Re: WebDNA and FTP
This WebDNA talk-list message is from 2003
It keeps the original formatting.
numero = 52426
interpreted = N
texte = In the proftpd.conf file you can see in what user and group the daemon runs=,usually root and wheel.The directory tells the daemon that this folder has to be treated like this=:Directory /Volumes/Rest/WebSites/myfolder/*Users and how to restrict them to certain directories are not done in theconfig file. This is only for changing uploaded files to another user and/o=rpermissions if needed.Sincerely,Nitai AventaggiatoCEOOn 22.8.2003 11:09 Uhr, "Michael Davis"
wrote:> Thanks Nitai. Does it matter what user and group the ProFTPD process> is running as? The default conf file tries to run the server daemon as> a user and group that isn't present on a stock OS X install. In your> example, how is authentication done/how does the server know to> restrict a user to a certain directory? Also, can this setup be> modified to consult with a users file instead of hard coding the> user/pass?>=20> Mike>=20> On Friday, August 22, 2003, at 01:49 AM, Nitai @ ComputerOil wrote:>=20>> Just did the same.>>=20>> I added these lines to the conf file.>>=20>> # All files in the specified folder should be owned by www and wheel>> >> AllowOverwrite on>> UserOwner www>> GroupOwner wheel>> Umask 001>> >>=20>> You need to learn some things about umask, but that can be find in the>> help>> file.>>=20>> Sincerely,>> Nitai Aventaggiato>> CEO>>=20>>=20>> On 22.8.2003 10:42 Uhr, "Michael Davis" wrote:>>=20>>> This is a bit off topic, but I'm guessing someone on this list has>>> conquered this problem...>>>=20>>> I have a customer hosted on Apache1.3/WebDNA4.5 that wants an FTP>>> directory set up. I can force Apache to process tpl files in a>>> directory as text/html, bypassing the WebDNA Engine. That solves the>>> security issue regarding uploading of malicious WebDNA code. But I>>> have had no luck working with ProFTPD in allowing a non-system user to>>> authenticate from a users (htpasswd) file and have read/write access>>> to>>> a directory that is also read/written to by WebDNA as www:www. I>>> don't>>> think this can be solved using WebDNA. I think it's completely a>>> matter of the proper directives in the proftpd.conf file. Do any of>>> you WebDNA'ers use ProFTP in this way, and if so, would you care to>>> share your conf directives? Thanks, and we should probably take this>>> off-list unless there are others who chime in with related curiosity.>>=20>> -->> Redakto - Content Management that simply works>>=20>> ComputerOil=AE GmbH>> Unionstrasse 4>> 8032 Z=FCrich / Switzerland>> Telefon +41 43 333 1 555>>=20>> info@computeroil.com>> http://computeroil.com>>=20>>=20>>=20>>=20>> ------------------------------------------------------------->> This message is sent to you because you are subscribed to>> the mailing list .>> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to>> >> Web Archive of this list is at: http://webdna.smithmicro.com/>>=20>>=20> Michael Davis, President Kondooit, Inc.> Primary: 503.849.5475 3603 S.E. Sherman St.> Billing: 503.849.5351 Portland, OR 97214> Fax: 208.361.5696 Data Center: 503.236.4684>=20> - Broadband Internet Services http://www.kondooit.com/> Co-Location | Hosting | Fixed Wireless | Content>=20>=20>=20> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to> > Web Archive of this list is at: http://webdna.smithmicro.com/>=20--Redakto - Content Management that simply worksComputerOil=AE GmbHUnionstrasse 48032 Z=FCrich / SwitzerlandTelefon +41 43 333 1 555info@computeroil.comhttp://computeroil.com-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Associated Messages, from the most recent to the oldest:
