Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

vsftp problem with user escaping directory

Posted on 2005-02-28
2
Medium Priority
?
192 Views
Last Modified: 2013-12-16
Hi there.

I've setup a user on a slackware box with VS FTP running on it.

This user has his regular home directory but in that home directory is a symbolic link that takes a user to /var/www/html/test/testdir
(I know it's not terribly secure but i cant avoid it for now)

The problem being that this user can "cd .." and get to /var/www/html/test . "cd .." again and he gets to /var/www/html.

This is somewhat worrying.

How can I prevent a user escaping his root directory structure and going above it?

ta

Daryn
0
Comment
Question by:daryn
2 Comments
 
LVL 7

Accepted Solution

by:
surya_prabhakar earned 680 total points
ID: 13421804
open /etc/vsftpd/vsftpd.conf

and add a line into that

chroot_local_user=YES

and restart vsftpd .

chroot_local_user
              If  set to YES, local users will be placed in a chroot() jail in
              their home directory after  login. Changing to symobolic links
              will fail .


surya.
0
 

Author Comment

by:daryn
ID: 13451424
thankin y'kindly, sir.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Setting up Secure Ubuntu server on VMware 1.      Insert the Ubuntu Server distribution CD or attach the ISO of the CD which is in the “Datastore”. Note that it is important to install the x64 edition on servers, not the X86 editions. 2.      Power on th…
SSH (Secure Shell) - Tips and Tricks As you all know SSH(Secure Shell) is a network protocol, which we use to access/transfer files securely between two networked devices. SSH was actually designed as a replacement for insecure protocols that sen…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
Suggested Courses
Course of the Month15 days, 1 hour left to enroll

577 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question