Date: Thu, 04 Jan 2001 11:16:52 -0500 From: Daniel Hagan <dhagan@colltech.com> To: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> Cc: "Portwood, Jason" <JPortwood@strategicit.net>, "'freebsd-security@FreeBSD.ORG'" <freebsd-security@FreeBSD.ORG> Subject: Re: ftpd and anonymous setup Message-ID: <3A54A1F4.1B090FF9@colltech.com> References: <6381A6A8826BD31199500090279CAFBA24F41A@exchange.strategicit.net> <200101041532.KAA59487@khavrinen.lcs.mit.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
There's a flag (-r) that already defines a read-only mode. It could be used for the anonymous account to prevent fs mods (I guess?). I'm messing around w/ ftpd for the chroot stuff mentioned earlier, so I'll try to take a look sometime and see what I can find out. Daniel Garrett Wollman wrote: > > <<On Thu, 4 Jan 2001 10:29:53 -0500 , "Portwood, Jason" <JPortwood@strategicit.net> said: > > > I chose 773 to allow someone to be assigned to the group to control the > > contents of that > > directory. > > > That will allow files to be uploaded and not be viewable. > > Doesn't help -- the WaReZ d00dz are perfectly capable of telling their > 31337 co-conspirators the name under which they have uploaded the > file. > > The only solution is an ftpd configuration option (like in wuftpd) > which creates files under a different user id and a mode which is not > readable by the kiddies. > > A useful addition to ftpd would be an option to disable all operations > which would modify the filesystem. > > -GAWollman > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A54A1F4.1B090FF9>