Hi Rob,

You would give them "read only" access to the "fromus" directory (via the object-level permissions). This would prevent them from using it for uploads.

I guess you could disable read access to the "tous" directory if you don't want them to be able to download the files they just uploaded, too... not sure if I've tried that.

If you use digital keys (instead of userid/password) you shouldn't have trouble with nefarious people being able to use your site as a store-and-forward. If your goal is to make the site secure, I'd say passwords are the first thing to eliminate!


On 4/23/2012 12:59 PM, rob@xxxxxxxxx wrote:
We don't allow people to upload and download from the same directory. If
they share their userid/password or get hacked then it's easy for
nefarious people to use your ftp site as a store-and-forward. Would the
use of 'chroot jail' allow me to limit them to downloading only from
fromus and uploading only to tous?


As an Amazon Associate we earn from qualifying purchases.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.