[gentoo-user] ftp user, local user, apache group

[gentoo-user] ftp user, local user, apache group

[laurent]

Hi,

Now I've setup vsftpd with local user.
For exemple I log with the user laurent, I create a folder via ftp.

This folder is own by laurent, so it's not exessible via apache.
How could I make that, like put laurent in a apache group?

I don't really know how to play with groups and user, any good tutorial 
on that?

Thanks
Laurent

Re: [gentoo-user] ftp user, local user, apache group

[laurent]

should I go for vsftpd virtual users?

would need to have all file, folder created under any ftp account 
viewable with apache.
So those files should be own by apache:apache

should it be this way?

Thanks
Laurent

laurent a écrit :
> Hi,
>
> Now I've setup vsftpd with local user.
> For exemple I log with the user laurent, I create a folder via ftp.
>
> This folder is own by laurent, so it's not exessible via apache.
> How could I make that, like put laurent in a apache group?
>
> I don't really know how to play with groups and user, any good 
> tutorial on that?
>
> Thanks
> Laurent
>
>
>

Re: [gentoo-user] ftp user, local user, apache group

[Frank Steinmetzger]

[-- Attachment #1: Type: text/plain, Size: 1646 bytes --]

Am Freitag, 9. Oktober 2009 schrieb laurent:
> Hi,
>
> Now I've setup vsftpd with local user.
> For exemple I log with the user laurent, I create a folder via ftp.
>
> This folder is own by laurent, so it's not exessible via apache.
> How could I make that, like put laurent in a apache group?

My setup is a combination of apache and pure-ftpd. My user is member of the 
apache group, and I have set my home dir to

$ ls -ld /home/frank
drwxr-x--- 115 frank  apache  16384 2009-10-09 22:30 frank

That way apache can enter my directory to get into ~/public_html, but other 
users (such as guests, it's my laptop) cannot.

If I log into pure-ftpd with a local user account, it puts me into the 
respective user's home. Anonymous logins are made for user "ftp", which is 
set up in /home/ftp:

$ ls -ld /home/ftp
dr-xrwx---   4 ftp    users    4096 2009-09-19 19:45 ftp

$ ls -ld /home/ftp/incoming
drwxrwxr-x   2 ftp    users    4096 2009-09-16 23:58 /home/ftp/incoming/

This setup allows me as the "admin user" to have control over the files in the 
anonymous ftp root, and anonymous users may only upload stuff in the incoming 
directory.

> I don't really know how to play with groups and user, any good tutorial
> on that?

Just search for it, keywords such as file permissions chown may help:
http://www.overclock.net/linux-unix/513350-linux-file-permissions-executables-howto.html
http://penguinpetes.com/b2evo/index.php?title=chmod_squad_howto_use_linux_file_permiss

The latter is more informative on how to use groups in detail.
-- 
Gruß | Greetings | Qapla'
*** Quits: TITANIC (Excess Flood)

[-- Attachment #2: This is a digitally signed message part. --]
[-- Type: application/pgp-signature, Size: 198 bytes --]

Re: [gentoo-user] ftp user, local user, apache group

[laurent]

