RE: vsftpd problems

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Dan,
This is what I do to jail ftp user accounts.

Creating a chroot (jail).
Allow for users to only move around in their ftp home directory.
1. vi /etc/vsftpd.conf
   chroot_list_enable=YES
   NOTE: A man of vsftpd.conf describes the parameter as:
   If  activated,  you  may  provide  a list of local users who are
   placed in a chroot() jail in their home  directory  upon  login.
2. Re-start the xinetd process.
   service xinetd restart
3. Append every new user to a file called /etc/vsftpd.chroot_list.
4. Make sure that the /data/ftp/<login> has permissions set to 700.
   NOTE: I separate my ftp only user accounts into a separate file
         system, named /data/ftp.  All regular user accounts are
         in /home.

When a users log into their /data/ftp/<login> and do a "pwd", they
only see "/".


I hope this helps,
Robert Richardson
Activision Studios
          
-----Original Message-----
From: Dan [mailto:dsaults@xxxxxxxxxxx] 
Sent: Thursday, July 01, 2004 7:30 PM
To: redhat-list@xxxxxxxxxx
Subject: RE: vsftpd problems

Ben,

I don't want anonymous access. I want each user to only be able to access
what they have permission (rwx)to access i.e /home/username or any publicly
defined directory. As it stands if a user logs in as lets say bob they can
go into /home/marry and delete the contents out of that directory, which
they shouldn't be able to do.

Dan


-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

[Index of Archives]     [CentOS]     [Kernel Development]     [PAM]     [Fedora Users]     [Red Hat Development]     [Big List of Linux Books]     [Linux Admin]     [Gimp]     [Asterisk PBX]     [Yosemite News]     [Red Hat Crash Utility]

  Powered by Linux