[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: How to restrict users from serfing around my server via FTP.



On Thu, 13 Jan 2000, Mike wrote:

> BUT !, the configuration can work in GOOD way only on little amount of
> users. this is becouse you need to copy the etc,lib and bin directories from
> the anonftp root to each and evry user.
> i tried to use symbolic links but as i can recall it didn't work.

ofcourse, having read the docs, or making a search on deja.com, you would
have found that plenty of people before you tried to do the same thing,
and got many answers on many news groups (and mailing lists).

> My question was how to do the same thing , User will NOT be able to view
> other directories other then their own home directory and will not be able
> to "travel" to other dirs.

if your question was that, then that was what you should have written
initially.

> In other words, the users directory will be his root directory, without the
> use of anonftp and the etc,bin and lib dirs that need to be copied to it.

wuftpd does not support chrooted accounts without the appropriate
directory structure - this is how it seems to be. however, no one tells
you not to automate the process of creating such accounts...

now, just to be sure that it is indeed only your slight lazyness that
disabled you from finding this out, i went to deja.com , went to power
search, typed in 'ftpd chroot user setup', then clicked on the 'search'
button. and then - what a surprise. i saw a large set of letters
pertaining to this exact question. one of those contained full
documentation (it took about 10 minutes until i got to that letter, after
i dismissed several that gave some partial answers out of which i could
have formed the complete story, if i wanted to). bellow is the URL to the
specific answer i saw - i'm not sure if this link will work for you, but
it might:

----------------------------------------

http://x32.deja.com/[ST_rn=ps]/getdoc.xp?AN=443881299.1&CONTEXT=947788914.1802895379&hitnum=23

----------------------------------------

if you copy&paste it, make sure not to leave in any spaces that might
result due to my mail client (or yours) breaking this long line into
several lines.

so, what are my conclusions:

1. if one is not lazy, and thinks he knows how to read and digest texts,
   one makes a search in deja.com for answers to such questions.

2. one also never assumes that everything they try to do is new and
   unique, but rather that many people have done so before, and thus
   assume there is a good chance of finding an already good reply in
   various archives of news groups, mailing lists and web sites.

3. one also understands that going to a mailing list with questinos of
   this sort 1-2 times per week will eventually result anger on the part
   of other people on that mailing list.

4. one will eventually realize that for everyone's sake (including one's
   sake), it is much more polite if one learns how to use such search
   techniques to look for people who already spent time on answering those
   questions, then asking people to re-create answers that could be found
   by one in such a (rather short) search.

5. finally, if one receives a polite question via email, regarding one's
   many posts on the mailing lists, it is only courtesy that one will
   answer that letter (this is a hint.......).


guy

"For world domination - press 1,
 or dial 0, and please hold, for the creator." -- nob o. dy



=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il