The problem is, how do I get the group to be set as apache on a file/dir upload? I really do not like having other permissions set, as it can be a security risk, allowing others to access someone else's files.
Another issue is, I can't remove privileges, but I can add them.
copy of proftpd.conf:
Code:
ServerName "FTP"
ServerType standalone
Port 21
PassivePorts 35000 35999
UseReverseDNS off
TimesGMT off
TimeoutLogin 120
TimeoutIdle 600
TimeoutNoTransfer 900
TimeoutStalled 3600
#MaxCients 20 "Sorry, the maximum number of allowed users are already connected (%m)"
#MaxClientsPerHost 2
#MaxClientsPerUser 2
MaxConnectionsPerHost 6 "Sorry, you may not have more then 6 connections open at a time"
MaxHostsPerUser 6 "Sorry, you may not connect more than 6 times"
#DON'T modify this log format. Its used by DirectAdmin to determine user usage
LogFormat userlog "%u %b"
ExtendedLog /var/log/proftpd/IP.bytes WRITE,READ userlog
AuthUserFile /etc/proftpd.passwd
DefaultServer on
#AuthPAM off
<IfModule mod_tls.c>
TLSEngine on
TLSLog /var/log/proftpd/proftpd.tls.log
TLSProtocol TLSv1
TLSVerifyClient off
TLSRequired off
I've finally made the leap to upgrading from shared hosting to a VPS. I'm still setting up my configuration before I point the domain name to my new server, but for now, I have the site mirrored and I'm ensuring that all is running well. For the most part, everything is working, but I am running into a few permission issues...
As of right now, all the files in my htdocs directory are owned by root, and I am logging into my FTP client as root. However, I'm pretty sure that this is not how I should be doing this, because I need to allow write permissions to some folders from my php scripts.
I was just curious, how do you you guys set up the users and groups on your linux servers (running apache). I'm just not certain of the best way to handle it. Should I make a new FTP user, and if so, what group should it go in? Should that user be the owner of all the web files? When is it safe to set folder permissions to 777?
We have several sites on one server. When I use the plesk wordpress manager it some how updates the User and Group permissions on folders and files with the username apache. How or what command do I run to get it to use the site username and psacln. It appears something maybe in an update or whatever has caused this issue. This only occurs with wordpress and drupal updates from the plesk interface.
What command can I run just to update the permissions to update all users to a username and psacln security settings on folders and directories.Running Plesk 12.0.18 and CentOS7
I am running Proftpd on my RedHat. I have disabled anonymous login because i dont need it and its running fine.
I have created a user named test on the server and i try to connect it by typing ftp://myserver/ and then provide the id and pass.
Now it logged-in successfully but cant access any directories on the server. i have been Google around but really getting confused how i properly create a ftp user
i want the test user to access the following directories and he can be able to upload and download files from these directories
This isn't a major problem but I was just wondering something regarding how ProFTPd functions. I have received a complaint about a user uploading a script, the script creating files and directories, and the user not being able to CHMOD, delete, rename, or do anything to these files.
When files are created through scripts on my server, they are given a default owner permission with "www-data" for the user and group.
Since ProFTPd is set up to only modify files on certain owner permissions according to the user's FTP access, ProFTPd will not allow any other owner permission and if any other owner permissions exist, ProFTPd will not allow those files to be modified or changed in anyway.
Is there a way to fix this? I've been trying to figure it out but I can't.
Just for note, I am using proftpd-mysql and so every user is linked through a MySQL database.
When connecting via an ftp client I want the directory listed to be /var/www/html but currently it's /home/username. I've tried changing the initial login directory with webmin to /var/www/html but to no avail. How would this be done?
After installation, im worried about the default security config.
Also, i can log as anonym wich is ok, however i can't log using my unix user what i have to do?
