> > pam_vsd was introduced to remove the need for patching some of > the add-on > > packages, ie proftp. > > What are we really talk about ? I suppose he is talking about user > authentication (ie. support for +ftp priv on a vs), but our argument goes > for the +chrtftp priv
I think the chrtftp priv shall be implicit for every user. Specifically, every user shall only be allowed access to their home directory (and this is already a security risk). The admin/root users shall be using ssh to copy files or SFTP. So a properly configured proftpd server will have the "DirectoryRoot ~" directive for every user, thus dropping the need for a chrtftp priviledge. > Btw, i just installed a new RH 7.2 system to test the skel and the > modified scripts and i realize that the admin user cannot give +chrtftp > priv only if the admin user has the +chrtftp priv. I would call this a bug.... Dave. ------------------------- The freeVSD Support List -------------------------- Subscribe: mailto:[EMAIL PROTECTED]?body=subscribe%20freevsd-support Unsubscribe: mailto:[EMAIL PROTECTED]?body=unsubscribe%20freevsd-support Archives: http://freevsd.org/support/mail-archives/freevsd-support -----------------------------------------------------------------------------
