=/var/ftp".

Because here is what I wanted. Let me show the organization of my tree inside the ftp.

Code:
/var/ftp
            /user_1
            /user_2
            /user_3
            /user_4
            /pub
            /other_general_access_folders_named_by_category
I wanted user_x to have only write permissions to his folder but to see other parent folders like /pub or /other_general_access_folders_named_by_category but I couldnŽt because chroot was jailing them inside their homes... When I specified the "local_root=/var/ftp", this statement jailed them inside the /var/ftp folder. Wich is exactly what I wanted.

I would like to know if this has security implicatios. Could you tell me more about this solution? Is there a way for me to improove security? Is so, what should I do?

Thanks!!!

Bye the way. This Ftp wonŽt accept anonymous logins and will only have 5 users.


All times are GMT -5. The time now is 06:23 AM.
Page 2 of 2 1 2
Show 50 post(s) from this thread on one page