Here's my config sample;
Quote:
# This is a basic ProFTPD configuration file (rename it to # 'proftpd.conf' for actual use. It establishes a single server # and a single anonymous login. It assumes that you have a user/group # "nobody" and "ftp" for normal operation and anon.
# Umask 022 is a good standard umask to prevent new dirs and files # from being group and world writable. Umask022
# To prevent DoS attacks, set the maximum number of child processes # to 30. If you need to allow more than 30 concurrent connections # at once, simply increase this value. Note that this ONLY works # in standalone mode, in inetd mode you should use an inetd server # that allows you to limit maximum number of processes per service # (such as xinetd). MaxInstances30
# Set the user and group under which the server will run. Usernobody Groupnobody
# To cause every FTP user to be "jailed" (chrooted) into their home # directory, uncomment this line. DefaultRoot ~
# Normally, we want files to be overwriteable. <Directory /> AllowOverwriteon </Directory>
# A basic anonymous configuration, no upload directories. If you do not # want anonymous users, simply delete this entire <Anonymous> section. <Anonymous ~ftp> Userftp Groupftp
# We want clients to be able to login with "anonymous" as well as "ftp" UserAliasanonymous ftp
# Limit the maximum number of anonymous logins MaxClients10
# We want 'welcome.msg' displayed at login, and '.message' displayed # in each newly chdired directory. DisplayLoginwelcome.msg DisplayFirstChdir.message
# Limit WRITE everywhere in the anonymous chroot <Limit WRITE> DenyAll </Limit> </Anonymous>
I would like to setup proftpd with mod_sql to access a mysql database for ftp accounts instead of using pam. The server has pleask 8.1 installed with psa-proftpd-xinetd-1.3.0 installed. How do I recompile the psa-proftpd with --with-modules=mod_sql option? Here is the current proftpd configure command:
i have a main server that is connected online & now live with a static IP address. at the local network, i have 6 other PCs running apache that is connected to the main server.
since i can only effort for 1 IP now, how can i have the local connected servers to be viewable from the internet as well like some normal web URLs?
in a domain environment, how do I enable users to be able to access the Desktop properties and allow them to change their wallpapers. I know it should be a simple one but I'm still looking through policies but can't find what can be. By default/ after some group policy changes, all users are denied from accesing this properties window.
I'm making an account for my friend, and I just want him to have access to /var/www/hishomedirectory/
I want him to be able to do anything in that directory (rename files, delete, copy, move, upload, etc..), but not able to use apt-get or play with settings. Not a superuser either.
Trying to install ProFTPD with mysql, the problem is after installing it and adding the lines in the config file to use MySQL the service fails to start. The error Im getting is:
"unknown configuration directive 'SQLAuthTypes'"
So it seems like it doesnt recongize the function needed to use mysql with proftpd, which is in mysql_mod.c. I did proftpd -l and the mysql_mod.c was not listed, I did a search on the whole box and couldnt find mysql_mod anywhere. Im on Fedora Core 6 and tried to install proftpd with yum:
yum install proftpd proftpd-mysql
Do I have to compile from source to get this to work? Or did I miss installing something else that would have mysql_mod.c present? I currently have mysql installed and running, tested the login info I had in the config file and everything works on the mysql side.Silly
What I want to do is setup virtualhosts for my clients and set the user/group that their files upload as. been on google and im guessing ill need to setup mod_auth?
We've got a Linux box running ProFTPd reaches a Windows box over SAMBA. This works very well but when the client has a great number of files, the FTP Windows-based FTP clients they use don't always give accurate directory listings (if any at all). I know there's some bug in the way SAMBA works with Windows File Sharing but I don't know what the magic file number is that, when reached, prevents a proper directory listing. Does anyone know what this magic number is or if there's an available, tested fix for this?
