Topic: Webserver access problem

[nesnomis]

Help...
I have a problem. I want to use my Sme server as Webserver, but i have some problems.
I have created 2 Virtual domains, and users, but when I connect via. FTP, I have access to both ibays incl. Primary folder....
How can I fix so one user only can access and opload files to only his domain ( cgi-bin, html & Files)

Sorry for my bad english

[CharlieBrady]

I have a problem. I want to use my Sme server as Webserver, but i have some problems.
I have created 2 Virtual domains, and users, but when I connect via. FTP, I have access to both ibays incl. Primary folder....
How can I fix so one user only can access and opload files to only his domain ( cgi-bin, html & Files)

If you create groups and set permissions correctly when you create the ibays, the users will only be able to upload files into their own ibays.

[nesnomis]

I have a problem. I want to use my Sme server as Webserver, but i have some problems.
I have created 2 Virtual domains, and users, but when I connect via. FTP, I have access to both ibays incl. Primary folder....
How can I fix so one user only can access and opload files to only his domain ( cgi-bin, html & Files)

If you create groups and set permissions correctly when you create the ibays, the users will only be able to upload files into their own ibays.

If I login with FTP as eks. "henry" im entering in "/ users/henry" directory. Not in the Ibay directory....
what do I do wrong

[CharlieBrady]

If I login with FTP as eks. "henry" im entering in "/ users/henry" directory. Not in the Ibay directory....

To get to the ibay directory, you'll first need to change directory up two levels, then down into the desired ibay. Then, if henry belongs to the group who his allowed to write to that ibay, then henry can upload files.

[nesnomis]

If I login with FTP as eks. "henry" im entering in "/ users/henry" directory. Not in the Ibay directory....

To get to the ibay directory, you'll first need to change directory up two levels, then down into the desired ibay. Then, if henry belongs to the group who his allowed to write to that ibay, then henry can upload files.

Thanks for your patience
Yes I understand, but I dont want Users to see other Ibays exept the Ibays they are a member of..
Is this possible

[arthurhanlon]

Hi there,

There is a CHROOT contrib kicking around here. Could you not use that and CHROOT each user to that iBay? Check that out first, it may help.

Thanks,
Arthur

[dmajwool]

Yes I understand, but I dont want Users to see other Ibays exept the Ibays they are a member of..
Is this possible

I _think_ it will be possible if you do a two-stage strategy.  
First, use the chroot contribution,
http://mirror.contribs.org/smeserver/contribs/dungog/files/dungog-proftpd-chroot-0.1-6.noarch.rpm
which has the effect of logging-in ftp users to their own home directory and holding them so that they can neither navigate nor see any higher up the filesystem.

I think when you have that installed, you can use the instructions at
http://blade.lansmash.com/?p=104
to make links to the required i-bay directories within the relevant user's home folder, along the lines of

Code: [Select]

mount --bind /home/files/e-smith/ibays/ibayname/files /home/files/e-smith/users/username/files/newfolder
HTH, David.

[dmac]

With the CHROOT contib, you can specify for each User in the Server-manager what directory you want them to access.  This includes all the current IBays on the server.