One problem is, users can always move "down" a directory tree. <br>You can restrict a user to their home directory tree using the ftpchroot file (/etc/ftpchroot).<br>This will prevent users from getting to another directory tree, but if their home folder contains folders, they have access.
<br>You could set the home directory of the users you wish to restrict to some public folder and then use the ftpchroot file to specify the userids affected. The problem with this is, if they are going to access the Mac as a normal GUI user (as opposed to just using FTP) they will have problems.
<br>There is an article on implementing ftpchroot:<br><a href="http://www.macosxhints.com/article.php?story=20010508211503599">http://www.macosxhints.com/article.php?story=20010508211503599</a><br><br><br><div><span class="gmail_quote">
On 8/30/06, <b class="gmail_sendername">revDAVE</b> <<a href="mailto:coolcat@hosting4days.com">coolcat@hosting4days.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
I have a Mac - Computer 1 running 10.4.6<br><br>Computer 1 will be the FTP server - so ...<br><br>- I created a standard user ( not administrator)<br>- I went to sharing services and added FTP access<br><br>- Then on another computer - I logged in to computer 1 using an FTP app.
<br><br>- The problem is: I was able to see the entire user folder and apparently<br>had full access to all folders - including library folders etc. also - as a<br>test I was able to rename/delete some of these important library files -
<br>proving that I had full access.<br><br>- Obviously this is not a safe way to go!<br><br>Q: What is the best way to set up Tiger so that you can create a safe FTP<br>account? All I really need is to have access to some kind of public folder
<br>only.<br><br>--<br>Thanks - RevDave<br><a href="mailto:CoolCat@hosting4days.com">CoolCat@hosting4days.com</a><br>[db-lists]<br><br><br><br></blockquote></div><br>