Re: FTP accounts

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Hello,

Its fixed now, it seems to be it was a easy fix and I was kind of waisting your time, but thanks for the answers. I did google it and couldn't get a good answer.

@ Nico Kadel-Garcia

Currently this server is setup for back-up the our other 3 servers and people can get FTP for backing-up there site. I prefer FTP because people *know* FTP, when I give them something different to use there is a change they are scared and will not use it.

Best,

Huib

2011/3/14 Nico Kadel-Garcia <nkadel@xxxxxxxxx>
On Mon, Mar 14, 2011 at 1:27 PM, Huib Laurens <sterkebak@xxxxxxxxx> wrote:
> Hello,
>
> I have setup a centos server running 5.5 and I have a problem with the FTP
> settings.
>
> Currently I have two FTP accounts based on that server, they lead to:
>
> /home/bella
> /home/carmen
>
> Currently the FPT accounts starts in the home directory when they are logged
> in. But they are able to see all directories on the server. What can I do to
> make sure they cant come out of there home directory?
>
> --
> Regards,
> Huib "Abigor" Laurens

First things first. *DO NOT* use FTP. It's a blatantly insecure
protocl and passes passwords, and data, in the clear.

Second, if you *MUST* use FTP, do not use it with normal usernames and
passwords.

Third, if you *MUST* use FTP, use FTPS which SSL tunnels the connections.

Fourth, read the manual page on the "vsftpd" server. In particulare,
review this:

chroot_list_enable
       If activated, you may provide a list of local users who are
placed in a chroot() jail in their home directory upon login. The
meaning is slightly different if chroot_local_user is set to YES. In
this case, the list becomes a list of users which are NOT to be placed
in a chroot() jail. By default, the file containing this list is
/etc/vsftpd.chroot_list, but you may override this with the
chroot_list_file setting.
Default: NO



--
Regards,
Huib "Abigor" Laurens



Support Free Knowledge: http://wikimediafoundation.org/wiki/Donate

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux