Date: Tue, 25 Nov 1997 13:54:49 -0600 From: Alberto Johnson <ajohnson@panama.c-com.net> To: freebsd-questions@FreeBSD.ORG Subject: FTP inquiry Message-ID: <3.0.1.32.19971125135449.006d8b88@panama.c-com.net>
next in thread | raw e-mail | index | archive | help
I'm a rookie on this big world of UNIX, I work for an ISP on Panama (just for the records, Panama is on Central America.), i'm part of the staff of Technichal Operations (please don't ask how I got this far in life). I have notice that my users are starting to think (not good for keeping security). My users are becoming very clever every day, and they are trying to pull a few tricks try to break in or gader information of my mail server using ftp. for example: 1. they tried to download the password file 2. they tried to enter orther users directories 3. they tried to get a directory list form"/usr/home", paste this list on a spread sheet, add the @domain.com, final result user01@domain.com user02@domain.com user..@domain.com Bingo... this guy has an mail list of all the users on my server he can try to send bulk mail to them without autorization. or sell the list to some marketing wizard that will add all this e-mail address for sending mail regarding his business. Now this server is also use to post Home pages, so i cannot deny access to every body. because they would like to be able upload and download there files from there "/usr/home/userXX" directory. is there a way to keep a user on his home directory, where his html file are, and prevent him from going out his home directory and start woundering around. if this is not posible, at least deny him view (read) access to the home directory structure. Alberto Johnson ajohnson@panama.c-com.net Johnson
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.1.32.19971125135449.006d8b88>