The common answer from many people is to get a FTP package which provides
better security control than the one which comes with Tru64. Many suggested
wu-ftpd from www.wu-ftpd.org
Thank you all for your help.
Duc-Chi Tran (613) 951-3626 duc-chi.tran_at_statcan.ca
Chief, Systems Support Section / Chef, section du soutien des systèmes
Industry Measures & Analysis Division / Division des mesures et de l'analyse
des industries
Statistics Canada / Statistique Canada
Visit our Web Site / Visitez notre site
http://www.statcan.ca
For our employees, visit / Pour nos employés, visitez
http://www.imad.statcan.ca
> -----Original Message-----
> From: Tran, Duc-Chi - IMA/MAI
> Sent: November 19, 1999 12:41
> To: 'Digital Unix ListServ (E-mail)'
> Subject: Update: An account for people to FTP in, but not an
> ANONYMOUS FTP
>
> Dr. Tom Blinn wondered what had been my question. Sorry for the unclear
> message. The implicit question is "How to set up an account to do what I
> described".
>
> Here is an update.
>
> (1) FTP only
> I had tried /bin/false (before sending the first message), but it
> had not allowed me to FTP either. Marco Luchini pointed me to the error.
> I had to add /bin/false to the list of shells in /etc/shells for FTP to
> work. (Thank you Marco.) However, the account can still connect through
> Common Desktop Enviroenment. It just cannot bring up a terminal, but it
> can still use graphic tools such as the File Manager. So I still need help
> in this area.
>
> (2) Cannot cd outside the home directory.
> I still need help in this area. (Sorry again that the question was
> not clear. I was not talking about setting permission using chmod.)
>
> (3) One sub-directory to create files.
> Again, I failed to properly formulate my question. I was not talking
> about chown and chmod. I want to allow people to create only files (i.e. I
> want them only to FTP the files to the WRITE sub-directory), but not
> create sub-sub-directory in the WRITE sub-directory. I still need help in
> this area. However, if there is no easy solution, I can live without it.
>
> Thanks.
>
> -----Original Message-----
> From: Tran, Duc-Chi - IMA/MAI
> Sent: November 19, 1999 10:22
> To: Digital Unix ListServ (E-mail)
> Subject: An account for people to FTP in, but not an
> ANONYMOUS FTP
>
> Dear Guru:
>
> We would like to create an account with a valid name and password
> for a group of people to FTP their data into our machine. We do not want
> to use ANONYMOUS FTP. (We know these people.) Obviously, we want to limit
> this account to only 3 permissions:
>
> (1) FTP only (i.e. cannot do anything else)
> (2) Read permission only to its "home" directory and
> sub-directory (i.e. cannot cd to anywhere else)
> (3) Write to one specific directory under its "home" directory.
>
> Many thanks.
>
>
> Duc-Chi Tran (613) 951-3626 duc-chi.tran_at_statcan.ca
> Chief, Systems Support Section / Chef, section du soutien des
> systèmes
> Industry Measures & Analysis Division / Division des mesures et de
> l'analyse des industries
> Statistics Canada / Statistique Canada
> Visit our Web Site / Visitez notre site http://www.statcan.ca
> For our employees, visit / Pour nos employés, visitez
> http://www.imad.statcan.ca
>
>
Received on Fri Nov 19 1999 - 19:19:00 NZDT