*BSD News Article 83607


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.mira.net.au!vic.news.telstra.net!act.news.telstra.net!psgrain!newsfeed.internetmci.com!hunter.premier.net!feed1.news.erols.com!howland.erols.net!EU.net!sun4nl!surfnet.nl!news.tue.nl!triple!robk
From: robk@stack.urc.tue.nl (Rob Kouwenberg)
Newsgroups: comp.unix.bsd.misc
Subject: Re: Chroot FTP
Date: 26 Nov 1996 09:11:57 GMT
Organization: MCGV Stack, Eindhoven University of Technology, the Netherlands.
Lines: 35
Message-ID: <57ec8t$lv6@tuegate.tue.nl>
References: <56r8ep$6t5@nr1.calgary.istar.net> <56t15l$29o@tuegate.tue.nl>
NNTP-Posting-Host: triple.stack.nl
X-Newsreader: TIN [version 1.2 PL2]

Rob Kouwenberg (robk@stack.urc.tue.nl) wrote:
: Mike Cisar (mcisar@iul-ccs.com) wrote:
: : Attempting to set up chroot FTP on a BSD (4.3 I think) server... but
: Just contact me for further information ( by next week ).

I put the bsd 4 lite source for ftp and ls on :

ftp://triple.stack.nl/unix/chrootftp/FTPD.tar.gz
ftp://triple.stack.nl/unix/chrootftp/LS.tar.gz

The only difference is the static compile directives in the makefile.

Create an environment as follows :
inetd attached to 1 ip address

directories : ./bin ./etc and ./home

Put the statically compiled ls in ./bin
chmod -R 111 ./bin

Put the several default files in ./etc ( passwd master.passwd shells services
ftpd group {pwd_mkdb -d master.passwd generates the file pwd.db } )

NOTE that the password files should be independent of the real password files.

chown the home directory to the wanted users.

Start up the ftpd as a chrooted environment, e.g. :
INETD_INTERFACE=127.0.0.1 chroot /chroot /etc/inetd /etc/inetd.conf

Hope this short description works.

Best regards, Rob Kouwenberg
--
[ robk@stack.urc.tue.nl,Gr.Adolfstraat86,5616BX,Eindhoven,The Netherlands ]