From owner-freebsd-bugs@FreeBSD.ORG Wed Mar 19 16:50:04 2008 Return-Path: Delivered-To: freebsd-bugs@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4AA141065675 for ; Wed, 19 Mar 2008 16:50:04 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 2EC138FC2D for ; Wed, 19 Mar 2008 16:50:04 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.2/8.14.2) with ESMTP id m2JGo44M021029 for ; Wed, 19 Mar 2008 16:50:04 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.2/8.14.1/Submit) id m2JGo4Zn021028; Wed, 19 Mar 2008 16:50:04 GMT (envelope-from gnats) Resent-Date: Wed, 19 Mar 2008 16:50:04 GMT Resent-Message-Id: <200803191650.m2JGo4Zn021028@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Josh Webb Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A97A8106564A for ; Wed, 19 Mar 2008 16:47:22 +0000 (UTC) (envelope-from nobody@FreeBSD.org) Received: from www.freebsd.org (www.freebsd.org [IPv6:2001:4f8:fff6::21]) by mx1.freebsd.org (Postfix) with ESMTP id 9F78D8FC22 for ; Wed, 19 Mar 2008 16:47:22 +0000 (UTC) (envelope-from nobody@FreeBSD.org) Received: from www.freebsd.org (localhost [127.0.0.1]) by www.freebsd.org (8.14.2/8.14.2) with ESMTP id m2JGlJBr026288 for ; Wed, 19 Mar 2008 16:47:19 GMT (envelope-from nobody@www.freebsd.org) Received: (from nobody@localhost) by www.freebsd.org (8.14.2/8.14.1/Submit) id m2JGlJdg026287; Wed, 19 Mar 2008 16:47:19 GMT (envelope-from nobody) Message-Id: <200803191647.m2JGlJdg026287@www.freebsd.org> Date: Wed, 19 Mar 2008 16:47:19 GMT From: Josh Webb To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-3.1 Cc: Subject: conf/121871: ftpd does interpret configuration files as documented X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Mar 2008 16:50:04 -0000 >Number: 121871 >Category: conf >Synopsis: ftpd does interpret configuration files as documented >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Wed Mar 19 16:50:03 UTC 2008 >Closed-Date: >Last-Modified: >Originator: Josh Webb >Release: 7.0 >Organization: >Environment: FreeBSD 7.0-RELEASE #0: Sun Feb 24 10:35:36 UTC 2008 root@driscoll.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC amd64 >Description: I'm not sure if this is a problem with the documentation, ftpusers(5) and ftpd.conf(5), or with ftpd. According to the man pages, there should be three ways to chroot all ftp users to their home directories. 1) A line at the end of ftpusers: * allow chroot The documentation indicates that this should match all users not matched (and therefore denied access) in a previous line, allow them access to the server, and assign them to the chroot class, which defaults to chrooting them to their home directory. In practice, the * is not interpreted, so it end up not matching any users. If I supply a specific user name, the user is blocked from ftp access, indicating the directive and class parts of the line are not being followed. 2) A single line in ftpchroot: * The documentation indicates that this should match all users and chroot them to their home directories (unless an alternative chroot cestination is specified in ftpd.conf). In practice, the * is not interpreted, so it end up not matching any users. If I supply a specific user name, the user is chrooted correctly. 3) A single line in ftpd.conf: chroot all %d The documentation seems to indicate that this should match all users and chroot them to their home directories. I have not been able to get any results from the chroot command in ftpd.conf >How-To-Repeat: >Fix: >Release-Note: >Audit-Trail: >Unformatted: