?
Solved

IIS FTP home directory LIST access

Posted on 2005-05-02
7
Medium Priority
?
1,449 Views
Last Modified: 2013-12-04
Hi everyone,

Basically, I want to allow users to download files from my FTP that come from URLs, but deny people the ability to list the FTP directory contents. I've set 'traverse folder / execute file' access, and removed all others from the directory security under windows. However, I run into the following error when connecting. I assume there is no workaround, and I am always going to run into this problem, but I thought I would ask here first.

--------- FTP log ---------
220 ftpserver Microsoft FTP Service (Version 5.0).
USER anonymous
331 Anonymous access allowed, send identity (e-mail name) as password.
PASS xxxxxx
530 User guest@my.net cannot log in, home directory inaccessible.
--------- FTP log ---------

Thanks all.
0
Comment
Question by:joesover
  • 3
  • 2
5 Comments
 
LVL 12

Expert Comment

by:gidds99
ID: 13922123
You should be able to resolve this one.  Work through the check list detailed in this MSKB article:

http://support.microsoft.com/default.aspx?scid=kb;en-us;200475

Hope this helps.
0
 

Author Comment

by:joesover
ID: 13922755
no, it's just common sense.
'home directory inaccessible'

ie, the user has rights, but they can't access their home directory, so it doesn't allow login. In theory, you should be able to allow a user to access the FTP, but only get an access denied error when they try to list the directory contents. Apparently IIS won't even let you log in.

0
 
LVL 12

Expert Comment

by:gidds99
ID: 13925159
Sorry, I mis-read your question.  This MSKB article is the one relevant to your issue:

http://support.microsoft.com/default.aspx?scid=KB;EN-US;Q221934

I know this article refers to IIS 4 but the issue may be fundamentally the same (e.g. either the home directory is invalid or read permissions are denied to the FTP root directory).

Does this make sense?
0
 

Author Comment

by:joesover
ID: 13932098
you're still misreading my question.


THIS IS WHAT IS HAPPENING.
--------- FTP log ---------
220 ftpserver Microsoft FTP Service (Version 5.0).
USER anonymous
331 Anonymous access allowed, send identity (e-mail name) as password.
PASS xxxxxx
530 User guest@my.net cannot log in, home directory inaccessible.
--------- FTP log ---------


THIS IS WHAT I WANT TO HAPPEN.
--------- FTP log ---------
220 ftpserver Microsoft FTP Service (Version 5.0).
USER anonymous
331 Anonymous access allowed, send identity (e-mail name) as password.
PASS xxxxxx
230 Anonymous user logged in.
PWD
257 "/" is current directory.
TYPE A
200 Type set to A.
PORT XX,XX,XX,XX,XX,XX
200 PORT command successful.
LIST
150 Opening ASCII mode data connection for /bin/ls.
550 Access is denied.
--------- FTP log ---------


I want to deny access to the home directory, but still access the FTP.
0
 
LVL 12

Accepted Solution

by:
gidds99 earned 1000 total points
ID: 13933758
I know what you are trying to do and I understand your issue.  The MSKB document shows that the error you are receiving is because read access to the Home Directory has been denied and you are asking if there is a workaround.

I would say no - although 3rd party FTP server software may well be able to do this for you - is this an option for you or do you need to use IIS?
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
In a recent article here at Experts Exchange (http://www.experts-exchange.com/articles/18880/PaperPort-14-in-Windows-10-A-First-Look.html), I discussed my nine-month sandbox testing of the Windows 10 Technical Preview, specifically with respect to r…
Integration Management Part 2
Loops Section Overview
Suggested Courses
Course of the Month13 days, 13 hours left to enroll

755 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question