1.\" Copyright (c) 1985, 1988, 1991, 1993
2.\" The Regents of the University of California. All rights reserved.
3.\"
4.\" Redistribution and use in source and binary forms, with or without
5.\" modification, are permitted provided that the following conditions
6.\" are met:
7.\" 1. Redistributions of source code must retain the above copyright
8.\" notice, this list of conditions and the following disclaimer.
--- 16 unchanged lines hidden (view full) ---
25.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30.\" SUCH DAMAGE.
31.\"
32.\" @(#)ftpd.8 8.2 (Berkeley) 4/19/94
33.\" $FreeBSD: head/libexec/ftpd/ftpd.8 99195 2002-07-01 02:30:11Z mdodd $
34.\"
35.Dd January 27, 2000
36.Dt FTPD 8
37.Os
38.Sh NAME
39.Nm ftpd
40.Nd Internet File Transfer Protocol server
41.Sh SYNOPSIS
42.Nm
43.Op Fl 46ADEMORSUdro
44.Op Fl l Op Fl l
45.Op Fl T Ar maxtimeout
46.Op Fl a Ar address
47.Op Fl p Ar file
48.Op Fl t Ar timeout
49.Sh DESCRIPTION
50.Nm Ftpd
51is the
52Internet File Transfer Protocol
53server process. The server uses the
54.Tn TCP
55protocol
56and listens at the port specified in the
57.Dq ftp
58service specification; see
59.Xr services 5 .
--- 216 unchanged lines hidden (view full) ---
276command is preceded by a Telnet "Interrupt Process" (IP)
277signal and a Telnet "Synch" signal in the command Telnet stream,
278as described in Internet RFC 959.
279If a
280STAT
281command is received during a data transfer, preceded by a Telnet IP
282and Synch, transfer status will be returned.
283.Pp
284.Nm Ftpd
285interprets file names according to the
286.Dq globbing
287conventions used by
288.Xr csh 1 .
289This allows users to utilize the metacharacters
290.Dq Li \&*?[]{}~ .
291.Pp
292.Nm Ftpd
293authenticates users according to six rules.
294.Pp
295.Bl -enum -offset indent
296.It
297The login name must be in the password data base
298and not have a null password.
299In this case a password must be provided by the client before any
300file operations may be performed.
301If the user has an S/Key key, the response from a successful USER
--- 76 unchanged lines hidden (view full) ---
378Make this directory owned by
379.Dq root
380and unwritable by anyone (mode 555).
381The files pwd.db (see
382.Xr passwd 5 )
383and
384.Xr group 5
385must be present for the
386.Xr ls
387command to be able to produce owner names rather than numbers.
388The password field in
389.Xr passwd
390is not used, and should not contain real passwords.
391The file
392.Pa ftpmotd ,
393if present, will be printed after a successful login.
394These files should be mode 444.
--- 52 unchanged lines hidden (view full) ---
447changes the default for ftp logins to that address.
448The 'user', 'statfile', 'welcome' and 'motd' fields may be left
449blank, or a single hypen '-' used to indicate that the default
450value is to be used.
451.Pp
452As with any anonymous login configuration, due care must be given
453to setup and maintenance to guard against security related problems.
454.Pp
455.Nm
456has internal support for handling remote requests to list
457files, and will not execute
458.Pa /bin/ls
459in either a chrooted or non-chrooted environment. The
460.Pa ~/bin/ls
461executable need not be placed into the chrooted tree, nor need the
462.Pa ~/bin
463directory exist.
464.Sh FILES
--- 25 unchanged lines hidden (view full) ---
490to create sockets with privileged port numbers. It maintains
491an effective user id of the logged in user, reverting to
492the super-user only when binding addresses to sockets. The
493possible security holes have been extensively
494scrutinized, but are possibly incomplete.
495.Sh HISTORY
496The
497.Nm
498command appeared in
499.Bx 4.2 .
500IPv6 support was added in WIDE Hydrangea IPv6 stack kit.
