Tech or Treat! Write an article about your scariest tech disaster to win gadgets!Learn more

x
?
Solved

ftp configuration

Posted on 2011-02-28
9
Medium Priority
?
320 Views
Last Modified: 2012-05-11
Hello experts,
             I have a doubt regarding ftp. I installed and setup vsftpd on linux. I want to configure such a way that have 3 users A,B and C. They have home directories. Have a folder in / named A and inside it two folders B and C. A can ftp access to A,B and C. But B and C have access to their own B and C folder only. How to setup ftp access like this. Thanks in advance.
0
Comment
Question by:jacobbbc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
9 Comments
 
LVL 3

Expert Comment

by:Gpramodkumar
ID: 34996133
If you are settingup the ftp share in windows then it is similar as providing sharing and security permissions for A on A,B,C folders and B 's access to folder B and C's access to folder C.
0
 

Author Comment

by:jacobbbc
ID: 34996212
@Gpramodkumar: my os is linux....
0
 
LVL 35

Expert Comment

by:torimar
ID: 34996423
The usual setup is to chroot ftp users to their home directories. For security reasons, this is highly recommended.

If you want users to be able to access files somewhere else in the directory tree, the trick I know of is to mount these folders with the '-bind' command. The trick is described here:
http://roglev.info/?p=41
http://www.ducea.com/2006/07/27/allowing-ftp-access-to-files-outside-the-home-directory-chroot/

In your case, you would have to create 3 different mountpoints, one for each ftp user, and you would also have to add them to the /etc/fstab file.
0
Survive A High-Traffic Event with Percona

Your application or website rely on your database to deliver information about products and services to your customers. You can’t afford to have your database lose performance, lose availability or become unresponsive – even for just a few minutes.

 
LVL 2

Accepted Solution

by:
maxalarie earned 2000 total points
ID: 35003932
I guess you could create  your direcotries  and chamge the home folders of A,B and C.

/A would be the home folder of A
/A/B home folder of user B
/A/C home folder of user C
that way, A  have an access to to B and C stuff.

Open vsftpd configuration file - /etc/vsftpd/vsftpd.conf
check the option : chroot_local_user=YES


0
 

Author Comment

by:jacobbbc
ID: 35003992
@torimar: Is it not possible without mounting?
0
 

Author Comment

by:jacobbbc
ID: 35003997
@maxalarie: The folder A is not user A's home folder.
0
 
LVL 35

Expert Comment

by:torimar
ID: 35006483
>> "@torimar: Is it not possible without mounting?"

There are three conceivable ways of dealing with this issue:

1. Not to chroot your users and give them access to the complete filesystem:-> a security disaster, impossible.
2. To set the user's home folders to be identical with their FTP root folders, as suggested by maxalarie above:-> not practical for you.
3. The mount/bind trick.

I personally do not know of any other way, and an online research did not yield one either.
Have you tested the mount/bind trick? It means just typing one line in the terminal. If you find it working, it means only three more lines in the fstab. That's less work to do than in many other configuration tasks on Linux...
0
 
LVL 2

Expert Comment

by:ind_selva
ID: 35015324
change user's home directory.
#usermod -d /A a
#usermod -d /A/B b
#usermod -d /A/C c
0
 
LVL 6

Expert Comment

by:mohansahu
ID: 35016084
Hi,

For changing the user home directory in to a specified path ,need to modify in vsftpd.conf file & add the below line to end of  vsftpd.conf file.

pam_service_name=vsftpd
userlist_enable=YES
tcp_wrappers=YES
local_root=/named
anon_root=/named


Cheers,
MS


~

0

Featured Post

Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Over the last ten+ years I have seen Linux configuration tools come and go. In the early days there was the tried-and-true, all-powerful linuxconf that many thought would remain the one and only Linux configuration tool until the end of times. Well,…
SSH (Secure Shell) - Tips and Tricks As you all know SSH(Secure Shell) is a network protocol, which we use to access/transfer files securely between two networked devices. SSH was actually designed as a replacement for insecure protocols that sen…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
Suggested Courses

647 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question