Topic: Possible Bug FTP

[Michiel]

Or I'm doing something wrong ofcourse,

But I can't seem to CHMOD from my FTP client.
It is possible to change permisions from the command prompt, but I would like to change the permissions from my FTP client. This is much more convenient.

Thanks in advance for any ideas.

Michiel

[Benny Andersen]

Hi
For security reasons E-Smith does not allow you to chmod via FTP, I am not sure the reason for this but I do remember reading some where on the forum this is the case.

Benny

[Michiel Boterenbrood]

Benny,

thanks for the reply.

Does anybody now how to overcome this limitation, or if it will be changed in future versions???

Thanks in advance,

Michiel

[Ross Laver]

>Does anybody now how to overcome this limitation

It seems odd (unfair, in fact) to decribe as a limitation something that was done for security reasons. Please see the security whitepaper:

http://www.e-smith.org/docs/papers/e-smith-security.html

> or if it will be changed in future versions???

Unlikely, I would think. Of course, you're free to modify the software as you see fit. Please keep in mind that any changes you make may render your server vulnerable to compromise.

Ross

[Michiel]

Can someone then please explain to me why almost all ftp servers (that are used to update web content) support chmod'ing???
If it's such a huge security risk, then all those www serving companies should have disabled it as well!!

Michiel

[Bobby]

Off the top of my head, I'd hope that www serving companies would have someone monitoring security regularly. Since e-smith is targeted at smaller companies who want more of a set it and forget it product, extra security measures seem to be in order. e-smith customers are not likely to be checking for suspicious activity all the time.