ftp user access (restrictions)???

bolindilly

John Galt Member
does anyone any <b>any</b> way to restrict my users of ftp from navigating back to a certain point???

let's say i have a user, when they log in through ftp, their default folder is "/users/username". is there a way to restrict these certain privelages so they can't navigate back past this directory. i don't want to give them access to other user's folders, as well as the "/" folder...

how do i do this?

any help would be great...
BoLinDilly
 

Vroomfondel

Registered
Quoting from the man page for ftpd:

> If the user name appears in the file /etc/ftpchroot the
> session's root will be changed to the user's login directory
> by chroot(2) as for an ``anonymous'' or ``ftp'' account.
> However, the user must still supply a password. This
> feature is intended as a compromise between a fully
> anonymous account and a fully privileged account.

Looks like it's possible; I haven't tried it.
 

Vroomfondel

Registered
Just tried it on my machine; it didn't work. I'm not seeing any
code to handle this case in the Darwin sources either. Guess the
man page lied...
 
Find a post by The DJ (I think) about ftp (maby annonomous ftp?). he found a way to make annonomous ftp logins and it works (i tried it). Next time u have a question, make sure u search to see if it was previously answered. ;)
Oh yah, when u make this ftp account, make sure the lowest folder u want to be given access to is to ftp users home......
While I am here, does any one know how to make a link from the ftp users home to a folder that is not in the users home, and still get it to follow when logged in through ftp?
 

Vroomfondel

Registered
> While I am here, does any one know how to make a link from the
> ftp users home to a folder that is not in the users home, and still
> get it to follow when logged in through ftp?

Sorry; you can't do that. That's the whole point of chroot(2), which
is executed for the anonymous user.
 
Top