Date: Wed, 21 Aug 2002 19:23:48 -0500 (CDT) From: James Wyatt <jwyatt@RWSystems.net> To: Marcel Mason <mmasonb208@rogers.com> Cc: <freebsd-isp@FreeBSD.ORG> Subject: Re: Annonymous FTP permissions - no execute Message-ID: <20020821192131.D15077-100000@kasie.rwsystems.net> In-Reply-To: <000701c2496c$479e7da0$054b2a18@mdmh8ueyqj8ff4>
next in thread | previous in thread | raw e-mail | index | archive | help
We put the incoming directory as a separate filesystem. That way you can just mount it with the "noexec" option and the problem goes away. I don't think it stops them from saying "sh scriptfile" if there is an interpreter line sh, ksh, awk, or perl in the path, though. HTH - Jy@ On Wed, 21 Aug 2002, Marcel Mason wrote: > I would like to allow annonymous users to upload files to FreeBSD 4.4 > server. > > The default install puts ftp in /var/ftp, I would like annonymous users to > be able to upload files to /var/ftp/pub/incoming but not have execute > permissions on that directory. Getting the (world) permissions of rw- is not > difficult however when they are set like that no directory listing is > available - unless I am doing something wrong - until I use rwx however I am > not really interested in giving annonymous users the ability to upload > scripts and run them. > > Is there any way (other than constant monitoring) to prevent this type of > folder from becoming a warez haven? > > Any suggestions appreciated. > > M To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020821192131.D15077-100000>