Link to home
Start Free TrialLog in
Avatar of Shannon Adams
Shannon Adams

asked on

Ftp permissions using vsftpd on FC4

The permissions for a number of files ftped into our FC4 server are rwx------.   I know it is dangerous, but I want all files created by ftp to have read, write, execute.  I have changed local_umask=777 in /etc/vsftpd/vsftpd.conf and "service restart vsftpd".  But, I'm not getting files created with full permissions.  Any ideas?
Avatar of xDamox
xDamox
Flag of United Kingdom of Great Britain and Northern Ireland image
Hi,

Redhat remove the ability to have execute in the fire permissions for security reasons, rwx is no longer acceptable.
Avatar of DonConsolio
DonConsolio
Flag of Austria image
try "local_umask=000" - umask is meant to subtract (i.e. remove) permission bits set, not to add the bits.
Avatar of xDamox
xDamox
Flag of United Kingdom of Great Britain and Northern Ireland image
DonConsolio, You cant have a umask of rwx execute has been removed for security pursoses
Avatar of DonConsolio
DonConsolio
Flag of Austria image
for me (vsFTPd 2.0.3 on SUSE) this works:
-----------------------
local_umask=000
file_open_mode=0777
------------------------

Redhat may be different :-)
Avatar of xDamox
xDamox
Flag of United Kingdom of Great Britain and Northern Ireland image
DonConsolio, you are able to get rwx on SuSE?
Avatar of DonConsolio
DonConsolio
Flag of Austria image
"-rwxrwx---"  is what i got with local_umask=007 and file_open_mode=0777

SUSE 10.0 , vsftpd-2.0.3-6
Avatar of xDamox
xDamox
Flag of United Kingdom of Great Britain and Northern Ireland image
Ok, thanks I didn't know SuSE allowed you to do this
Avatar of Shannon Adams
Shannon Adams

ASKER

DonConsolio, I added the two lines to the /etc/vsftpd/vsftpd.conf file and restarted the service.  However I am getting -rw-rw-r-- when ftping files to the server.  I am almost positive I am running vsftp as the ftp server, but how can I be sure?
Avatar of DonConsolio
DonConsolio
Flag of Austria image
$  telnet 127.0.0.1 ftp
and read the banner

or

rpm -qa | grep -i ftp

Avatar of DonConsolio
DonConsolio
Flag of Austria image
type "quit<enter>" to leave the telnet session
Avatar of Shannon Adams
Shannon Adams

ASKER

Here is what I see with the rpm command:
lftp-3.2.1-10_FC4  
ncftp-3.1.9-4.fc4  
ftp-0.17-26        
vsftpd-2.0.3-1    

Now, how can I tell which one is being used for ftp transfers?
Avatar of Shannon Adams
Shannon Adams

ASKER

Okay, tried the telnet:
Connected to webserver (127.0.0.1).
Escape character is '^]'.          
220 (vsFTPd 2.0.3)                  
Avatar of DonConsolio
DonConsolio
Flag of Austria image
> vsftpd-2.0.3-1    

> 220 (vsFTPd 2.0.3)                  


so you have vsftpd 2.0.3
Avatar of DonConsolio
DonConsolio
Flag of Austria image
do your SOURCE files havd 777 mode ?
ASKER CERTIFIED SOLUTION
Avatar of DonConsolio
DonConsolio
Flag of Austria image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of xDamox
xDamox
Flag of United Kingdom of Great Britain and Northern Ireland image
Fedora does not allow rwx files.