RE: Setting up Anon FTP?

To: "Richardson,Anthony" <ARichard@stark.cc.oh.us>
Cc: debian-user <debian-user@lists.debian.org>
Subject: RE: Setting up Anon FTP?
From: Ossama Othman <othman@astrosun.tn.cornell.edu>
Date: Thu, 26 Feb 1998 12:31:56 -0500 (EST)
Message-id: <[🔎] Pine.GSO.3.96.980226121545.22623C-100000@breezy.tn.cornell.edu>
Reply-to: Ossama Othman <othman@astrosun.tn.cornell.edu>
In-reply-to: <[🔎] 199802261702.MAA05765@dialup.oar.net>

Why are you trying to chroot to /bin/ls?  The ftpd daemon automatically
does a chroot when someone logs in as "anonymous" or "ftp."  Here is an
excerpt from the ftpd man page.  Did you follow what it says?

---- FROM LINUX FTPD MAN PAGE ---
In the last case, ftpd takes special measures to restrict the client's 
access privileges.  The server performs a chroot(2) to the home directory 
of the ``ftp'' user.  In order that system security is not breached, it is 
recommended that the ``ftp'' subtree be constructed with care, following
these rules:

	~ftp	Make the home directory owned by ``root'' and unwritable
		by anyone (mode 555).

	~ftp/bin  Make this directory owned by ``root'' and unwritable by
                  anyone (mode 511).  The program ls(1) must be present to
                  support the list command.  This program should be mode
                  111 (executable only).

        ~ftp/etc  Make this directory owned by ``root'' and unwritable by
                  anyone (mode 511).  The files pwd.db (see pwd_mkdb(8))
                  and group(5) must be present for the ls command to be
                  able to produce owner names rather than numbers.  The
                  password field in pwd.db is not used, and should not 
		  contain real passwords.  The file motd, if present, will
		  be printed after a successful login.  These files should
		  be mode 444.

	~ftp/pub  Make this directory mode 555 and owned by ``root''.
		  This is traditionally where publically accessible files
		  are stored for download.
------------------------

I've setup several anonymous ftp servers following similar directions on
Solaris machines, too.  The above setup procedure seems to be pretty
standard, except for some character devices that are placed in ~ftp/dev.

If you can tell me/us specifically what you have done and what
problems/errors you get, it will be easier to determine what is wrong.  I
apologize if you have already done this.  I just got on to this list last
night.

-Ossama
______________________________________________________________________
Ossama Othman <othman@astrosun.tn.cornell.edu>

--- PGP Keys ---
Public:  http://astrosun.tn.cornell.edu/staff/othman/OO_PUBLIC.asc
REVOKED: http://astrosun.tn.cornell.edu/staff/othman/OO_REVOKED.asc


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

Follow-Ups:
- Re: Setting up Anon FTP?
  - From: "Alan Su" <alsu@beowulf.ucsd.edu>

References:
- RE: Setting up Anon FTP?
  - From: "Richardson,Anthony" <ARichard@stark.cc.oh.us>

Prev by Date: Re: Server Questions (fwd)
Next by Date: Re: trouble with the boot-block..
Previous by thread: RE: Setting up Anon FTP?
Next by thread: Re: Setting up Anon FTP?
Index(es):
- Date
- Thread