2006-12-04 20:55:01 |
Maciej SÅ‚ojewski |
description |
Binary package hint: vsftpd
Shortly speaking:
"anon_umask" parameter does not work. It is expected that for new copied files to ftp host the file attibutes will change to value as specified with "anon_umask". Regardless of "anon_umask" value the new copied files attributes are set to 0600 (octal value).
Example:
vsftpd.conf :
(...)
anon_umask=022
(...)
should give:
-rw-r--r-- that is 0644 (octal value)
nevertheless it is still
-rw------ that is 0600 (octal value)
The practical implication is that after copying some files to ftp site nobody besides ftp site owner is able to see the files. It shouldn't be like this.
I've checked:
version 2.0.4 of vsftpd on Kubuntu 6.06 LTS
version 2.0.4 of vsftpd on Kubuntu 6.10
version 2.0.5 compiled from source on Kubuntu 6.06 LTS
version 2.0.5 compiled from source on Kubuntu 6.10
None of above worked properly. Problem was reported several times on internet forums (linuxquestions.org, ubuntuforums.org to give a few) by different people:
http://www.linuxquestions.org/questions/showthread.php?t=168393&highlight=anon_umask
http://ubuntuforums.org/showthread.php?t=224603&highlight=mslonik
Kind regards,
Maciej (mslonik)
|
Binary package hint: vsftpd
Shortly speaking:
"anon_umask" parameter does not work. It is expected that for new copied files to ftp host the file attibutes will change to value as specified with "anon_umask". Regardless of "anon_umask" value the new copied files attributes are set to 0600 (octal value).
Example:
vsftpd.conf :
(...)
anon_umask=022
(...)
should give:
-rw-r--r-- that is 0644 (octal value)
nevertheless it is still
-rw------ that is 0600 (octal value)
The practical implication is that after copying some files to ftp site nobody besides ftp site owner is able to see the files. It shouldn't be like this.
I've checked:
version 2.0.4 of vsftpd on Kubuntu 6.06 LTS
version 2.0.4 of vsftpd on Kubuntu 6.10
version 2.0.5 compiled from source on Kubuntu 6.06 LTS
version 2.0.5 compiled from source on Kubuntu 6.10
None of above worked properly. Problem was reported several times on internet forums (linuxquestions.org, ubuntuforums.org to give a few) by different people:
http://www.linuxquestions.org/questions/showthread.php?t=168393&highlight=anon_umask
http://ubuntuforums.org/showthread.php?t=224603&highlight=mslonik
Kind regards,
Maciej (mslonik)
Some important info:
My root ftp directory:
$ ls -lah
razem 36K
drwxr-xr-x 8 root root 4,0K 2006-12-03 11:16 .
drwxr-xr-x 8 root root 4,0K 2006-11-20 18:42 ..
-rw-r--r-- 1 root root 76 2006-11-18 13:55 czytaj.txt
drwxr-xr-x 4 ftp nogroup 4,0K 2006-12-02 14:24 download
drwxr-xr-x 3 ftp nogroup 4,0K 2006-11-12 20:40 erotyka_foto
drwxr-xr-x 9 ftp nogroup 4,0K 2006-09-17 22:37 maciej
drwxr-xr-x 3 ftp nogroup 4,0K 2006-12-01 21:25 rowery
drwxrwxrwx 3 ftp nogroup 4,0K 2006-12-02 15:42 upload
drwxr-xr-x 2 maciej maciej 4,0K 2006-12-01 21:12 wyklady_MIT
$ sudo cat /etc/vsftpd.conf
# --------------------------------------------------------
# VSFTPD SERVER START SECTION
# --------------------------------------------------------
nopriv_user=vsftpd
secure_chroot_dir=/var/run/vsftpd
listen=YES
background=NO
connect_from_port_20=YES
download_enable=YES
write_enable=YES
# --------------------------------------------------------
# LOCAL USERS SECTION
# --------------------------------------------------------
local_enable=NO
# --------------------------------------------------------
# ANONYMOUS SECTION
# --------------------------------------------------------
anonymous_enable=YES
anon_mkdir_write_enable=YES
anon_other_write_enable=YES
anon_upload_enable=YES
anon_world_readable_only=YES
chown_uploads=YES
chown_username=maciej
anon_umask=022
file_open_mode=0666
ftp_username=ftp |
|