pure-ftpd issues (KeepAllFiles and NoRename only for some users)

Discussion in 'Linux Networking' started by Davide DG, Jun 27, 2005.

  1. Davide DG

    Davide DG Guest

    hi everybody,

    I'm trying to implement this kind of ftp service:


    a) /srv/ftproot contains the root of the hosted ftp files

    b) subdirs of /srv/ftproot are the home directories of my users.

    c) ordinary users can login and they will be chrooted in their
    respective (/srv/ftproot/<homedir>/)

    d) once a file is uploaded, it can't be renamed/deleted, nor can other
    files.

    d) "Administrators" must be able to login and see all the /srv/ftproot/

    e) "Administrators" must have full privileges (delete, rename, etc.).



    -> I am trying with PureFTPd, and I can satisfy every point, EXCEPT e)

    I set up pureftpd with mysql, the relevant options I'm using are:
    -A (ChrootEveryone)
    -K (KeepAllFiles)
    -G (NoRename (disallow_rename in the code))


    Now I am stuck... because there seem to be no option to differentiate
    one user from another, regarding the -K and the -G switches.


    I think I should try using "-a" instead of "-A", and make administrators
    members of the trusted group.... but I don't know exactly how to cope
    with this.


    Another "quick and dirty" option is to patch the source code (ftpd.c),
    and selectively disable the "disallow_rename" and the "keepallfiles"
    variables (put them to 0), if the user has a (new) flag like
    "userisadmin".


    Other options? Maybe switch to ProFtpd, which seems to support more
    Apache-like ACLs (.ftpaccess files) ?

    Please please please post some hints :) I'm pretty much stuck :(

    Thanks in advance :)
     
    Davide DG, Jun 27, 2005
    #1
    1. Advertisements

  2. Davide DG

    Davide DG Guest

    And... that's what I ended to do! ^_^

    I patched 1.0.19 (debian sarge) source code, and it seems to work like a
    charm! ^__^
     
    Davide DG, Jun 28, 2005
    #2
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.