| ftpchroot.5 (109893) | ftpchroot.5 (110036) |
|---|---|
| 1.\" Copyright (c) 2003 FreeBSD Project 2.\" All rights reserved. 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. --- 8 unchanged lines hidden (view full) --- 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" | 1.\" Copyright (c) 2003 FreeBSD Project 2.\" All rights reserved. 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. --- 8 unchanged lines hidden (view full) --- 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" |
| 25.\" $FreeBSD: head/libexec/ftpd/ftpchroot.5 109893 2003-01-26 19:02:56Z yar $ | 25.\" $FreeBSD: head/libexec/ftpd/ftpchroot.5 110036 2003-01-29 10:07:27Z yar $ |
| 26.\" 27.Dd January 26, 2003 28.Dt FTPCHROOT 5 29.Os 30.Sh NAME 31.Nm ftpchroot 32.Nd list users and groups subject to FTP access restrictions 33.Sh DESCRIPTION --- 27 unchanged lines hidden (view full) --- 61As a special case, a single 62.Ql \&@ 63in this field will match any user. 64A username is specified otherwise. 65.Pp 66The optional second field describes the directory for the user 67or each member of the group to be locked up in using 68.Xr chroot 2 . | 26.\" 27.Dd January 26, 2003 28.Dt FTPCHROOT 5 29.Os 30.Sh NAME 31.Nm ftpchroot 32.Nd list users and groups subject to FTP access restrictions 33.Sh DESCRIPTION --- 27 unchanged lines hidden (view full) --- 61As a special case, a single 62.Ql \&@ 63in this field will match any user. 64A username is specified otherwise. 65.Pp 66The optional second field describes the directory for the user 67or each member of the group to be locked up in using 68.Xr chroot 2 . |
| 69Be it omitted, the user's login directory will be used. |
|
| 69If it is not an absolute pathname, then it will be relative 70to the user's login directory. | 70If it is not an absolute pathname, then it will be relative 71to the user's login directory. |
| 71Be this field omitted, the user's login directory will be used. | 72If it contains the 73.Qq \&/./ 74seprator, 75.Xr ftpd 8 76will treat its left-hand side as the name of the directory to do 77.Xr chroot 2 78to, and its right-hand side to change the current directory to afterwards. |
| 72.Sh FILES 73.Bl -tag -width /etc/ftpchroot -compact 74.It Pa /etc/ftpchroot 75.El 76.Sh EXAMPLES 77These lines in 78.Nm 79will lock up the user 80.Qq webuser 81and each member of the group 82.Qq hostee 83in their respective login directories: 84.Bd -literal -offset indent 85webuser 86@hostee 87.Ed 88.Pp | 79.Sh FILES 80.Bl -tag -width /etc/ftpchroot -compact 81.It Pa /etc/ftpchroot 82.El 83.Sh EXAMPLES 84These lines in 85.Nm 86will lock up the user 87.Qq webuser 88and each member of the group 89.Qq hostee 90in their respective login directories: 91.Bd -literal -offset indent 92webuser 93@hostee 94.Ed 95.Pp |
| 89And this line will lock up the user | 96And this line will tell 97.Xr ftpd 8 98to lock up the user |
| 90.Qq joe 91in | 99.Qq joe 100in |
| 92.Pa /var/spool/ftp : | 101.Pa /var/spool/ftp 102and then to change the current directory to 103.Pa /joe , 104which is relative to the session's new root: |
| 93.Bd -literal -offset indent | 105.Bd -literal -offset indent |
| 94joe /var/spool/ftp | 106joe /var/spool/ftp/./joe |
| 95.Ed 96.Pp 97And finally the following line will lock up every user connecting 98through FTP in his respective 99.Pa \&~/public_html , 100thus lowering possible impact on the system 101from intrinsic insecurity of FTP: 102.Bd -literal -offset indent 103@ public_html 104.Ed 105.Sh SEE ALSO 106.Xr chroot 2 , 107.Xr group 5 , 108.Xr passwd 5 , 109.Xr ftpd 8 . | 107.Ed 108.Pp 109And finally the following line will lock up every user connecting 110through FTP in his respective 111.Pa \&~/public_html , 112thus lowering possible impact on the system 113from intrinsic insecurity of FTP: 114.Bd -literal -offset indent 115@ public_html 116.Ed 117.Sh SEE ALSO 118.Xr chroot 2 , 119.Xr group 5 , 120.Xr passwd 5 , 121.Xr ftpd 8 . |