From owner-freebsd-questions@FreeBSD.ORG  Fri Apr 25 00:40:55 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9057337B404
	for <freebsd-questions@freebsd.org>;
	Fri, 25 Apr 2003 00:40:55 -0700 (PDT)
Received: from hnlmail2.hawaii.rr.com (hnlmail2.hawaii.rr.com [24.25.227.35])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D5FA843FAF
	for <freebsd-questions@freebsd.org>;
	Fri, 25 Apr 2003 00:40:54 -0700 (PDT)
	(envelope-from mike@mtsolidarity.com)
Received: from mtsolidarity.com ([204.210.96.104]) by hnlmail2.hawaii.rr.com
	with Microsoft SMTPSVC(5.5.1877.757.75);
	Thu, 24 Apr 2003 21:40:51 -1000
Date: Thu, 24 Apr 2003 21:40:54 -1000
Content-Type: text/plain; charset=US-ASCII; format=flowed
Mime-Version: 1.0 (Apple Message framework v551)
From: Mike Solis <mike@mtsolidarity.com>
To: freebsd-questions@freebsd.org
Content-Transfer-Encoding: 7bit
In-Reply-To: <200304251551.58385.Malcolm.Kay@internode.on.net>
Message-Id: <3EA3A176-76F1-11D7-8976-0003937E014C@mtsolidarity.com>
X-Mailer: Apple Mail (2.551)
Subject: Re: File Permissions
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Apr 2003 07:40:55 -0000

I did some reading up on jails and chroot.  Sounds much more secure to 
me.  So both of these methods let me specify a directory on my drive 
that is treated exactly like the root directory and access is 
restricted to that directory.  Does anybody have a good article or 
tutorial I can read on how to implement it though.  I'm running two 
sites using Virtual Hosting.

I do appreciate all this help too.

Mike

On Thursday, April 24, 2003, at 08:21 PM, Malcolm Kay wrote:

> On Fri, 25 Apr 2003 14:27, Mike Solis wrote:
>> I'm using FreeBSD 4.7 as a web server running Apache2.  I'm trying to
>> ftp into my server root folder but keep getting told I don't have
>> permission.  I am included in group wheel so thought I would have the
>> correct permissions.  What am I missing?
>>
>
> By default ftp access is inhibited for most special users as 
> determined by the
> login names listed in /etc/ftpusers
>
> Removing root from the list should, I imagine, allow you to do what 
> you want.
> BUT these names are in the list for very good reason -- removing any 
> of them
> makes it that much easier for some nasty to get in and seriously 
> corrupt your
> system. I suggest you don't go down this path.
>
> Malcolm
>
>