Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: FTPD, CHROOT, SMF and non-root user
Top Forums UNIX for Dummies Questions & Answers FTPD, CHROOT, SMF and non-root user Post 95553 by blowtorch on Thursday 12th of January 2006 09:30:02 AM
Old 01-12-2006
I checked the Solaris 10 chroot man page. And it says quite clearly that only superuser can use chroot. So it would appear that you will have to run the ftp daemon as root if you want to chroot.
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Standalone FTPD within SMF

Hello We are trying to run the WU_FTPD demon in standalone mode (-S argument) via an SMF service. Prior to SMF, this was achieved by simply commenting out the FTP line within the inetd.conf file. However, within SMF, I believe we need to carry out the following activities: i) Remove the FTP... (0 Replies)
Discussion started by: CowsUdders
0 Replies

2. IP Networking

Change the root directory for apache, sshd and ftpd

Helo ! I want to do something and I don't know where to start... I want to make a small web hosting server (just for me and a few friends) and for the sake of learning I'd like to make an account for every user. The thing is that I want everyone to log into the server and to be put in his home... (3 Replies)
Discussion started by: Sergiu-IT
3 Replies

3. UNIX Desktop Questions & Answers

how to check if a file ftpd to mainframe was actually ftpd

Hi All, I am ftping a file from unix to mainframe. Now the problem arises that i want to check if the file was ftpd or not. Is there any way i could do this? (4 Replies)
Discussion started by: vikas.rao11
4 Replies

4. UNIX for Dummies Questions & Answers

etc/ftpd/ftpusers & philosophy of disabling root

we don't have root in our /etc/ftpd/ftpusers and we are getting some pushback from the external auditors about this - specifically as a security risk if a "sniffer" were to catch roots password at the ftp. What do most shops do - disable ftp for root? What do you do to get things to the... (3 Replies)
Discussion started by: LisaS
3 Replies

5. UNIX for Dummies Questions & Answers

How to allow access to some commands having root privleges to be run bu non root user

hi i am new to unix and i have abig task. i have to \run particular commands having root privileges from a non root user. i know sudo is one of the way but i need sum other approach kindly help Thanks (5 Replies)
Discussion started by: suryashikha
5 Replies

6. UNIX for Dummies Questions & Answers

Sudo to delegate permission from non-root user to another non-root user

I've been through many threads before i decide to create a separate thread. I can't really find the solution to my (simple) problem. Here's what I'm trying to achieve: As "canar" user I want to run a command, let's say "/opt/ocaml/bin/ocaml" as "duck" user. The only to achieve this is to... (1 Reply)
Discussion started by: canar
1 Replies

7. UNIX for Advanced & Expert Users

Root and non-root user not able to delete the file

Hi!! one strange problem occurred with my RHEL 5 box. i'm having logs folder with ownership of non-root user. Created some files with root user under logs folder. here is the scene: -rw-r----- 1 root root 1048227 Feb 28 12:34 SystemOut_13.02.28_12.34.10.log -rw-r----- 1 root root ... (6 Replies)
Discussion started by: sukhdip
6 Replies

8. Shell Programming and Scripting

How to give root access to non root user?

Currently in my system Red Hat is installed. And Many user connect to my machine via SSH Techia Terminal. I want to give some users a root level access. Can anyone please help me how to make it possible. I too searched on the Google but didn't find the correct way Regards ADI (4 Replies)
Discussion started by: adisky123
4 Replies

9. Linux

Configuring wu-ftpd for ftp user login

I am having trouble configuring wu-ftpd on my system to allow a real user to login. I am not sure where to start. I'll try to give as much information as possible. Here is a log of what happened. ftp> open 192.168.4.110 Connected to 192.168.4.110 220 192.168.4.110 FTP server (Version... (0 Replies)
Discussion started by: mnmonu
0 Replies

10. Solaris

How to get user environment variable for smf daemon?