Frank Steinmetzger a écrit :
> Am Freitag, 9. Oktober 2009 schrieb laurent:
>   
>> Hi,
>>
>> Now I've setup vsftpd with local user.
>> For exemple I log with the user laurent, I create a folder via ftp.
>>
>> This folder is own by laurent, so it's not exessible via apache.
>> How could I make that, like put laurent in a apache group?
>>     
>
> My setup is a combination of apache and pure-ftpd. My user is member of the 
> apache group, and I have set my home dir to
>
> $ ls -ld /home/frank
> drwxr-x--- 115 frank  apache  16384 2009-10-09 22:30 frank
>
> That way apache can enter my directory to get into ~/public_html, but other 
> users (such as guests, it's my laptop) cannot.
>
> If I log into pure-ftpd with a local user account, it puts me into the 
> respective user's home. Anonymous logins are made for user "ftp", which is 
> set up in /home/ftp:
>
> $ ls -ld /home/ftp
> dr-xrwx---   4 ftp    users    4096 2009-09-19 19:45 ftp
>
> $ ls -ld /home/ftp/incoming
> drwxrwxr-x   2 ftp    users    4096 2009-09-16 23:58 /home/ftp/incoming/
>
> This setup allows me as the "admin user" to have control over the files in the 
> anonymous ftp root, and anonymous users may only upload stuff in the incoming 
> directory.
>
>   
>> I don't really know how to play with groups and user, any good tutorial
>> on that?
>>     
>
> Just search for it, keywords such as file permissions chown may help:
> http://www.overclock.net/linux-unix/513350-linux-file-permissions-executables-howto.html
> http://penguinpetes.com/b2evo/index.php?title=chmod_squad_howto_use_linux_file_permiss
>
> The latter is more informative on how to use groups in detail.
>   
Hi Franck

Ok, after reading that I guess: I could create a 'connects' group and 
put my apache user in it.
So apache will have control over the files in www own by 
apache:connects. set to 760 recursively, for exemple.

And then add other local user to the connector group. Then as they will 
be able to connect on ftp as a local user they will be able to read 
write files that apache will be able to execute.

I'm gonna do that now :)
thx
Laurent

Re: [gentoo-user] ftp user, local user, apache group

[laurent]

laurent a écrit :
> Frank Steinmetzger a écrit :
>> Am Freitag, 9. Oktober 2009 schrieb laurent:
>>  
>>> Hi,
>>>
>>> Now I've setup vsftpd with local user.
>>> For exemple I log with the user laurent, I create a folder via ftp.
>>>
>>> This folder is own by laurent, so it's not exessible via apache.
>>> How could I make that, like put laurent in a apache group?
>>>     
>>
>> My setup is a combination of apache and pure-ftpd. My user is member 
>> of the apache group, and I have set my home dir to
>>
>> $ ls -ld /home/frank
>> drwxr-x--- 115 frank  apache  16384 2009-10-09 22:30 frank
>>
>> That way apache can enter my directory to get into ~/public_html, but 
>> other users (such as guests, it's my laptop) cannot.
>>
>> If I log into pure-ftpd with a local user account, it puts me into 
>> the respective user's home. Anonymous logins are made for user "ftp", 
>> which is set up in /home/ftp:
>>
>> $ ls -ld /home/ftp
>> dr-xrwx---   4 ftp    users    4096 2009-09-19 19:45 ftp
>>
>> $ ls -ld /home/ftp/incoming
>> drwxrwxr-x   2 ftp    users    4096 2009-09-16 23:58 /home/ftp/incoming/
>>
>> This setup allows me as the "admin user" to have control over the 
>> files in the anonymous ftp root, and anonymous users may only upload 
>> stuff in the incoming directory.
>>
>>  
>>> I don't really know how to play with groups and user, any good tutorial
>>> on that?
>>>     
>>
>> Just search for it, keywords such as file permissions chown may help:
>> http://www.overclock.net/linux-unix/513350-linux-file-permissions-executables-howto.html 
>>
>> http://penguinpetes.com/b2evo/index.php?title=chmod_squad_howto_use_linux_file_permiss 
>>
>>
>> The latter is more informative on how to use groups in detail.
>>   
> Hi Franck
>
> Ok, after reading that I guess: I could create a 'connects' group and 
> put my apache user in it.
> So apache will have control over the files in www own by 
> apache:connects. set to 760 recursively, for exemple.
>
> And then add other local user to the connector group. Then as they 
> will be able to connect on ftp as a local user they will be able to 
> read write files that apache will be able to execute.
>
> I'm gonna do that now :)
> thx
> Laurent
>
>
>
760 does not work. ftp can't change directory...so I put 770 to www, it 
works.

L