Yup, i think you can probably chroot the daemon into /home/ftp as well, that should keep everything into that jail, but... you know me, ftp = bad.
sach On Thu, 6 Dec 2001, Eric J. Pinnell wrote: > ncftpd does a real good job of this. check it out. I had set it up > before so that if your group is ftpuser it gives you an ftp only account > in which your chroot'd in. > > http://www.ncftp.com/ncftpd/features.html#security > > The only thing is that if you want more that three concurrent connections > you gotta fork out some dough. > > -e > > > _____________________________________________________________________________ > <majcher> icky is like a shadowy hit man, that nobody ever sees, and can only > contact through some strange process. > > On Thu, 6 Dec 2001, tack wrote: > > > one more thing...zero world permission (chmod nn0 myDir) > > > > tack > > > > On Thu, 6 Dec 2001, tack wrote: > > > > > Is it possible to set the groups shell to /bin/false or /dev/null, and > > > change the ownership and group of the directory to the group? Make sure > > > the directory is in a chrooted directory under the desired file sharing > > > service. > > > > > > That way, normal users can't shell into it, and the only way in is via the > > > protocol you choose, if you're in that group. > > > > > > Of course, I could be wrong. Discuss. > > > > > > tack > > > > > > > > > On Thu, 6 Dec 2001, Toby Jacobson wrote: > > > > > > > A friend of a friend of mine has set up a Proftpd server on a slackware > > > > linux box, and he would like to define a user group that only has > > > > permissions in the /home/ftp/ directory; i.e., the group would not have > > > > shell access, only ftp access to that directory. That way, on adding > > > > new users, he can set their group number to that restricted group. > > > > The groupadd manual was not all that enlightening. Does anyone have > > > > prior experience with this? > > > > > > > > -malen > > > > > > > > __________________________________________________ > > > > Do You Yahoo!? > > > > Send your FREE holiday greetings online! > > > > http://greetings.yahoo.com > > > > > > > > _______________________________________________ > > > > Bits mailing list > > > > [EMAIL PROTECTED] > > > > http://www.sugoi.org/mailman/listinfo/bits > > > > > > > > > > > > > > -- > > ------------------------------------------ > > "Don't blame me, I voted for Kodos" > > - Homer J. Simpson > > > > > > _______________________________________________ > > Bits mailing list > > [EMAIL PROTECTED] > > http://www.sugoi.org/mailman/listinfo/bits > > > > > _______________________________________________ > Bits mailing list > [EMAIL PROTECTED] > http://www.sugoi.org/mailman/listinfo/bits > -- /* Sach Jobb [EMAIL PROTECTED] %s/windows/linux/g */ "Hatred not only devowers the hated, but the hater as well." -- Elie Wiesel "Terrorists can be successfully destroyed only if public opinion, both at home and abroad, supports the authorities in regarding them as criminals rather than heroes." -- Sir Michael Howard _______________________________________________ Bits mailing list [EMAIL PROTECTED] http://www.sugoi.org/mailman/listinfo/bits
