PDA

Click to See Complete Forum and Search --> : Stopping access to directories? + "apachectl" on Red Hat 7.1

Ozarkian
06-10-2001, 08:56 AM
Hello again, I need to stop access to users on my machine to directories such as
/bin
/boot
/ect
/usr

Right now when someone that has a website on my machine uses ftp they can view every directory above their home directory. They really don`t need access to any folders other that their public_html folder. Can anyone help me fix this? I really don`t like any users poking around where they don`t need to be. ;)

Another question I have is about "apachectl". I was using Mandrake 7.2. I could use "apachectl [command]. I am now using Red Hat 7.1 and I can`t find apachectl? Can anyone tell me of a site I can download it?

Thanks again
Harvey
06-10-2001, 09:31 AM
Be sure that permissions on those directories are set right and they won't be able do do anything in those directories you don't want them to do.

Which ftp program are you using btw?
saithan
06-10-2001, 11:24 AM
I found a fantastic poket isp walk through that I use. I set the ftp user home as that users root and that user can't leave that home nor is he aware that there are any directories above his/her home
for security i reject real user loggin from ftp. and use this feature for guest loggin only ( just incase ftp gets cracked they will only be able to effect a single home directory and not the system).

here is the adress of the walk throughLinux.com How to (http://www.linux.com/howto/ISP-Setup-RedHat-HOWTO-4.html#ss4.11)
Sweede
06-10-2001, 02:01 PM
use proftpd instead of wu-ftpd, the apachectl command on redhat is /etc/rc.d/init.d/apache (or httpd)
Falcon
06-10-2001, 02:30 PM
If you use ProFTPD, you can set it so that if a user log's in, there home dir (/ to them) can be anywere on the system. Then if they try a cd .. it will fail, as they already seem to be in the root dir. It also won't need to have other dirs like Wu-FTP for commands as it uses a secure tunnel to the ones on your system You can get it at http://www.proftpd.net (I think).

Falcon
Ozarkian
06-10-2001, 11:37 PM
Thanks everyone...I downloaded proftpd and installed it. It is working. I just need to edit the proftpd.conf file to get things working the way I want them to. I am running out of time tonight to work so I will have to
wait until tomorrow.

I still can`t find anything leading to "apachectl". I looked where Sweede suggested and can`t find anything. Is anyone running Red Hat 7.1?

Thanks everyone!!!!!