Date: Fri, 3 Jun 2005 15:01:20 -0600 From: Nathan Kinkade <nkinkade@ub.edu.bz> To: Denny Jodeit <tech@flare.net> Cc: freebsd-questions@freebsd.org Subject: Re: ftpchroot Message-ID: <20050603210120.GD21127@gentoo-npk.bmp.ub> In-Reply-To: <003401c5687a$743730c0$59830acf@dennylaptop2> References: <20050603200203.GB21127@gentoo-npk.bmp.ub> <003401c5687a$743730c0$59830acf@dennylaptop2>
next in thread | previous in thread | raw e-mail | index | archive | help
--r5UKZFo5ar5Icv+k Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Jun 03, 2005 at 04:25:59PM -0400, Denny Jodeit wrote: >=20 > On Fri, Jun 03, 2005 at 03:40:46PM -0400, Denny Jodeit wrote: > > Hello, > >=20 > > I'm trying to restrict an ftp user to a particular directory. I've=20 > > written an ftpchroot file, as follows: > >=20 > > Username /var/spool/ftp/ ./Username/photos > >=20 > >=20 > > After I write the file and restart inetd, I am not able to login to=20 > > ftp with this user account at all. I have RTFM and evidently don't get >=20 > > it... > >=20 > > Thanks in advance for any and all suggestions. > >=20 > > Denny >=20 > Is that a space character in the path above? If so, I don't think it > should be there. Have you tried just using the line: >=20 > username /var/spool/ftp >=20 > ... to see if the chroot works at all? If so, then try adding user > specific subdirs of the chroot (without the space before the ``.'') >=20 > Nathan >=20 > Yes.... > I've eliminated the space and restarted inetd and could not login to ftp > with this particular username at all. > I've changed the file to reflect your suggestion, same results...which > as you indicate, would mean chroot is not working at all. >=20 > If I remove the ftpchroot file altogether, I can login to ftp, but > obviously not in the directory I wish the account to go to. >=20 > Denny What are the permissions of the directory /var/spool/ftp? Make sure that the user with which you are attempting to login has at lease execture permissions for the directory in questions. Also, what specific error are you getting from your ftp client? Nathan --r5UKZFo5ar5Icv+k Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFCoMUgO0ZIEthSfkkRAumhAJ46+4p6nvdR5VgBatZ+FCTAAj+VJwCeKquS K+yOcSG47113eaH7JT6WTrw= =sVap -----END PGP SIGNATURE----- --r5UKZFo5ar5Icv+k--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050603210120.GD21127>