hello again :) this time I'm writing this post asking you for help regarding proftpd on my (not officially in use yet) rh 7.2 box.

this is what I did until now:

create new group
create new user, homedirectory = /var/www/html/usersdomain.com
create normal ftp access using webmin, no params set


is something like this unsecure? yes this user has also shell access, therefore I do really think it is unsecure.... but pls tell me. Now I wanted to use DocumentRoot to prevent users to access stuff outside their directories. But it looks like I would have to create another directory in /var/www/html/usersdomain.com f.eg. named /var/www/html/usersdomain.com/www to be able to do this. Is this correct?

I have tryed to add a line looking like this in my proftpd.conf:

DefaultRoot /var/www/html/usersdomain.com username

but username is still able to browse directoryies not belonging to him


thanks a lot! :)

You probably want to use something like:

DefaultRoot ~

Sorry, I'm not going to go into security.

Mark is dead right

Just put DefaultRoot ~ and the user can only see his home directory in the FTP client [atleast this is my experience on FreeBSD- after reading all the posts in this forum I am no longer sure of even ls or df ! :D ]

If you are giving shell access and dont need anon FTP you are better off putting RequireValidShell Yes [or On Cant remember]

You can also chmod 711 partitions like /etc to prevent shel users from changing things

Hope it helps
Cheers
Balaji

Just look throw the excellent basic configure examples on www.proftpd.org. That should get you started :)

Suc6!