Re: vsftpd problems

[Stuart Sears <stuart@xxxxxxxxxxx>]

Dan, 
*please* bottom-post, it makes it so much easier to follow the thread...
I've tried to reorder this into a comprehensible conversation (apologies
if the order isn't perfect!)
<continuing at base...>

---
From: "Dan" <dsaults@xxxxxxxxxxx>
Reply-To: General Red Hat Linux discussion list <redhat-list@xxxxxxxxxx>
To: <redhat-list@xxxxxxxxxx>
Subject: vsftpd problems
Date: Wed, 30 Jun 2004 23:17:38 -0400

Redhat Linux 9 2.6.7

After installing vsftpd via redhat rpm, I notice that any user has full
access to the system and can modify and delete files any where. It seems
vsftpd is ignoring permissions.

How can I go about fixing this? I don't know what I am looking for in the
config file for vsftp.

Thanks
Daniel
-----

Message: 5
Date: Thu, 01 Jul 2004 03:21:41 +0000
From: "Ben Sewell" <ben_sewell_007@xxxxxxxxxxx>
Subject: RE: vsftpd problems
To: redhat-list@xxxxxxxxxx
Message-ID: <BAY14-F27a5OVifMWZF000373f2@xxxxxxxxxxx>
Content-Type: text/plain; format=flowed

Hi,
Could you explain abit more about what you want setup- eg, do you wish 
anonymous access to be granted to download files, or do you wish for only 
users to login. Also, if the case if for several users to logon, which 
locations do you want them to access in the machine?

Regards,
Ben

-------

Ben,

I don't want anonymous access. I want each user to only be able to access
what they have permission (rwx)to access i.e /home/username or any publicly

defined directory. As it stands if a user logs in as lets say bob they can
go into /home/marry and delete the contents out of that directory, which
they shouldn't be able to do.

Dan


-----Original Message-----
From: Jean-Christophe Valiere [mailto:jyce@xxxxxxx] 
Sent: Friday, July 02, 2004 8:16 AM
To: General Red Hat Linux discussion list; Dan
Cc: redhat-list@xxxxxxxxxx
Subject: RE: vsftpd problems

$> man vsftpd
[...]
OPTIONS
    An optional [configuration file] may be given on the command line.  The
    default configuration file is /etc/vsftpd.conf.
[...]
$> less /etc/vsftpd.conf
[...]
# Allow anonymous FTP? (Beware - allowed by default if you comment this
out).
anonymous_enable=YES

By default all configuration should be in /etc and /etc/vsftpd


Dan wrote:

> Already have that turned off, and I went through the man and online help
> file, along with the config file, but I don't see where I need to fix the
> problem with a user a loging in and being able to delete files they don't
> own.
>
>
>
> Selon Dan <dsaults@xxxxxxxxxxx>:
>  
>
> > Ben
> >
> >    
> >
> > > From: "Dan" <dsaults@xxxxxxxxxxx>
> > > Reply-To: General Red Hat Linux discussion list <redhat-list@xxxxxxxxxx>
> > > To: <redhat-list@xxxxxxxxxx>
> > > Subject: vsftpd problems
> > > Date: Wed, 30 Jun 2004 23:17:38 -0400
> > >
> > > Redhat Linux 9 2.6.7
> > >
> > > After installing vsftpd via redhat rpm, I notice that any user has full
> > > access to the system and can modify and delete files any where. It seems
> > > vsftpd is ignoring permissions.
> > >
> > > How can I go about fixing this? I don't know what I am looking for in the
> > > config file for vsftp.
> > >
> > > Thanks
> > > Daniel
> > >
> > >      
so what access do you want users to have?
You can chroot users into their home directories, you know - this will 
prevent them from doing any damage to your system at all.

I can't recreate your symptoms though - using ncftp and the standard ftp 
client, logging in as a local user I end up in my homedir and cannot 
change into anyone elses.
can you post your vsftpd.conf file? I'd like to know what the difference 
is...

can you login over ftp as a normal user and do an ls -l on /home?
what permissions does it show?
are your home directories globally executable/writeable (yes I know this 
sounds like a daft question)?

Stuart


--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list