Ok, here's the scoop.... I went to that website and sort of custom
tailored the instruction to do what I want to do. Here are my
objectives! Stuff I have done on my own I have marked with done.
a.) restrict anonftp access [done!]
b.) create a download user that can only download from all directories
in the ftp server - this user should not be able to telnet, ssh, or
login locally to run any commands on the system
c.) create a upload user that has the same permissions as the download
user, but can also upload to the upload directory - this user should not
be able to telnet, ssh, or login locally to run any commands on the
system.
I have created the above users and here is their information:
[root@jtiner var]# finger download; finger upload;
Login: download Name: (null)
Directory: /var/ftp Shell: /bin/bash
Never logged in.
No mail.
No Plan.
Login: upload Name: (null)
Directory: /var/ftp/ Shell: /bin/bash
Last login Wed May 14 11:49 (EDT) on pts/2 from 192.168.0.2
No mail.
No Plan.
---So far this is the directory structure and the permissions: [root@jtiner var]# pwd; tree ftp/; ll -R ftp/ /var ftp/ `-- pub |-- movies |-- music `-- upload
4 directories, 0 files ftp/: total 3 drwxr-x--- 5 root ftp-users 4096 May 14 07:35 pub
ftp/pub: total 12 drwxr-x--- 2 root ftp-users 4096 May 14 07:34 music dr-xr-x--- 2 upload ftp-users 4096 May 14 11:36 upload
ftp/pub/music: total 0
ftp/pub/upload: total 0 [root@jtiner var]#
---
Does this speficity help at all?
-jtiner -----Original Message----- From: slug@lists.nks.net [mailto:slug@lists.nks.net] On Behalf Of SpamFree Sent: Wednesday, May 14, 2003 4:23 PM To: slug@nks.net Subject: Re: [SLUG] setting up vsftpd
[snip]
vsftpd sshould be started by xinetd rather than starting several servers in stand alone mode.
There is an excellent howto/manual for vsftpd at http://www.siliconvalleyccie.com/ftp-server.htm
It should be pretty painless.
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 19:52:51 EDT