2.\" The Regents of the University of California. All rights reserved.
3.\"
4.\" Redistribution and use in source and binary forms, with or without
5.\" modification, are permitted provided that the following conditions
6.\" are met:
7.\" 1. Redistributions of source code must retain the above copyright
8.\" notice, this list of conditions and the following disclaimer.
--- 16 unchanged lines hidden (view full) ---
25.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30.\" SUCH DAMAGE.
31.\"
32.\" @(#)ftpd.8 8.2 (Berkeley) 4/19/94
33.\" $FreeBSD: head/libexec/ftpd/ftpd.8 99195 2002-07-01 02:30:11Z mdodd $
34.\"
35.Dd January 27, 2000
36.Dt FTPD 8
37.Os
38.Sh NAME
39.Nm ftpd
40.Nd Internet File Transfer Protocol server
41.Sh SYNOPSIS
42.Nm
43.Op Fl 46ADEMORSUdro
44.Op Fl l Op Fl l
45.Op Fl T Ar maxtimeout
46.Op Fl a Ar address
47.Op Fl p Ar file
48.Op Fl t Ar timeout
49.Sh DESCRIPTION
50.Nm Ftpd
51is the
52Internet File Transfer Protocol
53server process. The server uses the
54.Tn TCP
55protocol
56and listens at the port specified in the
57.Dq ftp
58service specification; see
59.Xr services 5 .
--- 216 unchanged lines hidden (view full) ---
276command is preceded by a Telnet "Interrupt Process" (IP)
277signal and a Telnet "Synch" signal in the command Telnet stream,
278as described in Internet RFC 959.
279If a
280STAT
281command is received during a data transfer, preceded by a Telnet IP
282and Synch, transfer status will be returned.
283.Pp
284.Nm Ftpd
285interprets file names according to the
286.Dq globbing
287conventions used by
288.Xr csh 1 .
289This allows users to utilize the metacharacters
290.Dq Li \&*?[]{}~ .
291.Pp
292.Nm Ftpd
293authenticates users according to six rules.
294.Pp
295.Bl -enum -offset indent
296.It
297The login name must be in the password data base
298and not have a null password.
299In this case a password must be provided by the client before any
300file operations may be performed.
301If the user has an S/Key key, the response from a successful USER
--- 76 unchanged lines hidden (view full) ---
378Make this directory owned by
379.Dq root
380and unwritable by anyone (mode 555).
381The files pwd.db (see
382.Xr passwd 5 )
383and
384.Xr group 5
385must be present for the
386.Xr ls
387command to be able to produce owner names rather than numbers.
388The password field in
389.Xr passwd
390is not used, and should not contain real passwords.
391The file
392.Pa ftpmotd ,
393if present, will be printed after a successful login.
394These files should be mode 444.
--- 52 unchanged lines hidden (view full) ---
447changes the default for ftp logins to that address.
448The 'user', 'statfile', 'welcome' and 'motd' fields may be left
449blank, or a single hypen '-' used to indicate that the default
450value is to be used.
451.Pp
452As with any anonymous login configuration, due care must be given
453to setup and maintenance to guard against security related problems.
454.Pp
455.Nm
456has internal support for handling remote requests to list
457files, and will not execute
458.Pa /bin/ls
459in either a chrooted or non-chrooted environment. The
460.Pa ~/bin/ls
461executable need not be placed into the chrooted tree, nor need the
462.Pa ~/bin
463directory exist.
464.Sh FILES
--- 25 unchanged lines hidden (view full) ---
490to create sockets with privileged port numbers. It maintains
491an effective user id of the logged in user, reverting to
492the super-user only when binding addresses to sockets. The
493possible security holes have been extensively
494scrutinized, but are possibly incomplete.
495.Sh HISTORY
496The
497.Nm
498command appeared in
499.Bx 4.2 .
500IPv6 support was added in WIDE Hydrangea IPv6 stack kit.