From owner-freebsd-questions@FreeBSD.ORG Sun Apr 4 08:59:03 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8F16316A4CE for ; Sun, 4 Apr 2004 08:59:03 -0700 (PDT) Received: from relay04.roc.ny.frontiernet.net (relay04.roc.ny.frontiernet.net [66.133.131.37]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2E66343D39 for ; Sun, 4 Apr 2004 08:59:03 -0700 (PDT) (envelope-from drew@mykitchentable.net) Received: (qmail 6840 invoked from network); 4 Apr 2004 15:59:02 -0000 Received: from 67-51-124-168.dsl1.elk.ca.frontiernet.net (HELO blacklamb.mykitchentable.net) ([67.51.124.168]) (envelope-sender )SMTP for ; 4 Apr 2004 15:59:02 -0000 Received: from mykitchentable.net (lugalong.mykitchentable.net [192.168.1.25]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by blacklamb.mykitchentable.net (Postfix) with ESMTP id C1ED33BF4A3; Sun, 4 Apr 2004 08:59:01 -0700 (PDT) Message-ID: <407030C7.4080307@mykitchentable.net> Date: Sun, 04 Apr 2004 08:59:03 -0700 From: Drew Tomlinson User-Agent: Mozilla Thunderbird 0.5 (Windows/20040207) X-Accept-Language: en-us, en MIME-Version: 1.0 To: den References: <406EF598.5000508@mykitchentable.net> <406F0E9E.8000507@myrealbox.com> In-Reply-To: <406F0E9E.8000507@myrealbox.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit cc: FreeBSD Questions Subject: Re: Symlinks & chroot - Is it Possible? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 04 Apr 2004 15:59:03 -0000 On 4/3/2004 11:21 AM den wrote: > I use mount_null and have no problem with it. You need create dir in > each user home and use mount_null for mount your chrooted dir > with created directories as mount points . > So you need add many lines in your /etc/fstab file . I understand. Thanks for your reply. > I think that words in manual about beta concern writing in directory > that uses mount_null. I don't use write and it seems that you don't > need write too. So use this fs type ( set in fstab "ro" option for > this mount point). > And read man for mount_null. This seems reasonable. Can anyone else comment on their experience using mount_null read only? Thanks, Drew > > Drew Tomlinson wrote: > >> I have a few users that I wish to allow FTP access on my >> 4.9-RELEASE-p4 system. I've setup their accounts and added them to >> /etc/ftpchroot to lock them into their login directories. They are >> in the standard /home/user dirs. >> >> However, I want all of them to have access to another directory >> (/ftp/share) that is setup read-only. I tried adding a symlink to >> /ftp/share but I've found this doesn't work when the user is >> chrooted. I've Googled on this issue. A FAQ for PureFTPd confirms >> this and suggests mount_null. But the man page for mount_null says >> that the code is beta and may wipe out a file system. >> >> What is the best way to achieve my objective? If mount_null is it, >> how do I use it? Do I include it in some sort of login script? I've >> set these users shells to nologin. How would that work? >> >> Thanks, >> >> Drew >