Code: cd /usr/local/directadmin/customapache/ wget ftp://ftp.proftpd.org/distrib/source....3.1rc2.tar.gz tar xzf proftpd-1.3.1rc2.tar.gz rm -rf proftpd-1.3.1rc2.tar.gz cd proftpd-1.3.1rc2 ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var/run --with-modules=mod_ratio:mod_readme:mod_tls make make install perl -pi -e "s/^AuthPAM on/#AuthPAM on/g" /etc/proftpd.conf /etc/rc.d/init.d/proftpd restart I changed the proftpd-1.3.1rc2 version to the newest version of proftpd.org
When I run /etc/init.d/proftpd start, I get the following:
Code: Starting proftpd: - mod_tls/2.1.2: compiled using OpenSSL version 'OpenSSL 0.9.7k 05 Sep 2006' headers, but linked to OpenSSL version 'OpenSSL 0.9.7a Feb 19 2003' library - Fatal: unable to load module 'mod_tls.c': Operation not permitted [FAILED]
After some yum updates last night one user and group called xfs were created on my dedicated server. Does anyone know what this group/user is used for?
(2) I changed the DocumentRoot in httpd.conf and point to a different folder in my server. (whatever I guess it really didnt do anything to my problem)
(3) I Opened the Modernbill software on the but cpanel is not showing in the ServerGroup.
I want to add 50 emails to a group called group50@service.com
Then from anywhere in the world I can login to an email client, compose a message to group50@service.com. And it will send my message to all 50 users.This is not limited to just my account, but universal to anyone.
I have opensuse 13.1 on my server and i folow this tutorial: URL....but as you see this is for opensuse 12.2, but i manage to run everythink only apache2 server.Well i get this error, but i run vhost.No user or group set - set suPHP_UserGroup..Well apache2 is rurning as every other thinks on server only web page dont show and i get error: Server error!
The server encountered an internal error and was unable to complete your request. Either the server is overloaded or there was an error in a CGI script.
Starting proftpd: - mod_tls/2.2.1: compiled using OpenSSL version 'OpenSSL 0.9.8i 15 Sep 2008' headers, but linked to OpenSSL version 'OpenSSL 0.9.8g 19 Oct 2007' library
proftpd has its own set of issues obviously built with i headers and linked to g headers. Any ideas wtf I did? I recomplined and restarted everything. I removed the g and i libraries completely. OpenSSH seems happy and nothing is actually "wrong", the server is working fine but I'm really anal retentive this way...it's kinda how I feel "safer" at the OS level.
I have been attempting to install Proftpd on linux(cent os 5 32 bit). The issue is i have to use proftpd i can't use vsftp or pure ftp I have downloaded the RPM. I downloaded this one to the server [url]. and i ran the command rpm -ivh proftpd* and it did its thing for a second and told me it was done. But when i run the command /etc/init.d/proftpd start or restart it doesn't wanna start. It just tells me failed. Can anyone help me with this? I'm not sure what else i can do.
My Plesk version is 8.2 and i use debian 3.1, I check the instructions on
[url]
this faq, it seems added in both inetd configuration file and xinetd.d configuration file in my configuration, also xinetd is working through system but ftp cannot be connectable. It gives "Unable to login server" from remote client and i also check with command line ftp client and service says that "421 Service not available, remote server has closed connection"
I also check this
[url]
faq and port is open:
Quote:
Starting nmap 3.81 [url] at 2007-08-02 16:59 CEST Interesting ports on xx-server.xxxxxx.net (xxx.xxx.xxx.xxx): PORT STATE SERVICE 21/tcp open ftp
Nmap finished: 1 IP address (1 host up) scanned in 0.013 seconds
Is there anyone knows how could I solve this situation?
APache is running under the "nobody" user/group as default in CPanel servers as a suggestion I should change it to another user/group to improve security!
But in CPanel servers its hard to do that because you must edit some scripts and files to prevent the backing to nobody when running some scripts such
This might be a very broad question, but do they split up IP Address Groups for each region in countries? I know my country is quite small and all, but I was interested to know if IP addresses can be tracked for regions, more specifically in other countries.