Date: Wed, 10 Jun 1998 08:30:02 -0700 (PDT) From: Bill Fenner <fenner@parc.xerox.com> To: freebsd-bugs@FreeBSD.ORG Subject: Re: misc/6901: Ftpd allows access to only one directory tree for anonymous users Message-ID: <199806101530.IAA08474@freefall.freebsd.org>
index | next in thread | raw e-mail
The following reply was made to PR misc/6901; it has been noted by GNATS. From: Bill Fenner <fenner@parc.xerox.com> To: jack <jack@germanium.xtalwind.net> Cc: FreeBSD-gnats-submit@FreeBSD.ORG Subject: Re: misc/6901: Ftpd allows access to only one directory tree for anonymous users Date: Wed, 10 Jun 1998 08:26:51 PDT In message <Pine.BSF.3.96.980609224932.13464A-100000@germanium.xtalwind.net>you write: >Not unless `ftp.virtualhost.com' instructs all its would be >anonymous users to log is using whatever name is specified as >user for that host in /etc/ftphosts. No; you log on using "ftp" or "anonymous". Since you don't seem to believe either the man page or the code, how about an example: % grep ftp /etc/passwd ftp:*:14:5:Anonymous FTP Admin:/var/ftp/default:/nonexistent ftp2:*:14:5:Anonymous FTP Admin for 2nd address:/var/ftp/virtual1:/nonexistent % cat /etc/ftphosts 10.0.0.1 ftp2 % cat /var/ftp/default/etc/ftpmotd This is the default ftpd when you ftp to the non-virtual host. % cat /var/ftp/virtual1/etc/ftpmotd This is the ftp area that you get when you ftp to 10.0.0.1 . % ftp fenestro Connected to fenestro.parc.xerox.com. 220 fenestro.parc.xerox.com FTP server (Version 6.00) ready. Name (fenestro:fenner): ftp 331 Guest login ok, send your email address as password. Password: 230- This is the default ftpd when you ftp to the non-virtual host. 230 Guest login ok, access restrictions apply. Remote system type is UNIX. Using binary mode to transfer files. ftp> ls pub 200 PORT command successful. 150 Opening ASCII mode data connection for '/bin/ls'. total 0 -rw-rw-r-- 1 root operator 0 Jun 10 15:19 README.default 226 Transfer complete. ftp> quit 221 Goodbye. % ftp 10.0.0.1 Connected to 10.0.0.1. 220 10.0.0.1 FTP server (Version 6.00) ready. Name (10.0.0.1:fenner): ftp 331 Guest login ok, send your email address as password. Password: 230- This is the ftp area that you get when you ftp to 10.0.0.1 . 230 Guest login ok, access restrictions apply. Remote system type is UNIX. Using binary mode to transfer files. ftp> ls pub 200 PORT command successful. 150 Opening ASCII mode data connection for '/bin/ls'. total 0 -rw-rw-r-- 1 root operator 0 Jun 10 15:18 README.10.0.0.1 226 Transfer complete. ftp> quit 221 Goodbye. >As it is now a user doing an anonymous login to >`ftp.virtualhost.com' ends up in the same directory as one >logging in as anonymous to `ftp.realhost.com'. Not if you have an ftphosts file with a different user with a different home directory for the virtual domain. Bill To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the messagehelp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199806101530.IAA08474>