From: Connie.Zolg@dana.com
Date: Thu Mar 01 2007 - 15:55:04 EST
Thanks to James Perry for the following:
What I have had to do for similar issues is to make a directory under
/home/jaugust and soft-link inbound back to that directory under jaugust.
I ended up adding a guestuser statement to /etc/ftpd/ftpaccess (not
documented in the man page...) for CAN004, removed peartree from the
guestgroup statement, and added the 2 users to /etc/group's entry for
peartree .
Thanks ...
Connie Zolg
Dana Corporation
Dana Information Technology, LLC
connie.zolg@dana.com
419.482.2158
419.367.2827 (cell)
Connie Zolg/GITG/Dana
02/27/2007 03:01 PM
To
hpux-admin@dutchworks.nl
cc
Subject
help on "chroot'ed" ftp
Here's the situation:
There is a chroot'ed ftp set up for
/psDEV/data/perm/interface/U2PSPQ/peartree
Here's part of the /etc/ftpd/ftpaccess:
guestgroup guest gpsftp peartree sqlserver
.
upload /psDEV/data/perm/interface/U2PSPQ/peartree no nodirs
upload /psDEV/data/perm/interface/U2PSPQ/peartree/inbound * yes psoft
peartree 0700 nodirs
User CAN004 is the only user in group peartree and all files under
inbound are owned by CAN004:peartree
User jaugust needs to be able to download files that are under the inbound
and/or outbound directories.
Problem: files are owned by CAN004
-rw-r----- 1 CAN004 peartree 1678 Jan 31 18:14 PAYROLL_1995
If I add user jaugust to peartree in /etc/group, then he can't get to
anything using ftp because his home directory is: /home/jaugust and the
ftpaccess is preventing him from getting out of /home.
The only thing I know to do here is to have him use a different user that
is only in group peartree and the userid's only function is to download
files from here and it's home directory would be
/psDEV/data/perm/interface/U2PSPQ/peartree/.
What I don't like about this is that I would also need to do the same for
another directory called sqlserver, and who knows if they plan to add more
like this.
ANY SUGGESTIONS ARE WELCOME AND APPRECIATED ......
Thanks ...
Connie Zolg
Dana Corporation
Dana Information Technology, LLC
connie.zolg@dana.com
</PRE>
<div style="font-family:arial;font-size:8pt;">
<hr>
<p>This e-mail, and any attachments, is intended solely for use by the addressee(s) named above. It may contain the confidential or proprietary information of Dana Corporation, its subsidiaries, affiliates or business partners. If you are not the intended recipient of this e-mail or are an unauthorized recipient of the information, you are hereby notified that any dissemination, distribution or copying of this e-mail or any attachments, is strictly prohibited. If you have received this e-mail in error, please immediately notify the sender by reply e-mail and permanently delete the original and any copies or printouts.</p>
<p>Computer viruses can be transmitted via email. The recipient should check this e-mail and any attachments for the presence of viruses. Dana Corporation accepts no liability for any damage caused by any virus transmitted by this e-mail.</p>
English, Francais, Espanol, Deutsch, Italiano, Portugues:<br>
This archive was generated by hypermail 2.1.7
: Sat Apr 12 2008 - 11:02:55 EDT
<a href="http://www.dana.com/overview/EmailDisclaimer.shtm">http://www.dana.com/overview/EmailDisclaimer.shtm>
<hr>
</div>
--
---> Please post QUESTIONS and SUMMARIES only!! <---
To subscribe/unsubscribe to this list, contact majordomo@dutchworks.nl
Name: hpux-admin@dutchworks.nl Owner: owner-hpux-admin@dutchworks.nl
Archives: ftp.dutchworks.nl:/pub/digests/hpux-admin (FTP, browse only)
http://www.dutchworks.nl/htbin/hpsysadmin (Web, browse & search)