In the proftpd.conf file you can see in what user and group the daemon runs=,usually root and wheel.The directory tells the daemon that this folder has to be treated like this=:Directory /Volumes/Rest/WebSites/myfolder/*Users and how to restrict them to certain directories are not done in theconfig file. This is only for changing uploaded files to another user and/o=rpermissions if needed.Sincerely,Nitai AventaggiatoCEOOn 22.8.2003 11:09 Uhr, "Michael Davis" wrote:> Thanks Nitai. Does it matter what user and group the ProFTPD process> is running as? The default conf file tries to run the server daemon as> a user and group that isn't present on a stock OS X install. In your> example, how is authentication done/how does the server know to> restrict a user to a certain directory? Also, can this setup be> modified to consult with a users file instead of hard coding the> user/pass?>=20> Mike>=20> On Friday, August 22, 2003, at 01:49 AM, Nitai @ ComputerOil wrote:>=20>> Just did the same.>>=20>> I added these lines to the conf file.>>=20>> # All files in the specified folder should be owned by www and wheel>> >> AllowOverwrite on>> UserOwner www>> GroupOwner wheel>> Umask 001>> >>=20>> You need to learn some things about umask, but that can be find in the>> help>> file.>>=20>> Sincerely,>> Nitai Aventaggiato>> CEO>>=20>>=20>> On 22.8.2003 10:42 Uhr, "Michael Davis" wrote:>>=20>>> This is a bit off topic, but I'm guessing someone on this list has>>> conquered this problem...>>>=20>>> I have a customer hosted on Apache1.3/WebDNA4.5 that wants an FTP>>> directory set up. I can force Apache to process tpl files in a>>> directory as text/html, bypassing the WebDNA Engine. That solves the>>> security issue regarding uploading of malicious WebDNA code. But I>>> have had no luck working with ProFTPD in allowing a non-system user to>>> authenticate from a users (htpasswd) file and have read/write access>>> to>>> a directory that is also read/written to by WebDNA as www:www. I>>> don't>>> think this can be solved using WebDNA. I think it's completely a>>> matter of the proper directives in the proftpd.conf file. Do any of>>> you WebDNA'ers use ProFTP in this way, and if so, would you care to>>> share your conf directives? Thanks, and we should probably take this>>> off-list unless there are others who chime in with related curiosity.>>=20>> -->> Redakto - Content Management that simply works>>=20>> ComputerOil=AE GmbH>> Unionstrasse 4>> 8032 Z=FCrich / Switzerland>> Telefon +41 43 333 1 555>>=20>> info@computeroil.com>> http://computeroil.com>>=20>>=20>>=20>>=20>> ------------------------------------------------------------->> This message is sent to you because you are subscribed to>> the mailing list .>> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to>> >> Web Archive of this list is at: http://webdna.smithmicro.com/>>=20>>=20> Michael Davis, President Kondooit, Inc.> Primary: 503.849.5475 3603 S.E. Sherman St.> Billing: 503.849.5351 Portland, OR 97214> Fax: 208.361.5696 Data Center: 503.236.4684>=20> - Broadband Internet Services http://www.kondooit.com/> Co-Location | Hosting | Fixed Wireless | Content>=20>=20>=20> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to> > Web Archive of this list is at: http://webdna.smithmicro.com/>=20--Redakto - Content Management that simply worksComputerOil=AE GmbHUnionstrasse 48032 Z=FCrich / SwitzerlandTelefon +41 43 333 1 555info@computeroil.comhttp://computeroil.com-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
"Nitai @ ComputerOil"
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
DRC (2004)
PCS Frames (1997)
[taxrate] question (1997)
Bad creator codes which cause access denied error message (1997)
Modify Database (1998)
Items XX to XX shown (1997)
upgrading (1997)
Is there a way......... (2000)
Webcatalog server support (1997)
WebCat2b13MacPlugIn - [include] doesn't allow creator (1997)
ListDatabases & ShowIf (2003)
Can't use old cart file (was One more try) (1997)
%@#*& back button!!! (1999)
[FileInfo] (1998)
[shipTotal] or [shippingTotal] ??? (1998)
TCP Connect (2000)
Shipping charges based on dollar level (1997)
Explorer 3.0/ Access Denied! (1997)
OT: Thawte SSL on Mac OS X Server (2005)
Configuring E-mail (1997)