Page 1 of 1

vsftp security . stop directory browsing?

Posted: 2015/03/24 03:51:35
by 1885
I used to chroot_local_user=YES to stop users from browsing outside of a directory. RH9
# (Warning! chroot'ing can be very dangerous. If using chroot, make sure that
# the user does not have write access to the top level directory within the
# chroot)
#chroot_local_user=YES
#chroot_list_enable=YES
# (default follows)
#chroot_list_file=/etc/vsftpd/chroot_list

What is the preferred way to stop file browsing .
C7 vsftpd
Thanks

Re: vsftp security . stop directory browsing?

Posted: 2015/03/25 16:53:59
by aks
If you have a structure like:
/var/ftp
| - user1
| - user2
then make /var/ftp now world writable and not owned by either user1 and user2.

Is that what you're after?

Re: vsftp security . stop directory browsing?

Posted: 2015/03/26 11:36:16
by 1885
aks wrote:If you have a structure like:
/var/ftp
| - user1
| - user2
then make /var/ftp now world writable and not owned by either user1 and user2.
Is that what you're after?
Thanks for the help.

I have multiple users using a web server that will eventually be virtually hosted.
Once users ftp to the server using ftp or filezilla they can browse the server back to /
This is an educational web server .

Users
/home/user1/
with /homeuser1/html/ then ln-s /home/user1/html path_to_apache

/home/use2/
with /homeuser2/html/ then ln-s /home/user1/html path_to_apache

Re: vsftp security . stop directory browsing?

Posted: 2015/03/26 17:03:16
by aks
I'm not sure what you're asking for now.
Here's a (fairly detailed) list of vsftp options: https://www.centos.org/docs/5/html/Depl ... -conf.html
The equivalent RHEL docs would be applicable too.

If you're trying to resitrct users to their home directories, I think this may help: http://www.rackspace.com/knowledge_cent ... ing-vsftpd