vsftpd How Do I stop users from deleteing files.
Anthony Messina
amessina at messinet.com
Mon Jun 19 15:16:52 UTC 2006
Jeroen van Meeuwen wrote:
> Paul Howarth wrote:
>> On Mon, 2006-06-19 at 14:26 +0200, Leonard den Ottolander wrote:
>>> Hello Paul,
>>>
>>> On Mon, 2006-06-19 at 08:39 +0100, Paul Ward wrote:
>>>> I want to be able to log in as ftp1 and see a chrooted enviroment
>>>> where I can upload and download from but not delete
>>> Such behaviour can not be accomplished with standard unix permissions.
>>> You'll have to use access control lists (ACLs) for this (with which I
>>> have no experience). See man acl for a start.
>>
>> It should be possible to do this using the configuration options of the
>> ftp server itself. It can certainly be done for proftpd in that way.
>>
>> Paul.
>>
>
> I don't think vsftpd is able to have such 'advanced' configuration, it
> is a Very Simple FTPd, as well as it is a Very Secure FTPd.
>
> kanarip.
>
are logins necessary for you? i'm not sure if this would help you, but
it may get you started.
i use the following /etc/vsftpd/vsftpd.conf and users are able to upload
files to the "incoming" directory, but nowhere else. they cannot delete
files from the "incoming" directory. the "incoming" directory has write
permissions for the user "ftp" and the whole server is set up for
anonymous only. make sure that the directories that users aren't
supposed to write in are owned by someone other than the "ftp" user.
listen=YES
max_clients=10
max_per_ip=3
anonymous_enable=YES
local_enable=NO
write_enable=YES
anon_upload_enable=YES
anon_mkdir_write_enable=NO
anon_other_write_enable=NO
anon_world_readable_only=YES
connect_from_port_20=YES
hide_ids=YES
pasv_min_port=50000
pasv_max_port=50050
xferlog_enable=YES
ls_recurse_enable=NO
ascii_download_enable=NO
async_abor_enable=YES
one_process_model=YES
idle_session_timeout=120
data_connection_timeout=300
accept_timeout=60
connect_timeout=60
anon_max_rate=65000
banner_file=/etc/vsftpd/banner
dirmessage_enable=YES
nopriv_user=ftp
hide_file={aquota.*,lost+found}
deny_file={aquota.*,lost+found}
--
Anthony
http://messinet.com
http://messinet.com/~amessina/gallery
8F89 5E72 8DF0 BCF0 10BE 9967 92DC 35DC B001 4A4E
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20060619/9df9f484/attachment-0001.sig>
More information about the fedora-list
mailing list