From owner-freebsd-hackers Sat Oct 28 08:53:30 1995 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.6.12/8.6.6) id IAA22947 for hackers-outgoing; Sat, 28 Oct 1995 08:53:30 -0700 Received: from ibp.ibp.fr (ibp.ibp.fr [132.227.60.30]) by freefall.freebsd.org (8.6.12/8.6.6) with ESMTP id IAA22923 for ; Sat, 28 Oct 1995 08:53:15 -0700 Received: from blaise.ibp.fr (blaise.ibp.fr [132.227.60.1]) by ibp.ibp.fr (8.6.12/jtpda-5.0) with ESMTP id QAA18016 ; Sat, 28 Oct 1995 16:53:01 +0100 Received: from (uucp@localhost) by blaise.ibp.fr (8.6.12/jtpda-5.0) with UUCP id QAA06829 ; Sat, 28 Oct 1995 16:53:00 +0100 Received: (from roberto@localhost) by keltia.freenix.fr (8.7.1/keltia-uucp-2.6) id QAA26158; Sat, 28 Oct 1995 16:40:34 +0100 (MET) From: Ollivier Robert Message-Id: <199510281540.QAA26158@keltia.freenix.fr> Subject: Re: Anybody using ftp groups with the wu ftpd compiled for To: mcs@vpm.com (Mark Stout) Date: Sat, 28 Oct 1995 16:40:34 +0100 (MET) Cc: hackers@FreeBSD.ORG In-Reply-To: <199510280709.AAA12586@netcom7.netcom.com> from "Mark Stout" at Oct 28, 95 00:06:34 am X-Operating-System: FreeBSD 2.2-CURRENT ctm#1255 X-Mailer: ELM [version 2.4 PL24 ME8b] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-hackers@FreeBSD.ORG Precedence: bulk It seems that Mark Stout said: > I'm having no luck setting up restricted ftp access. I want my accounts to > ftp into their account and do what they want from there, but that's as far > as they go. Their home directory in effect becomes their '/' directory, > just /usr/home/ftp becomes the '/' for the anonymous user. I'm using the > ftpaccess file and trying to setup 'guestgroups'. However, it fails on me > everytime. The anonymous user can log in, but valid users can not. I just tried it and it worked. I was not able to "DIR" or "LS" but I was restricted to my home directory and a "GET" succeeded. 306 [16:04] roberto@keltia:/build> ftp localhost Connected to localhost. 220 keltia.freenix.fr FTP server (Version wu-2.4(1) Mon Aug 14 12:20:49 MET DST 1995) ready. Name (localhost:roberto): 331 Password required for roberto. Password: 230 User roberto logged in. Access restrictions apply. Remote system type is UNIX. Using binary mode to transfer files. ftp> dir 200 PORT command successful. 150 Opening ASCII mode data connection for /bin/ls. 226 Transfer complete. ftp> cd .. 250 CWD command successful. ftp> dir 200 PORT command successful. 150 Opening ASCII mode data connection for /bin/ls. 226 Transfer complete. ftp> cd shell 250 CWD command successful. ftp> dir 200 PORT command successful. 150 Opening ASCII mode data connection for /bin/ls. 226 Transfer complete. ftp> ls 200 PORT command successful. 150 Opening ASCII mode data connection for /bin/ls. 226 Transfer complete. ftp> get aliaslist local: aliaslist remote: aliaslist 200 PORT command successful. 150 Opening BINARY mode data connection for aliaslist (1156 bytes). 226 Transfer complete. 1156 bytes received in 0.035 seconds (33 Kbytes/s) ftp> 221 Goodbye. > 4. That there is a 'ftp' group and a 'guest' group in /etc/group I have a group named ftponly in both ftpaccess and in /etc/group. ftponly:*:40:roberto # specify which group of users will be treated as "guests". guestgroup ftponly The "LS" problem is interesting. -- Ollivier ROBERT -=- The daemon is FREE! -=- roberto@keltia.frmug.fr.net FreeBSD keltia.freenix.fr 2.2-CURRENT #3: Wed Oct 25 02:00:10 MET 1995