From owner-freebsd-questions@FreeBSD.ORG Thu Sep 6 15:11:31 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B42B616A46C for ; Thu, 6 Sep 2007 15:11:31 +0000 (UTC) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: from gizmo.acns.msu.edu (gizmo.acns.msu.edu [35.8.1.43]) by mx1.freebsd.org (Postfix) with ESMTP id 5B5C513C4F2 for ; Thu, 6 Sep 2007 15:11:31 +0000 (UTC) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: from gizmo.acns.msu.edu (localhost [127.0.0.1]) by gizmo.acns.msu.edu (8.13.6/8.13.6) with ESMTP id l86F62Yi036385; Thu, 6 Sep 2007 11:06:03 -0400 (EDT) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: (from jerrymc@localhost) by gizmo.acns.msu.edu (8.13.6/8.13.6/Submit) id l86F62MZ036384; Thu, 6 Sep 2007 11:06:02 -0400 (EDT) (envelope-from jerrymc) Date: Thu, 6 Sep 2007 11:06:02 -0400 From: Jerry McAllister To: Gabriel Dragffy Message-ID: <20070906150602.GC36166@gizmo.acns.msu.edu> References: <55A4B6CD-3951-4647-BEEA-E06315431BED@dragffy.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <55A4B6CD-3951-4647-BEEA-E06315431BED@dragffy.com> User-Agent: Mutt/1.4.2.2i Cc: freebsd-questions@freebsd.org Subject: Re: Hello X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 06 Sep 2007 15:11:31 -0000 On Thu, Sep 06, 2007 at 12:33:42PM +0100, Gabriel Dragffy wrote: > Dear list members. > > I just wanted to say hi to all of you. My name is Gabriel, and I have > just been setting up a FreeBSD server at work, having moved from Linux. > > There are just a couple of things that aren't working quite as I > would like, and I was hoping someone might be kind enough to help me > out. I've been using the FreeBSD handbook, and I must say it is quite > superb, and makes starting with FreeBSD much easier. > > Using sysinstall I enabled anonymous FTP, with uploads allowed in the > folder /incoming. Uploading works a treat, however the files don't > have permissions to be downloaded again (by anon user). I know I > could change this by executing a cron job every two minutes that > would chmod the files in /incoming. But surely there must be a far > better way...? The FreeBSD handbook says it doesn't recommend > allowing anon users to d/load files uploaded anonymously, however I > would still like to implement this. What they are trying to do is reduce the chance that a SM will create a system where anyone in the world can upload stuff and then, without any checking of the stuff, anyone in the world can download it. Eg. They are trying to force you to at least notice the file before making it available for download. This is to reduce the incidence of evil minded creatures using your machine for their despicable plots of distributing dangerous files and software around the net. So, what you are supposed to do is make two separate directories - one for upload and one for download. Then you check each uploaded file for mal-ware before moving it to the download space with the needed permissions. You can use the same directory, but do not leave out the step of checking the file content before setting permissions to allow download. But, it is better to use separate directories so people doing a download don't have to wade through the swamp of uploaded, and not approved/checked stuff. Of course, some people will point out that FTP is on the outs now anyway and will recommend other ways of doing things. Pay attention to that. But, sometimes FTP still fills a need. ////jerry > > I'd be very appreciative for any help. > > Best regards > > Gabriel Dragffy > > gabe@dragffy.com > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"