From owner-freebsd-security Mon Feb 19 20:22:16 2001 Delivered-To: freebsd-security@freebsd.org Received: from gull.prod.itd.earthlink.net (gull.prod.itd.earthlink.net [207.217.121.85]) by hub.freebsd.org (Postfix) with ESMTP id E2BDF37B401 for ; Mon, 19 Feb 2001 20:22:10 -0800 (PST) Received: from colltech.com (1Cust48.tnt3.clarksburg.wv.da.uu.net [63.15.38.48]) by gull.prod.itd.earthlink.net (EL-8_9_3_3/8.9.3) with ESMTP id UAA22786; Mon, 19 Feb 2001 20:21:12 -0800 (PST) Message-ID: <3A91F16E.4915B5F4@colltech.com> Date: Mon, 19 Feb 2001 23:24:14 -0500 From: Daniel Hagan X-Mailer: Mozilla 4.73 [en] (WinNT; U) X-Accept-Language: en MIME-Version: 1.0 To: Poul-Henning Kamp Cc: Dag-Erling Smorgrav , security@FreeBSD.ORG Subject: Re: ftpd's read-only mode References: <87016.982617995@critter> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > In message , Dag-Erling Smorgrav writes: > >A while ago, Poul-Henning implemented a read-only option in ftpd that > >makes the server refuse any command that would write, remove or modify > >a file or directory. Currently, the server will send a 202 reply with > >the reason "Command ignored. Server is in readonly mode.", but I think > >that a "550 Permission denied" would be much more appropriate. Does > >anybody object to this change? Back at the beginning of Jan I had a patch discussed on -audit that fixed some minor stuff w/ the 'ro' code and added a per-user read-only mode to login.conf. If you want to commit this too (it originally got killed due to rumors that ftpd was going to be replaced by the netbsd version), the patch is still available from http://vtopus.cs.vt.edu/~dhagan/freebsd/ftpd.patch The discussion in in the archives http://docs.freebsd.org/mail/archive/2001/freebsd-audit/20010107.freebsd-audit.html Daniel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message