From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1My7vN-0001nC-P9 for garchives@archives.gentoo.org; Wed, 14 Oct 2009 17:46:10 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 25113E089F; Wed, 14 Oct 2009 17:46:08 +0000 (UTC) Received: from 17.mail-out.ovh.net (17.mail-out.ovh.net [91.121.30.212]) by pigeon.gentoo.org (Postfix) with SMTP id A49D6E08A8 for ; Wed, 14 Oct 2009 17:46:07 +0000 (UTC) Received: (qmail 16499 invoked by uid 503); 14 Oct 2009 17:48:59 -0000 Received: from 2.mail-out.ovh.net (91.121.26.226) by 17.mail-out.ovh.net with SMTP; 14 Oct 2009 17:48:59 -0000 Received: (qmail 10043 invoked by uid 503); 14 Oct 2009 18:11:19 -0000 Received: from b6.ovh.net (HELO mail408.ha.ovh.net) (213.186.33.56) by 2.mail-out.ovh.net with SMTP; 14 Oct 2009 18:11:19 -0000 Received: from b0.ovh.net (HELO queueout) (213.186.33.50) by b0.ovh.net with SMTP; 14 Oct 2009 17:46:19 -0000 Received: from unknown (HELO ?192.168.2.100?) (laurent@logiquefloue.org@89.181.33.247) by ns0.ovh.net with SMTP; 14 Oct 2009 17:46:17 -0000 Message-ID: <4AD60E46.60102@logiquefloue.org> Date: Wed, 14 Oct 2009 19:45:42 +0200 From: laurent User-Agent: Thunderbird 2.0.0.23 (Windows/20090812) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] ftp user, local user, apache group References: <4ACF6F6F.90306@logiquefloue.org> <200910092342.32166.Warp_7@gmx.de> In-Reply-To: <200910092342.32166.Warp_7@gmx.de> Content-Type: text/plain; charset=ISO-8859-1; format=flowed X-Ovh-Tracer-Id: 1038361190233506392 X-Ovh-Remote: 89.181.33.247 () X-Ovh-Local: 213.186.33.20 (ns0.ovh.net) X-Spam-Check: DONE|U 0.5/N X-Ovh-Tracer-Id: 1083960135840203351 Content-Transfer-Encoding: quoted-printable X-Archives-Salt: 3324683a-260f-42b2-9b9e-29a923c4e1aa X-Archives-Hash: efe68a1ba9db9e7763bf944e9cb7e683 Frank Steinmetzger a =E9crit : > Am Freitag, 9. Oktober 2009 schrieb laurent: > =20 >> Hi, >> >> Now I've setup vsftpd with local user. >> For exemple I log with the user laurent, I create a folder via ftp. >> >> This folder is own by laurent, so it's not exessible via apache. >> How could I make that, like put laurent in a apache group? >> =20 > > My setup is a combination of apache and pure-ftpd. My user is member of= the=20 > apache group, and I have set my home dir to > > $ ls -ld /home/frank > drwxr-x--- 115 frank apache 16384 2009-10-09 22:30 frank > > That way apache can enter my directory to get into ~/public_html, but o= ther=20 > users (such as guests, it's my laptop) cannot. > > If I log into pure-ftpd with a local user account, it puts me into the=20 > respective user's home. Anonymous logins are made for user "ftp", which= is=20 > set up in /home/ftp: > > $ ls -ld /home/ftp > dr-xrwx--- 4 ftp users 4096 2009-09-19 19:45 ftp > > $ ls -ld /home/ftp/incoming > drwxrwxr-x 2 ftp users 4096 2009-09-16 23:58 /home/ftp/incoming= / > > This setup allows me as the "admin user" to have control over the files= in the=20 > anonymous ftp root, and anonymous users may only upload stuff in the in= coming=20 > directory. > > =20 >> I don't really know how to play with groups and user, any good tutoria= l >> on that? >> =20 > > Just search for it, keywords such as file permissions chown may help: > http://www.overclock.net/linux-unix/513350-linux-file-permissions-execu= tables-howto.html > http://penguinpetes.com/b2evo/index.php?title=3Dchmod_squad_howto_use_l= inux_file_permiss > > The latter is more informative on how to use groups in detail. > =20 Hi Franck Ok, after reading that I guess: I could create a 'connects' group and=20 put my apache user in it. So apache will have control over the files in www own by=20 apache:connects. set to 760 recursively, for exemple. And then add other local user to the connector group. Then as they will=20 be able to connect on ftp as a local user they will be able to read=20 write files that apache will be able to execute. I'm gonna do that now :) thx Laurent