From owner-freebsd-questions Thu Aug 17 0:31:35 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mailhost01.reflexnet.net (mailhost01.reflexnet.net [64.6.192.82]) by hub.freebsd.org (Postfix) with ESMTP id E431737B5F6 for ; Thu, 17 Aug 2000 00:31:29 -0700 (PDT) (envelope-from cjc@149.211.6.64.reflexcom.com) Received: from 149.211.6.64.reflexcom.com ([64.6.211.149]) by mailhost01.reflexnet.net with Microsoft SMTPSVC(5.5.1877.197.19); Thu, 17 Aug 2000 00:30:23 -0700 Received: (from cjc@localhost) by 149.211.6.64.reflexcom.com (8.9.3/8.9.3) id AAA83733; Thu, 17 Aug 2000 00:31:27 -0700 (PDT) (envelope-from cjc) Date: Thu, 17 Aug 2000 00:31:27 -0700 From: "Crist J . Clark" To: Nick Evans Cc: "'freebsd-questions@freebsd.org'" Subject: Re: locking ftp users in their folder and their folder only Message-ID: <20000817003126.E28027@149.211.6.64.reflexcom.com> Reply-To: cjclark@alum.mit.edu References: <712384017032D411AD7B0001023D799B33B291@sn1exchmbx.nextvenue.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <712384017032D411AD7B0001023D799B33B291@sn1exchmbx.nextvenue.com>; from nevans@nextvenue.com on Wed, Aug 16, 2000 at 04:58:49PM -0400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Wed, Aug 16, 2000 at 04:58:49PM -0400, Nick Evans wrote: > How can I prevent ftp users from browsing other folders in the same way the > anonymous user is prevented? BTW Did something happen the mailing list > archives? Searching seems to be broken. RTFM, ftpd(8), 5. If the user name appears in the file /etc/ftpchroot, or the user is a member of a group with a group entry in this file, i.e. one prefixed with `@', the session's root will be changed to the user's login directory by chroot(2) as for an ``anonymous'' or ``ftp'' account (see next item). This facil- ity may also be triggered by enabling the boolean "ftp-chroot" capability in login.conf(5). However, the user must still supply a password. This feature is intended as a compromise between a fully anonymous account and a fully privileged ac- count. The account should also be set up as for an anonymous account. -- Crist J. Clark cjclark@alum.mit.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message