Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: ftp-directory
Top Forums UNIX for Dummies Questions & Answers ftp-directory Post 56 by Neo on Tuesday 3rd of October 2000 12:34:34 PM
Old 10-03-2000
I was not able to fully understand your question or configuration so the reply will be 'fuzzy' based on fuzzy
knowledge.
<P>
There are many way to restrict access to directories and
subdirectories. One is using permissions (as you discuss briefly) another is the chroot command, which will comletely change the root 'of the tree'.
<P>
Normally, when adminstrators want remote users to have on
certain commands and access they change the root directory
of the users and provide them with a subject of the commands they need in a custom bin directory. So,
instead of trying to restrict users to only a certain part
of a large system; they are provided only access to the
commands they need. This is much more secure, safer, and
easier to manage by far.
<P>

<P>
Recommendation: Check out the chroot() command and set up an environment for your 'guest users' using this strategy.


 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

ftp a directory

How does one ftp an entire directory from one Solaris 5.9 machine to another with out moving one file at a time? (4 Replies)
Discussion started by: DarkLord
4 Replies

2. UNIX for Dummies Questions & Answers

Downloading whole directory with FTP

Is it possible using FTP to download a whole directory and all subdirectories at once without having to go through every single file? Thanks, Tom (4 Replies)
Discussion started by: Pokeyzx
4 Replies

3. UNIX for Dummies Questions & Answers

can we ftp a directory

Hi guyz, Is there any way to ftp a whole directory structure. I mean is there any way using which I can get the whole directory ftpied including the subdirectories Thanks and regards, Gauravv (17 Replies)
Discussion started by: gauravgoel
17 Replies

4. Solaris

ftp default directory

how to change the default login directory for a specified user when ftp to unix machine. (1 Reply)
Discussion started by: mm00123
1 Replies

5. AIX

ftp mget directory

Hi, I have searched everywhere for an answer to this question but couldn't find one so I ask it here. From an AIX 5.3 machine I ftp to another AIX 5.3 server. I want to get all files and only files in a directory. This directory has a subdirectory with files in it. In ftp, I enter the... (5 Replies)
Discussion started by: bheinsius
5 Replies

6. Shell Programming and Scripting

FTP files from different directory from remote server to one directory in local

Hi All, I want to search for .log files from folders and sub folders in remote server and FTP them to one particular folder in the local machine. I dont want to copy the entire directory tree structure, just have to take all the .log files from all the folders by doing a recursive search from the... (3 Replies)
Discussion started by: dassv
3 Replies

7. Shell Programming and Scripting

Is it possible to move a directory using ftp??

Hi all, Is it possible to move a directory using ftp service?? (2 Replies)
Discussion started by: eeegopikannan
2 Replies

8. Shell Programming and Scripting

FTP from one directory to another using perl

Hi All I am stuck with a problem and i want your help, I have two directories dir1 and dir2 The files present in dir1 is a1,a2 a3 a4 What i want to is to FTP the files present in the dir1 to dir2 (with .txt extension at the end.) with the help of the Perl. The output expected is The... (12 Replies)
Discussion started by: parthmittal2007
12 Replies

9. Shell Programming and Scripting

ftp whole directory

HI Guys, I have downloaded the oracle binaries from oracle.com, i have unziped them in a directory say OWB. I have to copy them to my windows server so i have ran the ftp command. It looks like i can ftp whole directory. Can you please get me the command to get all the files and... (7 Replies)
Discussion started by: guddu_12
7 Replies

10. Shell Programming and Scripting

Replicate remote directory to local directory with ftp

I have system that generate files every 1 hours , i only have ftp connection from my local server to remote . $ ls -al -rw-r--r-- 1 water None 0 Feb 7 18:09 a.0800 -rw-r--r-- 1 water None 0 Feb 7 18:09 a.0900 -rw-r--r-- 1 water None 0 Feb 7 18:09 a.1000 is there any perl / php... (3 Replies)
Discussion started by: before4
3 Replies

LEARN ABOUT FREEBSD

chroot

CHROOT(2)						      BSD System Calls Manual							 CHROOT(2)

NAME

     chroot -- change root directory

LIBRARY

     Standard C Library (libc, -lc)

SYNOPSIS

     #include <unistd.h>

     int
     chroot(const char *dirname);

DESCRIPTION

     The dirname argument is the address of the pathname of a directory, terminated by an ASCII NUL.  The chroot() system call causes dirname to
     become the root directory, that is, the starting point for path searches of pathnames beginning with '/'.

     In order for a directory to become the root directory a process must have execute (search) access for that directory.

     It should be noted that chroot() has no effect on the process's current directory.

     This call is restricted to the super-user.

     Depending on the setting of the 'kern.chroot_allow_open_directories' sysctl variable, open filedescriptors which reference directories will
     make the chroot() fail as follows:

     If 'kern.chroot_allow_open_directories' is set to zero, chroot() will always fail with EPERM if there are any directories open.

     If 'kern.chroot_allow_open_directories' is set to one (the default), chroot() will fail with EPERM if there are any directories open and the
     process is already subject to the chroot() system call.

     Any other value for 'kern.chroot_allow_open_directories' will bypass the check for open directories

RETURN VALUES

     Upon successful completion, the value 0 is returned; otherwise the value -1 is returned and the global variable errno is set to indicate the
     error.

ERRORS

     The chroot() system call will fail and the root directory will be unchanged if:

     [ENOTDIR]		A component of the path name is not a directory.

     [EPERM]		The effective user ID is not the super-user, or one or more filedescriptors are open directories.

     [ENAMETOOLONG]	A component of a pathname exceeded 255 characters, or an entire path name exceeded 1023 characters.

     [ENOENT]		The named directory does not exist.

     [EACCES]		Search permission is denied for any component of the path name.

     [ELOOP]		Too many symbolic links were encountered in translating the pathname.

     [EFAULT]		The dirname argument points outside the process's allocated address space.

     [EIO]		An I/O error occurred while reading from or writing to the file system.

SEE ALSO

     chdir(2), jail(2)

HISTORY

     The chroot() system call appeared in 4.2BSD.  It was marked as ``legacy'' in Version 2 of the Single UNIX Specification (``SUSv2''), and was
     removed in subsequent standards.

BUGS

     If the process is able to change its working directory to the target directory, but another access control check fails (such as a check for
     open directories, or a MAC check), it is possible that this system call may return an error, with the working directory of the process left
     changed.

SECURITY CONSIDERATIONS

     The system have many hardcoded paths to files where it may load after the process starts.	It is generally recommended to drop privileges
     immediately after a successful chroot call, and restrict write access to a limited subtree of the chroot root, for instance, setup the sand-
     box so that the sandboxed user will have no write access to any well-known system directories.

BSD
								  January 3, 2012							       BSD
All times are GMT -4. The time now is 01:35 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy