[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 323
  • Last Modified:

ftp configuration

Hello experts,
             I have a doubt regarding ftp. I installed and setup vsftpd on linux. I want to configure such a way that have 3 users A,B and C. They have home directories. Have a folder in / named A and inside it two folders B and C. A can ftp access to A,B and C. But B and C have access to their own B and C folder only. How to setup ftp access like this. Thanks in advance.
0
jacobbbc
Asked:
jacobbbc
1 Solution
 
GpramodkumarCommented:
If you are settingup the ftp share in windows then it is similar as providing sharing and security permissions for A on A,B,C folders and B 's access to folder B and C's access to folder C.
0
 
jacobbbcAuthor Commented:
@Gpramodkumar: my os is linux....
0
 
torimarCommented:
The usual setup is to chroot ftp users to their home directories. For security reasons, this is highly recommended.

If you want users to be able to access files somewhere else in the directory tree, the trick I know of is to mount these folders with the '-bind' command. The trick is described here:
http://roglev.info/?p=41
http://www.ducea.com/2006/07/27/allowing-ftp-access-to-files-outside-the-home-directory-chroot/

In your case, you would have to create 3 different mountpoints, one for each ftp user, and you would also have to add them to the /etc/fstab file.
0
Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

 
maxalarieCommented:
I guess you could create  your direcotries  and chamge the home folders of A,B and C.

/A would be the home folder of A
/A/B home folder of user B
/A/C home folder of user C
that way, A  have an access to to B and C stuff.

Open vsftpd configuration file - /etc/vsftpd/vsftpd.conf
check the option : chroot_local_user=YES


0
 
jacobbbcAuthor Commented:
@torimar: Is it not possible without mounting?
0
 
jacobbbcAuthor Commented:
@maxalarie: The folder A is not user A's home folder.
0
 
torimarCommented:
>> "@torimar: Is it not possible without mounting?"

There are three conceivable ways of dealing with this issue:

1. Not to chroot your users and give them access to the complete filesystem:-> a security disaster, impossible.
2. To set the user's home folders to be identical with their FTP root folders, as suggested by maxalarie above:-> not practical for you.
3. The mount/bind trick.

I personally do not know of any other way, and an online research did not yield one either.
Have you tested the mount/bind trick? It means just typing one line in the terminal. If you find it working, it means only three more lines in the fstab. That's less work to do than in many other configuration tasks on Linux...
0
 
ind_selvaCommented:
change user's home directory.
#usermod -d /A a
#usermod -d /A/B b
#usermod -d /A/C c
0
 
mohansahuCommented:
Hi,

For changing the user home directory in to a specified path ,need to modify in vsftpd.conf file & add the below line to end of  vsftpd.conf file.

pam_service_name=vsftpd
userlist_enable=YES
tcp_wrappers=YES
local_root=/named
anon_root=/named


Cheers,
MS


~

0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now