From owner-freebsd-security Fri Dec 22 7:31:19 2000 From owner-freebsd-security@FreeBSD.ORG Fri Dec 22 07:31:16 2000 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from sunny.fishnet.com (sunny.fishnet.com [209.150.200.6]) by hub.freebsd.org (Postfix) with ESMTP id 8807337B400 for ; Fri, 22 Dec 2000 07:31:16 -0800 (PST) Received: from walleye.corp.fishnet.com (209.150.192.114) by sunny.fishnet.com (5.0.048) id 39FECC32005010E8; Fri, 22 Dec 2000 09:31:03 -0600 Message-ID: From: "Hudson, Henrik H." To: "'Vladimir I. Kulakov'" Cc: "'security@freebsd.org'" Subject: RE: Directory invisible by FTP? Date: Fri, 22 Dec 2000 09:31:47 -0600 MIME-Version: 1.0 Content-Type: text/plain Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Morning Vladimir- Are you using the default BSD ftp daemon? I believe the issue is that when you chroot a user, the daemon roots them before getting the path to a shell. 3 ways around this: 1) Use a FTP daemon which doesn't do this in a rooted environment (ProFTPD is one) 2) Create a root owned /etc and /bin directory inside the users directory. Place a copy of 'ls' in the bin and a then copy the passwd and group files into your new /etc directory. Edit the passwd and group files to only include root (wheel) and the user you want. Remove any references to passwords. The passwd and group files are only necessary if you want to be able to see usernames instead of UID and GIDS when people view their directory. 3) Go home, have a christmas cake and not worry about it ;) Henrik --- Henrik Hudson -----Original Message----- From: owner-freebsd-security@FreeBSD.ORG [mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of Vladimir I. Kulakov Sent: Friday, December 22, 2000 08:31 To: freebsd-security@FreeBSD.ORG Subject: Directory invisible by FTP? Hello, How can you explain the following situation. Some directory in user's home, let's say /home/user/www is not visible by ftp, but visible in my root shell... All other files and directories in /home/user/ with the same access rights visible very vell in both shell and ftp... When you make cd www in ftp, you can see all contents of www, but www itself is still invisible :( The user has 'ftpchroot' for his home directory and /bin/false if master.passwd. All other users with the same configuration can see all directories very vell... I already tryed all possible reasons, but nothing helps :( -- Best regards, Vladimir mailto:kulakov@kudesniki.ru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message