I am new to smf...I am trying to create new smf service and starting a Python daemon script. The python daemon script will call few other scripts internally as subprocess. The scripts which are called by daemon are unknown of user environment variables. How can I execute smf service in user... (1 Reply)
Discussion started by: Sivaramakrishna
1 Replies

LEARN ABOUT MINIX

ftpd

FTPD(8) 						      System Manager's Manual							   FTPD(8)

NAME

       ftpd, in.ftpd, setup.anonftp - DARPA Internet File Transfer Protocol server

SYNOPSIS

       ftp stream tcp nowait root /usr/sbin/in.ftpd in.ftpd
       tcpd ftp /usr/sbin/in.ftpd

DESCRIPTION

       Ftpd  is the DARPA Internet File Transfer Prototocol server process.  The server uses the TCP protocol and listens at the port specified in
       the ``ftp'' service specification; see services(5).

       The ftp server currently supports the following ftp requests;  case is not distinguished.

       Request	      Description
       ABOR	      abort previous command
       ACCT	      specify account (ignored)
       ALLO	      allocate storage (vacuously)
       APPE	      append to a file
       CDUP	      change to parent of current working directory
       CWD	      change working directory
       DELE	      delete a file
       HELP	      give help information
       LIST	      give list files in a directory (``ls -lA'')
       MKD	      make a directory
       MODE	      specify data transfer mode
       NLST	      give name list of files in directory (``ls'')
       NOOP	      do nothing
       PASS	      specify password
       PASV	      prepare for server-to-server transfer
       PORT	      specify data connection port
       PWD	      print the current working directory
       QUIT	      terminate session
       RETR	      retrieve a file
       RMD	      remove a directory
       RNFR	      specify rename-from file name
       RNTO	      specify rename-to file name
       STOR	      store a file
       STOU	      store a file with a unique name
       STRU	      specify data transfer structure
       TYPE	      specify data transfer type
       USER	      specify user name
       XCUP	      change to parent of current working directory
       XCWD	      change working directory
       XMKD	      make a directory
       XPWD	      print the current working directory
       XRMD	      remove a directory

       The remaining ftp requests specified in Internet RFC 959 are recognized, but not implemented.

       The ftp server will abort an active file transfer only when the ABOR command is preceded by a Telnet "Interrupt Process" (IP) signal and  a
       Telnet "Synch" signal in the command Telnet stream, as described in Internet RFC 959.

       Ftpd  interprets  file  names  according  to  the ``globbing'' conventions used by csh(1).  This allows users to utilize the metacharacters
       ``*?[]{}~''.

       Ftpd authenticates users according to three rules.

       1)     The user name must be in the password data base, /etc/passwd, and not have a null password.  In this case a password  must  be  pro-
	      vided by the client before any file operations may be performed.

       2)     The user name must not appear in the file /etc/ftpusers.

       3)     If the user name is ``anonymous'' or ``ftp'', an anonymous ftp account must be present in the password file (user ``ftp'').  In this
	      case the user is allowed to log in by specifying any password (by convention this is given as the client host's name).

       In the last case, ftpd takes special measures to restrict the client's access privileges.  The server performs a chroot(2) command  to  the
       home  directory	of  the  ``ftp''  user.  In order that system security is not breached, it is recommended that the ``ftp'' subtree be con-
       structed with care;  the following rules are recommended.

       ~ftp)  Make the home directory owned by ``ftp'' and unwritable by anyone.

       ~ftp/bin)
	      Make this directory owned by the super-user and unwritable by anyone.  The program ls(1) must be present to support  the	list  com-
	      mands.  This program should have mode 111.

       ~ftp/etc)
	      Make  this  directory owned by the super-user and unwritable by anyone.  The files passwd(5) and group(5) must be present for the ls
	      command to work properly.  These files should be mode 444.

       ~ftp/pub)
	      Make this directory mode 755 and owned by the super-user.  Create directories in it owned by users if those users want to manage	an
	      anonymous ftp directory.

       ~ftp/pub/incoming)
	      Optionally  create  this	directory  for	anonymous  uploads.  Make it mode 777.	The FTP daemon will create files with mode 266, so
	      remote users can write a file, but only local users can do something with it.

       The script setup.anonftp can be used to create or check an anonymous FTP tree.

SEE ALSO

       ftp(1).

BUGS

       The anonymous account is inherently dangerous and should avoided when possible.

																	   FTPD(8)
All times are GMT -4. The time now is 11:27 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy