Apache, FTP user rights

From: kim gabrielsen (kim.gabrielsen@get2net.dk)
Date: 02/20/03

• Next message: jack: "Re: Port 4662, 10 times more packets since november"
• Previous message: Albretch: ""OpenBSD Router Project""
• Next in thread: Jan P. Kessler: "Re: Apache, FTP user rights"
• Reply: Jan P. Kessler: "Re: Apache, FTP user rights"
• Reply: Whoever: "Re: Apache, FTP user rights"
• Reply: Bill C: "Re: Apache, FTP user rights"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: kim gabrielsen <kim.gabrielsen@get2net.dk>
Date: Thu, 20 Feb 2003 13:01:44 +0100

Hi

I have a standard Apache configuration running (1.3.27).

Now, one of my friends is making a compleks of web pages for me and he
should be able to ftp these files to my web server for testing purposes.

i have created a user bt and made a directory under htdocs - bt - with
bt as owner (755).

i have made this directory the home directory of bt.

when he logs in using ftp (VSFTPD) he automagically starts in the bt
directory as i would like.

he can uploade files to this directory and when pointing apache to the
'bt' directory he sees his 'index.html' file as intended.

but i dont want him to be able to make a 'cd ..' in the ftp session.

he should be confined to 'bt' as his root directory and of course be
able to make other directories under this and 'cd' between them.

but never be able to get higher in the directory structure.

i have tried setting the file mods 750 of htdocs - leaving 755 on bt.
but then he's not able to log in via ftp.

in other cases if i fiddle with the permissions on htdocs apache is not
able to find or read any documents in there.

i would assume its feasable since i guess thats how ISPs do the trick.
but HOW??

thanks in advance

kim gabrielsen

---

• Next message: jack: "Re: Port 4662, 10 times more packets since november"
• Previous message: Albretch: ""OpenBSD Router Project""
• Next in thread: Jan P. Kessler: "Re: Apache, FTP user rights"
• Reply: Jan P. Kessler: "Re: Apache, FTP user rights"
• Reply: Whoever: "Re: Apache, FTP user rights"
• Reply: Bill C: "Re: Apache, FTP user rights"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: File permission problem Apache / PHP ... configure a standalone apache daemon for your dev. ... change the apache configuration to the same uid/gid you use for the ftp ... I have a paid hosting account elsewhere, ... > installation scripts. ... (comp.unix.bsd.freebsd.misc) [OpenPKG-SA-2002.004] OpenPKG Security Advisory (apache) ... Vulnerability: remote DoS / exploit ... According to a Security Bulletin from the Apache Software Foundation ... $ ftp ftp.openpkg.org ... (Bugtraq) Re: More upgrade goodness ... I can use ftp I suppose, but it would require setting up ftp here ... I''ve read where apache doesn't like files greater than 2GB, but if the ISO ... It is a Browser restriction based on 32bit file size, ... (Fedora) Re: More upgrade goodness ... I can use ftp I suppose, but it would require setting up ftp here ... read where apache doesn't like files greater than 2GB, but if the ISO ... Fedora Daily Package - http://dailypackage.fedorabook.com/ ... (Fedora) Re: Vsftpd rotate logs with newsyslog... ... restart cause i dont think the apache will be getting too many connections ... apache finishes and probably will xip logs that are still being access by ... you can compress the logs at a later time once the files ... B indicates that the log file is a binary file, ... (freebsd-questions)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > comp.os.linux.security  > 2003-02