Re: [TCLUG:14791] FTP

To: tclug-list@mn-linux.org
Subject: Re: [TCLUG:14791] FTP
From: Bob Tanner <tanner@real-time.com>
Date: Thu, 16 Mar 2000 13:34:47 -0600
Cc: Nate Carlson <natecars@real-time.com>
In-Reply-To: <38D11EE6.658B8C21@iexposure.com>; from adam@iexposure.com on Thu, Mar 16, 2000 at 11:50:30AM -0600
Mail-Followup-To: tclug-list@mn-linux.org,Nate Carlson <natecars@wizard.real-time.com>
References: <38D11EE6.658B8C21@iexposure.com>

Quoting Adam Maloney (adam@iexposure.com):
> So I'm starting to get more webhosting clients that want FTP access to
> manage their own sites (with Frontpage...grumble)  How can I setup FTP
> so that when a user logs in they are restricted to their web directory? 
> Right now we made some permission changes so they can CD around but
> can't actually view anything.  I'd like to do a little better than this
> if possible.
> 

:-)

Make an entirely new box, put it on network where nothing else is critical.
IPChain the crap out of it, run an anal tripwire, backup the box complete
every night and EXCEPT it to be compromised.

This is if you want to run Linux, Apache+FP extension. The above is what we
had to do to support FP. And the steps we took to keep it somewhat secure.

I might be wrong, because I did not do all the work, but I believe you have to
have pretty open perm in order for FP to work right.

Nate, can you fill in the details?

-- 
Bob Tanner <tanner@real-time.com>       | Phone : (612)943-8700
http://www.real-time.com                | Fax   : (612)943-8500
Key fingerprint =  6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9

Follow-Ups:
- Re: [TCLUG:14791] FTP
  - From: Nate Carlson <natecars@real-time.com>
- Re: [TCLUG:14791] FTP
  - From: Bob Tanner <tanner@real-time.com>

References:
- FTP
  - From: Adam Maloney <adam@iexposure.com>

Prev by Date: Re: [TCLUG:14777] web stress test utilities
Next by Date: Re: [TCLUG:14791] FTP
Prev by thread: Re: [TCLUG:14791] FTP
Next by thread: Re: [TCLUG:14791] FTP
Index(es):
- Date
- Thread