vfstpd umask and unix umask for ftp only users

Hi

I've got a handful of users on my Debian server that are FTP only, they are chrooted to their home directly (I use vsftpd) and have their login shell set to /bin/false. Their home directory is used by Apache to host web sites.

What permissions should I set to these users home directories? I'm guessing 700.

What about the umask setting for vsftpd?

In need of some "best practice" guidance.


Gareth
localgarethAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
yuzhConnect With a Mentor Commented:
It depends on what type of security you want to maintain and the data exchange between the
user in the same group.

I would set the FTP umask to 027, owner can do anything, groud user has rx, but no WRITE
permission. For the user's home, permissions are 750 as well (same reason as FTP).

Please have a look at the following docs to learn more:
http://techrepublic.com.com/5206-6286-0.html?forumID=11&threadID=117401&start=0
http://mandrakeuser.org/docs/mdoc/user/bastille-levels.html

0
All Courses

From novice to tech pro — start learning today.