From owner-freebsd-questions@FreeBSD.ORG Tue Oct 28 04:48:11 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 16F6316A4CE for ; Tue, 28 Oct 2003 04:48:11 -0800 (PST) Received: from pd5mo2so.prod.shaw.ca (shawidc-mo1.cg.shawcable.net [24.71.223.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8248E43F93 for ; Tue, 28 Oct 2003 04:48:09 -0800 (PST) (envelope-from peepstein@canada.com) Received: from pd4mr4so.prod.shaw.ca (pd4mr4so-qfe3.prod.shaw.ca [10.0.141.215]) by l-daemon (iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003)) with ESMTP id <0HNG00I8UWW8X7@l-daemon> for questions@FreeBSD.org; Tue, 28 Oct 2003 05:48:08 -0700 (MST) Received: from pn2ml3so.prod.shaw.ca (pn2ml3so-qfe0.prod.shaw.ca [10.0.121.147]) by l-daemon (iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003)) with ESMTP id <0HNG00MMLWW8LP@l-daemon> for questions@FreeBSD.org; Tue, 28 Oct 2003 05:48:08 -0700 (MST) Received: from interface.larch.local (h24-80-23-243.vc.shawcable.net [24.80.23.243]) by l-daemon (iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003)) with ESMTP id <0HNG00HF6WW7KQ@l-daemon> for questions@FreeBSD.org; Tue, 28 Oct 2003 05:48:08 -0700 (MST) Date: Tue, 28 Oct 2003 04:48:06 -0800 From: Edward Epstein In-reply-to: <001301c39d4f$d6b63b30$0106000a@windomain> To: Shrikant , questions@FreeBSD.org Message-id: <200310280448.06790.peepstein@canada.com> MIME-version: 1.0 Content-type: text/plain; charset=iso-8859-1 Content-transfer-encoding: 7BIT Content-disposition: inline User-Agent: KMail/1.5.4 X-Special: Have a nice day! References: <001301c39d4f$d6b63b30$0106000a@windomain> Subject: Re: FreeBSD security .... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: peepstein@canada.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Oct 2003 12:48:11 -0000 On October 28, 2003 4:34 am, Shrikant wrote: >Dear All , > >Is it possible that i give a Normal (without wheel rights) user to access > my server using ftp ,and he can only browse thru his home directory not > above that .If it is possbile pls reply me . If you create the file /etc/ftpchroot and put the name of the user in that file (one name per line), the ftp daemon in the base install will chroot the user to their home directory. For exact details and more options, read the ftpchroot manual page by typing "man ftpchroot" at a shell prompt. Regards, Ed -- "There are people who cheat on their spouse but not at cards, and vice versa, and both and neither. Reputation is not necessarily portable from one situation to another, and it's not easily expressed." --Clay Shirkey. (http://www.shirky.com/writings/group_enemy.html) "It has been said that man is a rational animal. All my life I have been searching for evidence which could support this." --Bertrand Russell. "The American empire is ideological, not territorial. We are the most ideological people in the world, and we are so united in our view that we don't understand there can be other views." --Lt. Gen. William Odom, ret. (Former Director of NSA).