RE: [PLUG] Possible FTP solution, and new FTP question

Bradley Molnar on Fri, 3 Aug 2001 07:20:04 -0400

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

RE: [PLUG] Possible FTP solution, and new FTP question

From: "Bradley Molnar" <brad@litech.org>

To: <plug@lists.phillylinux.org>

Subject: RE: [PLUG] Possible FTP solution, and new FTP question

Date: Fri, 3 Aug 2001 07:09:01 -0400

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

What about if you just changed the permissions on the different directories and placed a soft symlink (ln -s source target) in each home directory. FTP shouldn't give a user any extra privileges. Change the privileges on dir1, dir2, etc to match what you want the users to have. You may need to consider ACL's (2.2.18 and up and 2.4 only). See http://acl.bestbits.at/ for info on ACL's. -brad -- Have I got a long way to run -- Collective Soul > New FTP question: > > I have a NetWare share mounted (successfully) in /home/MAIN-SYS (mounted > as user "root", group "mainsys"). Inside of that share are several > directories. I want no anonymous access, and I want real users (default > group "mainsys") to be able to access (read and write) only 2 of those > subdirectories. For example, there might be "dir1" "dir2" and "dir3" in > /home/MAIN-SYS, but I only want the users to access "dir1" and "dir2". > I want the root of the FTP system to only contain these two directories > (or in /pub or whatever). I don't want anyone to be able to get to > "dir3" at all. > > So right now, I've tried a few things. First, I set up WUFTPD (but also > tried similar things with ProFTPD) and made a user's home directory with > symlinks to /home/MAIN-SYS/dir1, etc. This works, in that the person > easily gets to dir1 and dir2. But since there is no chroot(), the > person can easily navigate up the directory tree to /home/MAIN-SYS/dir3 > (for which the person has full permissions). > > Then I tried chrooting the user in that symlink directory. Of course, > that didn't work, because the symlinks weren't resolved. So you get > nothing. And I'm pretty sure that a hard link won't work because its a > different filesystem. > > Any ideas? What I really need is some kind of FTP daemon with an Alias > command or something... > > Mike > > > ______________________________________________________________________ > Philadelphia Linux Users Group - http://www.phillylinux.org > Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce > General Discussion - http://lists.phillylinux.org/mail/listinfo/plug ______________________________________________________________________ Philadelphia Linux Users Group - http://www.phillylinux.org Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce General Discussion - http://lists.phillylinux.org/mail/listinfo/plug

References:

[PLUG] Possible FTP solution, and new FTP question
From: "Michael F. Robbins" <mike@gamerack.com>

Prev by Date: [PLUG] Nautilus question

Next by Date: Re: [PLUG] Nautilus question

Previous by thread: [PLUG] Possible FTP solution, and new FTP question

Next by thread: RE: [PLUG] Possible FTP solution, and new FTP question

Index(es):

Date

Thread