HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- configure guest ftp
Operating System - HP-UX
1829582
Members
1675
Online
109992
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-27-2003 03:33 AM
08-27-2003 03:33 AM
configure guest ftp
Hi,
there a many messages about "guest ftp".
But most messages are for special problems or have generically entrys like "/etc/shells is configured" or "ftpaccess is configured", e.g. .
There is no message which describes a detailed and complete way to configure a guest ftp.
Therefore I think I have too many open questions about it and I can't find out, why my configuration is wrong (ftp user have permission denied). Can anybody help ?
York
there a many messages about "guest ftp".
But most messages are for special problems or have generically entrys like "/etc/shells is configured" or "ftpaccess is configured", e.g. .
There is no message which describes a detailed and complete way to configure a guest ftp.
Therefore I think I have too many open questions about it and I can't find out, why my configuration is wrong (ftp user have permission denied). Can anybody help ?
York
4 REPLIES 4
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-27-2003 03:40 AM
08-27-2003 03:40 AM
Re: configure guest ftp
Hi York:
I think you are referring to anonymous ftp. See the section entitled "Configuring Anonymous ftp Access" in "Installing and Administering Internet Services" here:
http://docs.hp.com/hpux/onlinedocs/B2355-90685/B2355-90685.html
Regards!
...JRF...
I think you are referring to anonymous ftp. See the section entitled "Configuring Anonymous ftp Access" in "Installing and Administering Internet Services" here:
http://docs.hp.com/hpux/onlinedocs/B2355-90685/B2355-90685.html
Regards!
...JRF...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-27-2003 03:53 AM
08-27-2003 03:53 AM
Re: configure guest ftp
Hello,
To setup guest ftp, there must be an entry in the passwd file for an account named ftp. The password field should be "*", the group membership should be "guest", and the
login shell should be /bin/false.
For example:
ftp:*:500:guest:anonymous ftp:/users/ftp:/bin/false
The anonymous ftp directory should be set up as follows:
~ftp The home directory of the ftp account should be owned by user ftp and mode 0555 (not writable). Since ftpd does a chroot to this directory, it must have the following subdirectories and files.
~ftp/bin This directory must be owned by root and mode 0555 (not writable). It should contain a copy of /bin/ls, which is needed to support directory listing by ftpd. The command should be mode 0111 (executable only). If the home directory of the ftp account is on the same file system as /bin, the command can be a hard link, but it must not be a symbolic link because of the chroot. The /bin/ls command must be replaced when the system is updated.
~ftp/etc This directory must be owned by root and mode 0555 (not writable). It should contain versions of the files passwd (see passwd) and group (see group). These files must be owned by root and mode 0444 (readable only). These are needed to map user and group ids in the ls command.
The passwd file should contain entries for the ftp user and any other users who own files under the anonymous ftp directory. Such entries should have "*" for passwords. Group ids should be listed in the anonymous ftp group file. The group file should have the group names associated with any group ids in the passwd file and any group ids of files in the anonymous ftp subdirectories.
Since the contents of /users/ftp/etc/passwd are often copied from /etc/passwd, it is possible for a user using the anonymous ftp account to determine which private accounts are not protected with a password. This risk can be alleviated by either requiring passwords for all accounts in /etc/passwd or deleting the unprotected accounts from the anonymous ftp /etc/passwd file.
~ftp/pub This directory would be used by anonymous ftp users to deposit files on the system. It should be owned by user ftp and should be mode 0777 (readable and writable by all).
~ftp/dist Directories used to make files available to anonymous ftp users should be mode 0555 (not writable), and any files to be distributed should be owned by root and mode 0444 (readable only) so that they cannot be modified or removed by anonymous ftp users.
Bye,
Simone
To setup guest ftp, there must be an entry in the passwd file for an account named ftp. The password field should be "*", the group membership should be "guest", and the
login shell should be /bin/false.
For example:
ftp:*:500:guest:anonymous ftp:/users/ftp:/bin/false
The anonymous ftp directory should be set up as follows:
~ftp The home directory of the ftp account should be owned by user ftp and mode 0555 (not writable). Since ftpd does a chroot to this directory, it must have the following subdirectories and files.
~ftp/bin This directory must be owned by root and mode 0555 (not writable). It should contain a copy of /bin/ls, which is needed to support directory listing by ftpd. The command should be mode 0111 (executable only). If the home directory of the ftp account is on the same file system as /bin, the command can be a hard link, but it must not be a symbolic link because of the chroot. The /bin/ls command must be replaced when the system is updated.
~ftp/etc This directory must be owned by root and mode 0555 (not writable). It should contain versions of the files passwd (see passwd) and group (see group). These files must be owned by root and mode 0444 (readable only). These are needed to map user and group ids in the ls command.
The passwd file should contain entries for the ftp user and any other users who own files under the anonymous ftp directory. Such entries should have "*" for passwords. Group ids should be listed in the anonymous ftp group file. The group file should have the group names associated with any group ids in the passwd file and any group ids of files in the anonymous ftp subdirectories.
Since the contents of /users/ftp/etc/passwd are often copied from /etc/passwd, it is possible for a user using the anonymous ftp account to determine which private accounts are not protected with a password. This risk can be alleviated by either requiring passwords for all accounts in /etc/passwd or deleting the unprotected accounts from the anonymous ftp /etc/passwd file.
~ftp/pub This directory would be used by anonymous ftp users to deposit files on the system. It should be owned by user ftp and should be mode 0777 (readable and writable by all).
~ftp/dist Directories used to make files available to anonymous ftp users should be mode 0555 (not writable), and any files to be distributed should be owned by root and mode 0444 (readable only) so that they cannot be modified or removed by anonymous ftp users.
Bye,
Simone
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-28-2003 12:07 AM
08-28-2003 12:07 AM
Re: configure guest ftp
Thank's for the answers, but they're all only for configuring "standard" anonymous ftp.
What about configuring "real user" with the same ftp permissions and requirements like the anonymous ftp user ?
York
What about configuring "real user" with the same ftp permissions and requirements like the anonymous ftp user ?
York
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-28-2003 08:52 AM
08-28-2003 08:52 AM
Re: configure guest ftp
Guest ftp calls for "real" userids and passwords, but "chroots" them so they can't get to other stuff.
I searched ITRC for "guest ftp" and the first article returned has step by step configuration instructions.
http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0xfc2736e69499d611abdb0090277a778c,00.html
I searched ITRC for "guest ftp" and the first article returned has step by step configuration instructions.
http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0xfc2736e69499d611abdb0090277a778c,00.html
"I have great faith in fools; self-confidence, my friends call it." --Poe
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP