Date: Fri, 10 Jul 2009 16:27:18 +0200 From: Jonathan McKeown <j.mckeown@ru.ac.za> To: freebsd-questions@freebsd.org Subject: Re: FTP Server for individual client spaces Message-ID: <200907101627.18681.j.mckeown@ru.ac.za> In-Reply-To: <1247235024.5167.1324439995@webmail.messagingengine.com> References: <1247235024.5167.1324439995@webmail.messagingengine.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Friday 10 July 2009 16:10:24 RS Wood wrote: > I run a small engineering company* that exchanges large files (CAD, > etc.) with clients, and I want to keep the docs off my email server by > setting up a stand alone FTP server where each client can upload and > download its relevant files. As such, my own users/employees should be > able to reach every client=E2=80=99s FTP space but each client should onl= y be > able to reach his own. As my users finish a doc, they place it in that > client=E2=80=99s FTP directory and the client can log in and get it. As = such, > I don=E2=80=99t want any form of unauthenticated FTP. [snip] > Is the solution ftpchroot? If so, it=E2=80=99s not clear how I can chroot > each potential client into his own directory, as my understanding is > that all chrooted users wind up at the same place (like /var/ftp/pub). > Or is the solution that each client gets access to his own home > directory; if so, how do I ensure my staff has access to each client=E2= =80=99s > home directory? I haven't tried this, but man ftpd.conf suggests something along the lines = of: chroot chroot /some/path/%u where the second chroot is the ftp class, and %u will be expanded to the=20 username. Make sure all your external users are in ftp class chroot (by=20 putting their usernames in /etc/ftpchroot), and make /some/path group-owned= =20 and group-readable by a group all your staff are in (the group ownership of= a=20 directory automatically propagates to new directories created below it). Let us know how it goes! Jonathan
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200907101627.18681.j.mckeown>