From owner-freebsd-questions  Mon Feb  9 10:30:19 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id KAA19078
          for questions-outgoing; Mon, 9 Feb 1998 10:30:19 -0800 (PST)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from netmug.org (perl@netmug.org [207.88.43.66])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA19073
          for <freebsd-questions@FreeBSD.ORG>; Mon, 9 Feb 1998 10:30:15 -0800 (PST)
          (envelope-from perl@netmug.org)
Received: from localhost (perl@localhost)
	by netmug.org (8.8.8/NetMUG_1.0.0) with SMTP id KAA20533;
	Mon, 9 Feb 1998 10:29:09 -0800 (PST)
Date: Mon, 9 Feb 1998 10:29:09 -0800 (PST)
From: Michael Haro <perl@netmug.org>
To: chas <panda@peace.com.my>
cc: freebsd-questions@FreeBSD.ORG
Subject: Re: does chroot require any extra config ?
In-Reply-To: <3.0.32.19980210005744.00941860@peace.com.my>
Message-ID: <Pine.BSF.3.96.980209102706.19716A-100000@netmug.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

You need to add fred to the group you define in the guestgroup line in
your wu-ftpd config.

Example:

in ftpaccess:
guestgroup websites

in group:
websites:*:fred

Michael

On Tue, 10 Feb 1998, chas wrote:

> Setting up WU_FTP and learning why so many questions were
> posted concerning it in the past. Seems to be working fine
> except my security is non-existent.
> 
> I've set chroot in /etc/passwd as follows :
> fred:*:1001:100:fred:/var/websites/./fredsite:/etc/ftp-only
> 
> This works fine. When fred ftps in, he is initially in 
> /var/websites/fredsite 
> If I understand this correctly, chroot means that he 
> sees /var/websites as / 
> So, he shouldn't be able to go anywhere else but subdirectories
> of /var/websites.
> 
> However, he can "cd .." from /var/websites ; "pwd" shows that
> he is in "/var/websites" and he can also "cd /etc" directly. 
> 
> What else needs to be set to get chroot to run properly ?
> 
> Thank you,
> 
> chas
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe questions" in the body of the message
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe questions" in the body of the message