Re: Nosy ftp users

To: Mark Janssen <maniac@maniac.nl>
Cc: debian-user@lists.debian.org
Subject: Re: Nosy ftp users
From: Patrick Kirk <patrick@kirks.net>
Date: 19 Apr 2002 10:25:29 +0100
Message-id: <[🔎] 1019208330.1509.31.camel@phasar>
In-reply-to: <[🔎] 1019206111.1156.30.camel@ninja>
References: <[🔎] 1019205756.1487.10.camel@phasar> <[🔎] 1019206111.1156.30.camel@ninja>

On Fri, 2002-04-19 at 09:48, Mark Janssen wrote:
> On Fri, 2002-04-19 at 10:42, Patrick Kirk wrote:
> 
> > I have a Proftpd ftp server with a user called ftp whose password is
> > given to clients who need to get drivers, etc.
> > Just realised that someone has logged on and cd-ed to my directory and
> > downloaded a mailbox.
> > But how can I prevent people doing this, as it's a very lax setup that
> > could well lead to trouble?
> 
> 1. Make sure directories with 'critical' information are not
> world-readable (like home-dirs, mailboxes etc)
> 2. Chroot the ftp-account with the files under it (proftp supports

Thanks - this seems the best way.  

chmod -R 1700 /home

Is that the right command?  Will samba still work with those
permissions?


-- 


Patrick


-- 
To UNSUBSCRIBE, email to debian-user-request@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: Nosy ftp users
  - From: Dimitri Maziuk <dmaziuk@yola.bmrb.wisc.edu>

References:
- Nosy ftp users
  - From: Patrick Kirk <patrick@kirks.net>
- Re: Nosy ftp users
  - From: Mark Janssen <maniac@maniac.nl>

Prev by Date: Re: my isp is being told *i* am broadcasting spam?
Next by Date: Building a custom debian cd
Previous by thread: Re: Nosy ftp users
Next by thread: Re: Nosy ftp users
Index(es):
- Date
- Thread