www.ProFTPD.de

ProFTPD => ProFTPD - Deutsch => Thema gestartet von: markusd am 26. August 2005, 10:21:56


Titel: <directory> und Unterverzeichnisse
Beitrag von: markusd am 26. August 2005, 10:21:56
Hallo

Mein Wunsch :
 Ich möchte Grundsätlich erst einmal den gesamten zugriff sperren und die einzelnen Unterverzeichnisse freigeben.

Meine Config :
Code:


Defaultroot ~

<Directory />
  <Limit ALL>
     DenyAll
  </Limit>
</Directory>

<Directory /mnt>
  <Limit READ DIRS>
     AllowGroup ftpuser
  </Limit>
</Directory>

 
Wenn ich jetzt per FTP zugreife mit dem user (Homedir /mnt) zugreife und versuche per LIST das verzeichniss aufzulisten, bekomme ich "Zugriff verweigert".

Was mache ich Falsch ???

Titel: <directory> und Unterverzeichnisse
Beitrag von: Wörsty am 27. August 2005, 01:39:27
-Poste mal die Debug Ausgabe (proftpd -nd5)
-Prüfe mal die Linux-Rechte

Titel: <directory> und Unterverzeichnisse
Beitrag von: markusd am 27. August 2005, 23:10:28
Die Linuxrechte sind korrekt, wenn ich die <Directory /> ... </Directory> Anweisungen einkommentiere, dann kann ich ohne Problem auf Alles zugreifen, bzw mir anzeigen lassen.

Code:

host (localhost[127.0.0.1]) - USER benutzername: Login successful.
host (localhost[127.0.0.1]) - Preparing to chroot() the environment, path = '/mnt'
host (localhost[127.0.0.1]) - Environment successfully chroot()ed.
host (localhost[127.0.0.1]) - in dir_check_full(): path = '/', fullpath = '/mnt/'.
host (localhost[127.0.0.1]) - dispatching POST_CMD command 'PASS (hidden)' to mod_cap
host (localhost[127.0.0.1]) - mod_cap/1.0: capabilities '= cap_net_bind_service+ep'
host (localhost[127.0.0.1]) - dispatching POST_CMD command 'PASS (hidden)' to mod_quotatab
host (localhost[127.0.0.1]) - dispatching POST_CMD command 'PASS (hidden)' to mod_tls
host (localhost[127.0.0.1]) - dispatching POST_CMD command 'PASS (hidden)' to mod_readme
host (localhost[127.0.0.1]) - dispatching POST_CMD command 'PASS (hidden)' to mod_log
host (localhost[127.0.0.1]) - dispatching POST_CMD command 'PASS (hidden)' to mod_ls
host (localhost[127.0.0.1]) - dispatching POST_CMD command 'PASS (hidden)' to mod_auth
host (localhost[127.0.0.1]) - dispatching LOG_CMD command 'PASS (hidden)' to mod_log
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'SYST' to mod_tls
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'SYST' to mod_core
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'SYST' to mod_core
host (localhost[127.0.0.1]) - dispatching CMD command 'SYST' to mod_core
host (localhost[127.0.0.1]) - dispatching LOG_CMD command 'SYST' to mod_log
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'FEAT' to mod_tls
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'FEAT' to mod_core
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'FEAT' to mod_core
host (localhost[127.0.0.1]) - dispatching CMD command 'FEAT' to mod_core
host (localhost[127.0.0.1]) - dispatching LOG_CMD command 'FEAT' to mod_log
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'PWD' to mod_tls
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'PWD' to mod_core
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'PWD' to mod_core
host (localhost[127.0.0.1]) - dispatching CMD command 'PWD' to mod_core
host (localhost[127.0.0.1]) - dispatching LOG_CMD command 'PWD' to mod_log
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'EPSV' to mod_tls
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'EPSV' to mod_core
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'EPSV' to mod_core
host (localhost[127.0.0.1]) - dispatching CMD command 'EPSV' to mod_core
host (localhost[127.0.0.1]) - dispatching LOG_CMD_ERR command 'EPSV' to mod_log
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'PASV' to mod_tls
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'PASV' to mod_core
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'PASV' to mod_core
host (localhost[127.0.0.1]) - dispatching CMD command 'PASV' to mod_core
host (localhost[127.0.0.1]) - dispatching LOG_CMD_ERR command 'PASV' to mod_log
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'PORT 127,0,0,1,236,75' to mod_tls
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'PORT 127,0,0,1,236,75' to mod_core
host (localhost[127.0.0.1]) - dispatching PRE_CMD command 'PORT 127,0,0,1,236,75' to mod_core
host (localhost[127.0.0.1]) - dispatching CMD command 'PORT 127,0,0,1,236,75' to mod_core
host (localhost[127.0.0.1]) - dispatching LOG_CMD_ERR command 'PORT 127,0,0,1,236,75' to mod_log


hier nochmal die Config
    ...
    <Limit LOGIN>
      AllowUser markus
      AllowGroup ftpuser
      DenyAll
    </Limit>

    <Limit SITE_CHMOD>
      DenyAll
    </Limit>

    <Directory />
      <Limit ALL>
        DenyALL
      </Limit>
    </Directory>

    <Directory /mnt>
     <Limit WRITE>
        DenyAll
      </Limit>
      <Limit READ DIRS>
        AllowAll
      </Limit>
    </Directory>

    <Directory /mnt/upload>
      <Limit WRITE>
        AllowAll
      </Limit>
    </Directory>
    ...


Powered by SMF 1.1.2 | SMF © 2006-2007, Simple Machines LLC