Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 27 Jun 2004 01:35:43 +0300
From:      Giorgos Keramidas <keramida@ceid.upatras.gr>
To:        Bill Moran <wmoran@potentialtech.com>
Cc:        doc@freebsd.org
Subject:   Re: ftp-chroot in login.conf ... doc error?
Message-ID:  <20040626223543.GC1176@gothmog.gr>
In-Reply-To: <20040626190214.GC1016@gothmog.gr>
References:  <20040621213819.43df0591.wmoran@potentialtech.com> <20040626190214.GC1016@gothmog.gr>
next in thread | previous in thread | raw e-mail | index | archive | help 
On 2004-06-26 22:02, Giorgos Keramidas <keramida@ceid.upatras.gr> wrote:

> IMHO, if a small description is added it should probably be something
> like this:
>
>         ftp-chroot	If your ftpd(8) has been compiled with login.conf(5)
> 			support, then you can set this boolean option for a
> 			user class to tell ftpd(8) that it should use
> 			chroot(2) to restrict the specific class of users in
> 			their HOME directory after they have successfully
> 			authenticated.
> Does this look ok as an addition to login.conf(5)?

Well, apparently it doesn't.  After reading the manpage more carefully,
I withdraw the above proposal and substitute this diff in its place:

%%
Index: login.conf.5
===================================================================
RCS file: /home/ncvs/src/lib/libutil/login.conf.5,v
retrieving revision 1.49
diff -u -r1.49 login.conf.5
--- login.conf.5	5 May 2003 06:25:03 -0000	1.49
+++ login.conf.5	26 Jun 2004 22:34:24 -0000
@@ -183,6 +183,14 @@
 value.
 .It "hushlogin	bool	false	Same as having a ~/.hushlogin file.
 .It "ignorenologin	bool	false	Login not prevented by nologin.
+.It "ftp-chroot	bool	false	Limit ftp access with
+.Xr chroot 2
+to the
+.Ev HOME
+directory of the user.
+See
+.Xr ftpd 8
+for details.
 .It "label	string			Default MAC policy; see
 .Xr maclabel 7 .
 .It "lang	string		Set $LANG environment variable to the specified value.
@@ -399,6 +407,7 @@
 .Sh SEE ALSO
 .Xr cap_mkdb 1 ,
 .Xr login 1 ,
+.Xr chroot 2 ,
 .Xr getcap 3 ,
 .Xr getttyent 3 ,
 .Xr login_cap 3 ,
@@ -406,4 +415,5 @@
 .Xr pam 3 ,
 .Xr passwd 5 ,
 .Xr ttys 5 ,
+.Xr ftpd 8 ,
 .Xr pam_passwdqc 8
%%

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040626223543.GC1176>