Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 11 Jul 2003 21:44:25 +0100
From:      Matthew Seaman <m.seaman@infracaninophile.co.uk>
To:        Paul MacKenzie <pc.mackenzie@utoronto.ca>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: Lukemftpd and directory permission
Message-ID:  <20030711204425.GA69739@happy-idiot-talk.infracaninophile.co.uk>
In-Reply-To: <5.2.0.9.2.20030711124510.03ec53c8@mail.elehost.com>
References:  <5.2.0.9.2.20030711124510.03ec53c8@mail.elehost.com>
next in thread | previous in thread | raw e-mail | index | archive | help 

--/04w6evG8XlLl3ft
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Jul 11, 2003 at 12:55:35PM -0400, Paul MacKenzie wrote:
> Hi,
>=20
> I was testing out the lukemftpd in stable and ran into this problem which=
=20
> is probably easy to fix but is stumping me.
>=20
> When we create a directory under any class, the read and execute=20
> permissions on the Other bit is disabled (no "Other" read permissions on=
=20
> any directory created via FTP). This poses a problem as any directory=20
> created under FTP will not be readable for web purposes.
>=20
> Here is the command we had in Inetd.conf
>=20
> ftp    stream  tcp     nowait  root    /usr/libexec/lukemftpd  ftpd -ll -=
r=20
> -u
>=20
> Any ideas why this is happening?

Yes.  The default umask for lukemftpd(8) is 027.  Read the
ftpd.conf(5) manpage for detailed instructions on how to modify that
value, but you probably want to create a /etc/ftpd.conf file and
include within it:

    umask real 022

You should also read ftpusers(5) and make sure you've set up your
users with the right classes etc.  For backwards compatibility, just
listing the username in /etc/ftpusers disables that account from using
the FTP service.  Certainly you should disable FTP access for root and
all pseudo-users.

	Cheers,

	Matthew

--=20
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK

--/04w6evG8XlLl3ft
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (FreeBSD)

iD8DBQE/DyGpdtESqEQa7a0RAmkrAJwNyhWWIxmjN3cx7uynTCwnqQZMjgCfZuFq
/kSUbBhlZsMwniBvoSa0gmQ=
=zUOy
-----END PGP SIGNATURE-----

--/04w6evG8XlLl3ft--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030711204425.GA69739>