'Re: [pure-ftpd] LDAP users are not chrooted in 1.0.36'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pureftpd-list
Subject:    Re: [pure-ftpd] LDAP users are not chrooted in 1.0.36
From:       Noel Butler <noel.butler () ausics ! net>
Date:       2012-12-15 5:28:24
Message-ID: 1355549305.4423.11.camel () tardis
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


On Fri, 2012-12-14 at 14:51 +0100, emanuele lombardi wrote:


> pure-config-args /etc/pure-ftpd/pure-ftpd.conf
> 
> -A -a1000 -c50 -B -C4 -d -d -fftp -I15 -lpuredb:/etc/pure-ftpd/pureftpd.pdb -


Use lowercase   -a  not -A


> lldap:/etc/pure-ftpd/pureftpd-ldap.conf -L992500:1 -m5 -p30000:31000 -s -
> U137:077 -u40 -x -r -i -1 -Ow3c:/var/log/pureftpd.log -k99 -G -Z -y2:5 -4
> 


Why would you use -G ? I recommend against that

I'd add in -j   this might be why your system is doing what it is doing.
This makes the users home directory if it does not exist.

I'd add in -H  as well to improve performance but not doing a hostname
lookup on every connection

Adding -0  would also be a good idea, files uploaded are to a temp file,
so original stands until upload complete, when the new one gets put in
place, kinda like rsync does.



> /etc/pure-ftpd/pureftpd-ldap.conf
> 


as for ldap, I use mysql, so I'll leave the ldap stuff for someone else
who uses it to check over


Cheers


[Attachment #5 (text/html)]

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 TRANSITIONAL//EN">
<HTML>
<HEAD>
  <META HTTP-EQUIV="Content-Type" CONTENT="text/html; CHARSET=UTF-8">
  <META NAME="GENERATOR" CONTENT="GtkHTML/3.28.3">
</HEAD>
<BODY>
On Fri, 2012-12-14 at 14:51 +0100, emanuele lombardi wrote:<BR>
<BR>
<BLOCKQUOTE TYPE=CITE>
<PRE>
pure-config-args /etc/pure-ftpd/pure-ftpd.conf

-A -a1000 -c50 -B -C4 -d -d -fftp -I15 -lpuredb:/etc/pure-ftpd/pureftpd.pdb -
</PRE>
</BLOCKQUOTE>
<BR>
Use lowercase&nbsp;&nbsp; -a&nbsp; not -A<BR>
<BR>
<BLOCKQUOTE TYPE=CITE>
<PRE>
lldap:/etc/pure-ftpd/pureftpd-ldap.conf -L992500:1 -m5 -p30000:31000 -s -
U137:077 -u40 -x -r -i -1 -Ow3c:/var/log/pureftpd.log -k99 -G -Z -y2:5 -4

</PRE>
</BLOCKQUOTE>
<BR>
Why would you use -G ? I recommend against that<BR>
<BR>
I'd add in -j&nbsp;&nbsp; this might be why your system is doing what it is doing. \
This makes the users home directory if it does not exist.<BR> <BR>
I'd add in -H&nbsp; as well to improve performance but not doing a hostname lookup on \
every connection<BR> <BR>
Adding -0&nbsp; would also be a good idea, files uploaded are to a temp file, so \
original stands until upload complete, when the new one gets put in place, kinda like \
rsync does.<BR> <BR>
<BR>
<BLOCKQUOTE TYPE=CITE>
<PRE>
/etc/pure-ftpd/pureftpd-ldap.conf

</PRE>
</BLOCKQUOTE>
<BR>
as for ldap, I use mysql, so I'll leave the ldap stuff for someone else who uses it \
to check over<BR> <BR>
<BR>
Cheers<BR>
<BR>
</BODY>
</HTML>


["signature.asc" (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic