[prev in list] [next in list] [prev in thread] [next in thread]
List: proftpd-users
Subject: [Proftpd-user] User permission and group permissions
From: Brad Knorr <bradley () knorrfamily ! org>
Date: 2020-08-30 22:08:01
Message-ID: CANYTVPBhUso9N-3Oiipo=LCuZ7SNWTaAXFHEBxhWuPLBx5t=qw () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
I run proftpd using mysql as my authentication method. So each of my users
DOES NOT have a linux account on the box. I will call them virtual users. I
have read over the docs to sort out how to configure things but I am
running into users being able to login but not allowed to upload files. It
does the upload,using the temporary file, but when it goes to finish the
upload and rename the file to the right name it gives me a permissions
error.
In the mysql table ftpuser column uid is null, and column gid is "2000"
for every user (which is the gid of the linux group "foundry" on the
server). Table ftpgroup has (foundry, 2000, www-data) for its data.
In proftpd.conf the User is "www-data" and the Group is "foundry"
Proftpd.service has the service running under user=root and group=foundry
The file structure has all files and dir set with user=www-data and
group=foundry and the perms are 775.
So I am struggling with the user/group setup of proftpd to reliably access
this file system. Each user in the mysql table, all have the same
permissions, they are chrooted to their specific home directories via the
homedir column.
I don't think this is a bug, I think it is a config error. I have tried
the logs but they are no help. It doesn't seem to put any comment in the
logs about the permissions error. My log settings are:
athAllowFilter [[:print:]]
SyslogLevel debug
SystemLog /mnt/ramdisk/proftp/system.log
#ExtendedLog /mnt/foundry/logs/proftpd/paranoid_log ALL default
TransferLog /mnt/ramdisk/proftp/xferlog.log
thanks for taking the time to look this over. I am hoping it is a simple
fix.
Brad
[Attachment #5 (text/html)]
<div dir="ltr"><div>I run proftpd using mysql as my authentication method. So each \
of my users DOES NOT have a linux account on the box. I will call them virtual users. \
I have read over the docs to sort out how to configure things but I am running into \
users being able to login but not allowed to upload files. It does the upload,using \
the temporary file, but when it goes to finish the upload and rename the file to the \
right name it gives me a permissions error.</div><div><br></div><div>In the mysql \
table ftpuser column uid is null, and column gid is "2000" for every user \
(which is the gid of the linux group "foundry" on the server). Table \
ftpgroup has (foundry, 2000, www-data) for its data.<br></div><div><br></div><div>In \
proftpd.conf the User is "www-data" and the Group is \
"foundry"</div><div><br></div><div>Proftpd.service has the service running \
under user=root and group=foundry</div><div><br></div><div>The file structure has all \
files and dir set with user=www-data and group=foundry and the perms are \
775.</div><div><br></div><div>So I am struggling with the user/group setup of proftpd \
to reliably access this file system. Each user in the mysql table, all have the \
same permissions, they are chrooted to their specific home directories via the \
homedir column.</div><div><br></div><div>I don't think this is a bug, I think it \
is a config error. I have tried the logs but they are no help. It doesn't \
seem to put any comment in the logs about the permissions error. My log settings \
are:</div><div><br></div><div>athAllowFilter [[:print:]]<br>SyslogLevel \
debug<br>SystemLog /mnt/ramdisk/proftp/system.log<br>#ExtendedLog \
/mnt/foundry/logs/proftpd/paranoid_log ALL default<br>TransferLog \
/mnt/ramdisk/proftp/xferlog.log</div><div><br></div><div>thanks for taking the time \
to look this over. I am hoping it is a simple fix.</div><div><br></div><div>Brad<br> \
</div></div>
_______________________________________________
ProFTPD Users List <proftpd-users@proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic