HPE Community
Operating System - HP-UX
1752608 Members
4268 Online
108788 Solutions
New Discussion юеВ

Re: disabling get for FTP user (chrooted)

 
nanoux
Advisor

тАО03-11-2009 04:00 AM

тАО03-11-2009 04:00 AM

disabling get for FTP user (chrooted)

Enquiry: How we can restrict a ftpguest user from downloading/getting the files in a chrooted ftp envoirnment.
0 Kudos
Reply
6 REPLIES 6
Aji Thomas
Regular Advisor

тАО03-11-2009 05:09 AM

тАО03-11-2009 05:09 AM

Re: disabling get for FTP user (chrooted)

Hi,

Add the user within /etc/ftpd/ftpusers file, which determines the users who are allowed to log in to the FTP server.

AJi


0 Kudos
Reply
Torsten.
Acclaimed Contributor

тАО03-11-2009 05:23 AM

тАО03-11-2009 05:23 AM

Re: disabling get for FTP user (chrooted)

IMHO if you don't want a user can download files from ftp, don't "show" him the files (per user rights) or don't let him log on.

Hope this helps!
Regards
Torsten.

__________________________________________________
There are only 10 types of people in the world -
those who understand binary, and those who don't.
__________________________________________________
No support by private messages. Please ask the forum!

If you feel this was helpful please click the KUDOS! thumb below!   
0 Kudos
Reply
nanoux
Advisor

тАО03-11-2009 08:54 PM

тАО03-11-2009 08:54 PM

Re: disabling get for FTP user (chrooted)

HI all, thanks all for your feedbacks.

However ,we have a chrooted FTP,vendor as user to allow within & mounted directories to be able to list & PUT files & but sould not get any.

I have solved this by using no-retrieve keywork added as part of ftpaccess config.
which seems to work as is marking files as
unretrievable.

I cant find any threads close to this problem as I skim thru ITRC,
which is to disable the GET (WU-FTP internal cmd),apart from file permission controls which were under play
0 Kudos
Reply
Jeeshan
Honored Contributor

тАО03-11-2009 09:36 PM

тАО03-11-2009 09:36 PM

Re: disabling get for FTP user (chrooted)

check in /etc/ftpd/ftpaccess file

here you can specify the chroot users to restrict using commands.

If you post your user and ftpaccess file, i can show you how to do that.
a warrior never quits
0 Kudos
Reply
nanoux
Advisor

тАО03-11-2009 10:45 PM

тАО03-11-2009 10:45 PM

Re: disabling get for FTP user (chrooted)

/etc/ftpd/ftpaccess=>

compress yes all
tar yes all

log commands real
log transfers anonymous,real inbound,outbound

shutdown /etc/shutmsg

email user@hostname
guestgroup ftpgroup

chmod {no} guest,class=ftpgroup
delete {no} guest,class=ftpgroup

USER: ftpguest

0 Kudos
Reply
Jeeshan
Honored Contributor

тАО03-12-2009 01:48 AM

тАО03-12-2009 01:48 AM

Re: disabling get for FTP user (chrooted)

create rules like this in ftpaccess file

guestgroup ftpguest
delete no ftpguest
a warrior never quits
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.