[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Configuring ftpd for upload: second phase with chflags

To: OpenBSD Misc <misc@openbsd.org>
Subject: Configuring ftpd for upload: second phase with chflags
From: Saād KADHI <Saad.KADHI@neurocom.com>
Date: Fri, 01 Sep 2000 18:57:34 +0200
Organization: NEUROCOM

Hi there,

following the question I have posted few hours ago (see thread:
configuring ftpd for upload) & the answers I've got, I used chflags with
uappnd for the /upload directory:
An ls -lo looks like this:
dr-xr-xr-x  3  root   ftp   -   512  Sep  1 12:12  pub
dr-x------   2  root   ftp   -   512   Sep   1  18:34 reserved
drwxrwxrwx   3   root   ftp   uappnd   512   Sep   1   18:41   upload

Even if the perms are 777 on the upload dir, users (including root) can
only list and append to the dir. Is this setting can be considered as
secure ?  Remember that what I want is:
-Allow users to list and append to the upload
-Deny users the right to delete files on upload or upload itself

Thanks in advance for any advice.

--
Saad KADHI -- Security Engineer
---------------------------------
"He who relieves the poor makes Ahura King"

Follow-Ups:
- Re: Configuring ftpd for upload: second phase with chflags
  - From: Marco S Hyman <marc@snafu.org>
- Re: Configuring ftpd for upload: second phase with chflags
  - From: chuck yerkes <chuck@snew.com>

Prev by Date: 64-bit Architecture
Next by Date: Re: make package for mutt fails
Prev by thread: Re: 64-bit Architecture
Next by thread: Re: Configuring ftpd for upload: second phase with chflags
Index(es):
- Date
- Thread