#1
  1. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Mar 2001
    Location
    Riverside CA
    Posts
    58
    Rep Power
    14
    How do I remove my existing ftp daemon on FreeBSD? I want to install ProFtpd. I heard it was more secure with many options and easy to use.
  2. #2
  3. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Jan 2001
    Posts
    5
    Rep Power
    0
    It doesn't matter whether it's FreeBSD or any other UNIX, just uncomment the ftp line from /etc/inetd.conf.

    >> I heard it was more secure

    Yes, but make sure your version is not 1.2.1 or earlier.
  4. #3
  5. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Mar 2001
    Location
    Riverside CA
    Posts
    58
    Rep Power
    14
    Is there a file that I can configure to jail users to their directory? Something I can do without installing a new program. When users connect, I don't want them wandering into higher levels... and I want them to think they are in the highest directory...
    It would be great if there is some way to do this without installing any new program.
  6. #4
  7. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Jan 2001
    Posts
    5
    Rep Power
    0
    Create /etc/ftpchroot and add the username, one per line, to it.
  8. #5
  9. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Mar 2001
    Location
    Riverside CA
    Posts
    58
    Rep Power
    14

    AWESOME!


    God.. If I only knew it was that easy... Wait.. but I can still access it through telnet... Is it more complicating if I want to disable that?
    Last edited by spinkick; April 27th, 2001 at 12:57 AM.
  10. #6
  11. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Jan 2001
    Posts
    5
    Rep Power
    0
    Disallow ftp and telnet access:
    - run vipw and change the associate shell for that particular user to /sbin/nologin
    (note, don't ask me how to use vipw, just use it like you normally do with vi. Just don't run any UNIX or Linux if you don't know enough vi)

    Disallow ftp but allow telnet:
    - add that username to /etc/ftpusers

    Disallow telnet but allow ftp:
    - run vipw and change the user shell to /sbin/nologin like mentioned above
    - add /sbin/nologin to /etc/shells

    Keep in mind that this thread is totally off topic, you should probably come over to http://bsdvault.net
    Last edited by freebsd; April 28th, 2001 at 08:00 AM.

IMN logo majestic logo threadwatch logo seochat tools logo