On Tue, Apr 04, 2000 at 04:32:09PM -0400, Robert Haehnel wrote:
> To allow someone write permissions to a dir via anon ftp you have to do both
> chmod 777 /home/ftp/pub/incoming
No no no no no!!!!
chmod 755 if you wish (but only if ftp does NOT own incoming - 555
if it does and 711 is better yet [if ftp does not own incoming]!) but do
NOT allow both read and write access to incoming!!!! Unless, that is, you
really WANT to become a WAREZ site where the script kiddies and ankle
bitters trade the warez and c00l 31373 stuff!
If you want to do it right, make sure you have an ftp and an ftpadmin
user id and group id (each different). The ftp process runs as ftp.ftp. The
incoming directory is own by ftpadmin.ftpadmin. Then set the mode to 775.
Any real user you want to grant read and write access to incoming
then gets added to the ftpadmin group (this is outside of ftp I'm referring
to now). Anonymous ftp users should NEVER have both read and write access
to any files or directories on your system.
> and add to /etc/ftpaccess
> upload /home/ftp * no
> upload /home/ftp /pub/incoming yes ftp 600
> (and you don't need to re-start ftpd to get the changes in ftpaccess to work,
> oops!)
> Thanks Lawson
> --
> R. Haehnel
> ____________________________________________________________________
> Get your own FREE, personal Netscape WebMail account today at
>http://webmail.netscape.com.
Mike
--
Michael H. Warfield | (770) 985-6132 | [EMAIL PROTECTED]
(The Mad Wizard) | (770) 331-2437 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
-
To unsubscribe from this list: send the line "unsubscribe linux-newbie" in
the body of a message to [EMAIL PROTECTED]
Please read the FAQ at http://www.linux-learn.org/faqs
