Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 19 Mar 2008 16:47:19 GMT
From:      Josh Webb <joshwebb@gmail.com>
To:        freebsd-gnats-submit@FreeBSD.org
Subject:   conf/121871: ftpd does interpret configuration files as documented
Message-ID:  <200803191647.m2JGlJdg026287@www.freebsd.org>
Resent-Message-ID: <200803191650.m2JGo4Zn021028@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help 

>Number:         121871
>Category:       conf
>Synopsis:       ftpd does interpret configuration files as documented
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Wed Mar 19 16:50:03 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator:     Josh Webb
>Release:        7.0
>Organization:
>Environment:
FreeBSD 7.0-RELEASE #0: Sun Feb 24 10:35:36 UTC 2008
root@driscoll.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC  amd64
>Description:
I'm not sure if this is a problem with the documentation, ftpusers(5) and ftpd.conf(5), or with ftpd. According to the man pages, there should be three ways to chroot all ftp users to their home directories.

1) A line at the end of ftpusers:
* allow chroot
The documentation indicates that this should match all users not matched (and therefore denied access) in a previous line, allow them access to the server, and assign them to the chroot class, which defaults to chrooting them to their home directory.
In practice, the * is not interpreted, so it end up not matching any users. If I supply a specific user name, the user is blocked from ftp access, indicating the directive and class parts of the line are not being followed.

2) A single line in ftpchroot:
*
The documentation indicates that this should match all users and chroot them to their home directories (unless an alternative chroot cestination is specified in ftpd.conf).
In practice, the * is not interpreted, so it end up not matching any users. If I supply a specific user name, the user is chrooted correctly.

3) A single line in ftpd.conf:
chroot all %d
The documentation seems to indicate that this should match all users and chroot them to their home directories.
I have not been able to get any results from the chroot command in ftpd.conf
>How-To-Repeat:

>Fix:


>Release-Note:
>Audit-Trail:
>Unformatted:

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200803191647.m2JGlJdg026287>