<div dir="ltr"><div class="gmail_default" style="font-size:small">All,</div><div class="gmail_default" style="font-size:small"><br></div><div class="gmail_default" style="font-size:small">I have set up a vsftpd server on ubuntu 12.04 on ec2.</div>
<div class="gmail_default" style="font-size:small"><br></div><div class="gmail_default" style="font-size:small">It functions more or less ok (like a basic, insecure ftp box) after this fix to a most annoying issue with the default version of vsftpd on 12.04: </div>
<div class="gmail_default" style="font-size:small"><br></div><div class="gmail_default"><a href="http://blog.thefrontiergroup.com.au/2012/10/making-vsftpd-with-chrooted-users-work-again/">http://blog.thefrontiergroup.com.au/2012/10/making-vsftpd-with-chrooted-users-work-again/</a><br>
</div><div class="gmail_default"><br></div><div class="gmail_default" style>(Don't even try and get chroot to work on 12.04 without first changing the version of vsftpd)</div><div class="gmail_default"><br></div><div class="gmail_default" style>
However, I still have an issue:</div><div class="gmail_default" style><br></div><div class="gmail_default" style>When any user logs in, chroot jail works fine in terms of permissions (no user can view the contents of any other user's directory - fine and well). But the default is that all users get to see a directory listing of all the user home directories. Obviously that's not desirable.</div>
<div class="gmail_default" style><br></div><div class="gmail_default" style>I'm wondering if anyone has a simple way around my issue - I want a user to see only the contents of their own home directory when they log in and not one level up. </div>
<div class="gmail_default" style><br></div><div class="gmail_default" style>I thought the smoking gun might be my use of local_root=home when enabling chroot, but if I don't use the local_root option in vsftpd.conf then it gives a 500 error. Is there perhaps a way to specify local_root= in a way that it refers to /home/$USER where $USER is a Linux user? vsftpd does not seem to understand $USER unless you're using virtual users.</div>
<div class="gmail_default" style><br></div><div class="gmail_default" style>If this is not possible with the current config, I am probably going to ditch this approach in favor of virtual users - I just didn't want to go to that amount of trouble for this task. Once I have everything working, will of course, be adding ssl-based security.<br>
</div><div class="gmail_default" style><br></div><div class="gmail_default" style>ed</div><div>-- <br></div>Edward Holcroft<br>Madsen Kneppers & Associates Inc.<br>3020 Holcomb Bridge Rd. NW<br>Norcross, GA 30071<br>
O (770) 446-9606<br>
M (678) 587-8649<br>
</div>
<br>
<span style="font-family:arial"><font size="2">MADSEN, KNEPPERS & ASSOCIATES USA, MKA Canada Inc. WARNING/CONFIDENTIALITY NOTICE: This message may be confidential and/or privileged. If you are not the intended recipient, please notify the sender immediately then delete it - you should not copy or use it for any purpose or disclose its content to any other person. Internet communications are not secure. You should scan this message and any attachments for viruses. Any unauthorized use or interception of this e-mail is illegal.</font></span>