05-23-2008
Restrict FTP access to a single directory for only one user
Hi All,
Thanks for your support. But still my issue was not resolved. I will explain you what i need to do exactly.
Basically i have a solaris9 server. In which i have a directory called "/tftpboot/" in which i am storing configuration files of the network devices of some domain(switches/routers).
I will get the configuration backup of those network devices using FTP from my server. while doing FTP i need to restrict the FTP session for a single user and also that specific user can only FTP the configuration files to the directory "/tftpboot/". so others should not initiate a FTP session from my server to the network devices in my domain(only that specific user can initiate FTP session). One more thing is "/tftpboot/" directory will be used by other users who are storing configuration files of other domain network devices.
so now how can i restrict the specific user to do FTP from /tftpboot/ to the devices.
Please help me in this.
thanks,
santhosh
10 More Discussions You Might Find Interesting
1. HP-UX
Hi,
Please any one can help me to know that how we can restrict a user group to access the kernel at all. (0 Replies)
Discussion started by: harishankar
0 Replies
2. Red Hat
Hi all,
I am using RHEL 5.0
I need a user say test to have full access to two directories, say /tmp1 & /tmp2 only other than his home directory.
I do not want to change his login shell which is ksh or bash by default.
Moreover, he should not even have read access of other directories.
... (10 Replies)
Discussion started by: vikas027
10 Replies
3. UNIX for Dummies Questions & Answers
Hi!
i'm using FreeBSD 6.2 and hosting my pc to frens
in particular of sensitive information being saved to the PC, i would like to know is it possible for me to restrict user access to their /home dir. only?
and also, i wanted to restrict them listing files under /etc
thanks all! (10 Replies)
Discussion started by: rdns
10 Replies
4. UNIX for Advanced & Expert Users
Hi all,
How can i give ftp access to single user on solaris9 system? others should not have the ftp access. i know about ftpusers file in /etc/ftpd but still what about if so many new users are created daily?
And now for that single user how can we restict him to ftp the files only from... (2 Replies)
Discussion started by: santhoshkumar_d
2 Replies
5. UNIX for Dummies Questions & Answers
specifically - I don't need to restrict a user to a single directory - but I want them to be "ROOTED" to their home directory.
so if my home directory is /home/onlyme
when I login - if I do a pwd - I want to see:
/
but in real life I will be in /home/onlyme - it just appears as root to... (10 Replies)
Discussion started by: itobenon
10 Replies
6. Red Hat
Hi,
I had installed vsftp in rhel5 and i want to restrict all the local users from accessing the ftp.
i want to allow specific users to access the ftp server.
Request you to please help.
Thanks & regards
Arun (1 Reply)
Discussion started by: Arun.Kakarla
1 Replies
7. Solaris
I am using Solaris 10 on SPARC.
SunOS ddw 5.10 Generic_139555-08 sun4u sparc SUNW,SPARC-Enterprise
I have put some text files in a directory '/u01/network'
I want to create a ftp user which can just read the files in the network directory. The ftp user shouldn't be able to navigate or see... (4 Replies)
Discussion started by: fahdmirza
4 Replies
8. UNIX for Dummies Questions & Answers
Hi All,
How can we restrict a particular user access to a particular shell in solaris 10.
Thanks in Advance. (5 Replies)
Discussion started by: rama krishna
5 Replies
9. Red Hat
Hi there
I have an application user on my system that wants accesses to these file systems as such:
rwx:
/SAPO
/SAPS12
/R3_888
/R3_888B
/R3_888F
/R3_888R
r:
/usr/sap
these are the existing FS permissions:ownerships:
# ls -ld /SAPO (9 Replies)
Discussion started by: hedkandi
9 Replies
10. Solaris
Hi,
I have searched "Limit FTP user's access to a specific directory" subject for 3 days. I found proftp and vsftp but i couldn't compile and install. Is there any idea. Please suggest. (6 Replies)
Discussion started by: hamurd
6 Replies
LEARN ABOUT CENTOS
ftpservers
ftpservers(4) File Formats ftpservers(4)
NAME
ftpservers - FTP Server virtual hosting configuration file
SYNOPSIS
/etc/ftpd/ftpservers
DESCRIPTION
The ftpservers file is used to configure complete virtual hosting. In contrast to limited virtual hosting, complete virtual hosting allows
separate configuration files to be specified for each virtual host.
The set of configuration files for each virtual host are placed in their own directory. The ftpservers file associates the address of each
virtual host with the directory its configuration files are stored in. The virtual host configuration files must be named:
ftpaccess Virtual host's access file
ftpusers Restricts the accounts that can use the virtual host
ftpgroups Virtual hosts enhanced group access file
ftphosts Allow or deny usernames access to the virtual host
ftpconversions Customize conversions available from the virtual host
You do not need to put every file in each virtual host directory. If you want a virtual host to use the master copy of a file, then do not
include it in the virtual host directory. If the file is not included, the master copy from the /etc/ftpd directory will be used.
The file names must match exactly. If you misspell any of them or name them differently, the server will not find them, and the server
will use the master copy instead.
The ftpaddhost utility is an administrative tool to configure virtual hosts. See ftpaddhost(1M).
File Format
There are two fields to each entry in the ftpservers file:
address directory-containing-configuration-files
For example:
10.196.145.10 /etc/ftpd/virtual-ftpd/10.196.145.10
10.196.145.200 /etc/ftpd//virtual-ftpd/10.196.145.200
some.domain INTERNAL
When an FTP client connects to the FTP Server, in.ftpd(1M) tries to match the IP address to which the FTP client connected with one found
in the ftpservers file.
The address can be an IPv4 or IPv6 address, or a hostname.
If a match is found, The FTP server uses any configuration files found in the associated directory.
If a match is not found, or an invalid directory path is encountered, the default paths to the configuration files are used. The use of
INTERNAL in the example above fails the check for a specific directory, and the master configuration files will be used.
Either the actual IP address or a specific hostname can be used to specify the virtual host. It is better to specify the actual IP of the
virtual host, as it reduces the need for a domain lookup and eliminates DNS security related naming issues, for example:
10.196.145.20 /etc/ftpd/config/faqs.org/
ftp.some.domain /etc/ftpd/config/faqs.org/
Lines that begin with a # sign are treated as comment lines and are ignored.
FILES
/etc/ftpd/ftpservers
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWftpr |
+-----------------------------+-----------------------------+
|Interface Stability |External |
+-----------------------------+-----------------------------+
SEE ALSO
ftpaddhost(1M), in.ftpd(1M), ftpaccess(4), ftpconversions(4), ftpgroups(4), ftphosts(4), ftpusers(4), attributes(5)
SunOS 5.10 1 May 2003 ftpservers(4)