[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] RAQ2 - ProFTPD configuration

Subject: RE: [cobalt-users] RAQ2 - ProFTPD configuration
From: "Jason Hill" <jason@xxxxxxxxxxxxxxxx>
Date: Sat May 5 07:48:00 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> In /etc/passwd change their home location from
> /home/sites/site61/users/fred
> 
> to
> 
> /home/sites/site61/web/
> 
> and all will be fine for FTP, only do this for your admin accounts and
> make backup copies of your /etc/passwd file.  This is the easiest way to
> fix that problem.



That does work, but it also adds a security problem that I'd rather 
not have. After changing a user's/site admin's home location to
/home/sites/site61/web
They then have access to my entire site... they can go up a few 
directories to /home/sites/ and see/download everything.

There HAS to be a solution to this problem. I mean it seems like such 
a simple thing when you think about it...
All I want is for the user/site admin to be able to log in DIRECTLY into 
their site's web directory. Makes sense doesn't it?
I left my first post below, so if anyone else has any suggestions
please let me know. 
Thanks,
Jason
jason@xxxxxxxxxxxxxxxx


 
> I know this has been asked before, but none of the solutions 
> mentioned in this list have worked for me.
> I've also read 
> http://www.proftpd.net/docs/configuration.html#DefaultRoot
> about 20 times -today-. Anyway, here's my question...
>
> When any user (including my admin account) connects to their site's FTP
> account, by default, the remote directory is...
> /users/useraccountname (/home/sites/sitename/users/useraccountname)
> 
> I want the default remote directory to be
> /web (/home/sites/sitename/web)
> 
> Full paths are in parenthesis.
> 
> Here is what the top section of my /etc/proftpd.conf looks like now:
> 
> # This is a basic ProFTPD configuration file (rename it to
> # 'proftpd.conf' for actual use.  It establishes a single server
> # and a single anonymous login.  It assumes that you have a user/group
> # "nobody" and "ftp" for normal operation and anon.
> 
> ServerName                      "ProFTPD"
> ServerType                      inetd
> DeferWelcome                    off
> DefaultServer                   on
> DefaultRoot                     / admin
> DefaultRoot                     ~/../.. site-adm
> DefaultRoot                     ~ !site-adm
> 
> I know the DefaultRoot entry(s) need to be changed to accomplish what I
> want, I just don't know what to change them to. I've tried quite a few
> different combinations with no success. Also, do I even need 3 different
> DefaultRoot entries?
> Any help would be appreciated.

Follow-Ups:
- Re: [cobalt-users] RAQ2 - ProFTPD configuration
  - From: Steve Werby
- RE: [cobalt-users] RAQ2 - ProFTPD configuration
  - From: Dan Kriwitsky

References:
- Re: [cobalt-users] RAQ2 - ProFTPD configuration
  - From: Rik Thomas

Prev by Date: RE: [cobalt-users] Funny Problem
Next by Date: Re: [cobalt-users] "unusual system events"
Previous by thread: RE: [cobalt-users] RAQ2 - ProFTPD configuration
Next by thread: Re: [cobalt-users] RAQ2 - ProFTPD configuration

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index