Solved

How do I restrict FTP Access to 'Get' only?

Posted on 2004-04-21
7
514 Views
Last Modified: 2010-04-21
How do I limit FTP access so that a specified userid\pwd combination only has 'get' access to a single file \ range of files within Unix?
0
Comment
Question by:Knuks
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 40

Accepted Solution

by:
jlevie earned 125 total points
ID: 10877903
To do that you need to set up a chrooted FTP enviornment for that user. What's involved with that depends on what Unix & FTP server you are using.
0
 
LVL 9

Expert Comment

by:Alf666
ID: 10878858
I always suggest the installation/use of vsftpd. It's a very good (and very secure) ftp server which allows you to do all that very easily.

http://vsftpd.beasts.org/

0
 
LVL 48

Expert Comment

by:Tintin
ID: 10884074
Also check out PureFTP http://www.pureftpd.org/index.shtml
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 62

Expert Comment

by:gheist
ID: 10891189
Are you sure you wand only GET? What about PORT PASV QUIT ???
0
 

Author Comment

by:Knuks
ID: 10960018
JLevie - I resolved the answer by another root (apologies for not keeping this thread current).
Your comments related to what I found out so the 125 points are yours.  Thanks for the assistance.

btw - Will not \ can not install 3rd party software - Do not require passive xfer or port commands.
0
 
LVL 62

Expert Comment

by:gheist
ID: 10960491
btw having ftp on high ports breaks RFC
0
 
LVL 48

Expert Comment

by:Tintin
ID: 10973695
What Unix flavour are you running?
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

A metadevice consists of one or more devices (slices). It can be expanded by adding slices. Then, it can be grown to fill a larger space while the file system is in use. However, not all UNIX file systems (UFS) can be expanded this way. The conca…
FreeBSD on EC2 FreeBSD (https://www.freebsd.org) is a robust Unix-like operating system that has been around for many years. FreeBSD is available on Amazon EC2 through Amazon Machine Images (AMIs) provided by FreeBSD developer and security office…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question