Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 395
  • Last Modified:

vsftpd jail in rhel and mysql replica

Dear Experts:

We are having Sugar CRM deployed on LAMP on premise which is of production we would like to share the present developed custom code and the mysql database for the new service provider to review the code and database for which Have created the user with the home directory in different path /var/www/html/ws1 and copied all the directory /sub-directory and files onto this and wanted to give the ftp access to this.

Please suggest me is this a right way, but want to jail the user limiting only to this home. can any body help how to do this.

2, planned to create a new database and take the existing production server database and import to this new database, please suggest me is this correct way of doing.
0
D_wathi
Asked:
D_wathi
  • 2
1 Solution
 
omarfaridCommented:
Below will help in restricting user from browsing / accessing other directories on the system. The line below are taken from the man page:

System user accounts normally have the ability to browse the complete filesystem as though they were logged onto the terminal (depending on directory permissions). To block all users from this activity, they can be chroot jailed into their home directories. This means they will be locked inside their own home directories and can't view or access the rest of the filesystem.

chroot_local_user=YES

Note !!       Using chroot_local_user is handy for allowing users to access their "public_html" directories on a publicly shared web server.

Users can also be selectively jailed to their home directories.

chroot_list_enable=YES
chroot_list_file=/etc/vsftpd/chroot_list

Note !!       If "chroot_list_enable=YES", then the /etc/vsftpd.chroot_list file contains a selective list of users that are jailed to their home directories. If "chroot_local_user=YES" is also set, then the entries in the /etc/vsftpd.chroot_list are users that are not jailed; the opposite effect."
0
 
D_wathiAuthor Commented:
thank you
0
 
omarfaridCommented:
Welcome :)
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now