configuration question.

[Armin Safarians]

How do you restrict rsync transfers to only modules in the configuration file?
It seems like even though I have a module configured, users can transfer files
that they had permission to which is not under the directory of the module.

I.E.
modulename
    path=/web
    ...
    ...
    ...

Users can get /etc/passwd from this machine. How do I restrict that.


Thanks,
AMS