From owner-freebsd-questions@FreeBSD.ORG Fri Jun 3 20:26:03 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 69FFC16A41C for ; Fri, 3 Jun 2005 20:26:03 +0000 (GMT) (envelope-from tech@flare.net) Received: from mail.flare.net (mail.flare.net [207.10.131.13]) by mx1.FreeBSD.org (Postfix) with ESMTP id ECD9D43D1D for ; Fri, 3 Jun 2005 20:26:02 +0000 (GMT) (envelope-from tech@flare.net) Received: from dennylaptop2 [207.10.131.89] by mail.flare.net with ESMTP (SMTPD32-7.07) id AC6BEFE0084; Fri, 03 Jun 2005 16:24:11 -0400 From: "Denny Jodeit" To: Date: Fri, 3 Jun 2005 16:25:59 -0400 Message-ID: <003401c5687a$743730c0$59830acf@dennylaptop2> MIME-Version: 1.0 Content-Type: text/plain; charset="windows-1250" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 In-Reply-To: <20050603200203.GB21127@gentoo-npk.bmp.ub> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2527 Importance: Normal X-Declude-Sender: tech@flare.net [207.10.131.89] X-Spam-Tests-Failed: CMDSPACE [3] X-Note: This E-mail was scanned by Declude JunkMail (www.declude.com) for spam. Subject: RE: ftpchroot X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 03 Jun 2005 20:26:03 -0000 On Fri, Jun 03, 2005 at 03:40:46PM -0400, Denny Jodeit wrote: > Hello, > > I'm trying to restrict an ftp user to a particular directory. I've > written an ftpchroot file, as follows: > > Username /var/spool/ftp/ ./Username/photos > > > After I write the file and restart inetd, I am not able to login to > ftp with this user account at all. I have RTFM and evidently don't get > it... > > Thanks in advance for any and all suggestions. > > Denny Is that a space character in the path above? If so, I don't think it should be there. Have you tried just using the line: username /var/spool/ftp ... to see if the chroot works at all? If so, then try adding user specific subdirs of the chroot (without the space before the ``.'') Nathan Yes.... I've eliminated the space and restarted inetd and could not login to ftp with this particular username at all. I've changed the file to reflect your suggestion, same results...which as you indicate, would mean chroot is not working at all. If I remove the ftpchroot file altogether, I can login to ftp, but obviously not in the directory I wish the account to go to. Denny -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.322 / Virus Database: 267.5.2 - Release Date: 6/3/2005