[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] ftp how to? chroot syntax

Subject: Re: [cobalt-users] ftp how to? chroot syntax
From: "Danny Daniels" <dcd@xxxxxxxxxxxxxxxxxx>
Date: Thu Jun 28 04:44:32 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> Greetings. Does anyone know how to change a site admin's ftp directory to
> /home/sites/siteXXX/web instead of pointing to
> /home/sites/siteXXX/users/Xuser?
>
> I tried doing this in /etc/passwd and it had created a problem. Since
doing
> that I was able to log on to /home/sites/siteXXX/web when I do
> ftp.siteXXX.com, but I also find that you could actually go up to
different
> directory through ftp and eventally see all directory on the cobalt
machine,
> although you would have read access only, but still I am not very
> comfortable in letting this happen.  Is this a bug?

BEFORE:
admin:x:110:27:Administrator:/home/sites/home/users/admin:/bin/bash
AFTER
admin:x:110:27:Administrator:/home/sites/home/web/./:/bin/bash

The trick here is to use the "/./" chroot syntax at the end of the home
directory. This will jail the user to their root directory, preventing them
from going any higher in the directory tree.

-Danny Daniels
 dcd@xxxxxxxxxxxxxxxxxx

References:
- [cobalt-users] ftp how to?
  - From: Anthony Law

Prev by Date: Re: [cobalt-users] rpm conflicts
Next by Date: Re: [cobalt-users] ftp how to?
Previous by thread: Re: [cobalt-users] Deny Web page viewing
Next by thread: Re: [cobalt-users] ftp how to?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index