Re: WebDNA and FTP

This WebDNA talk-list message is from

2003


It keeps the original formatting.
numero = 52426
interpreted = N
texte = In the proftpd.conf file you can see in what user and group the daemon runs= , usually root and wheel. The directory tells the daemon that this folder has to be treated like this= : Directory /Volumes/Rest/WebSites/myfolder/* Users and how to restrict them to certain directories are not done in the config file. This is only for changing uploaded files to another user and/o= r permissions if needed. Sincerely, Nitai Aventaggiato CEO On 22.8.2003 11:09 Uhr, "Michael Davis" wrote: > Thanks Nitai. Does it matter what user and group the ProFTPD process > is running as? The default conf file tries to run the server daemon as > a user and group that isn't present on a stock OS X install. In your > example, how is authentication done/how does the server know to > restrict a user to a certain directory? Also, can this setup be > modified to consult with a users file instead of hard coding the > user/pass? >=20 > Mike >=20 > On Friday, August 22, 2003, at 01:49 AM, Nitai @ ComputerOil wrote: >=20 >> Just did the same. >>=20 >> I added these lines to the conf file. >>=20 >> # All files in the specified folder should be owned by www and wheel >> >> AllowOverwrite on >> UserOwner www >> GroupOwner wheel >> Umask 001 >> >>=20 >> You need to learn some things about umask, but that can be find in the >> help >> file. >>=20 >> Sincerely, >> Nitai Aventaggiato >> CEO >>=20 >>=20 >> On 22.8.2003 10:42 Uhr, "Michael Davis" wrote: >>=20 >>> This is a bit off topic, but I'm guessing someone on this list has >>> conquered this problem... >>>=20 >>> I have a customer hosted on Apache1.3/WebDNA4.5 that wants an FTP >>> directory set up. I can force Apache to process tpl files in a >>> directory as text/html, bypassing the WebDNA Engine. That solves the >>> security issue regarding uploading of malicious WebDNA code. But I >>> have had no luck working with ProFTPD in allowing a non-system user to >>> authenticate from a users (htpasswd) file and have read/write access >>> to >>> a directory that is also read/written to by WebDNA as www:www. I >>> don't >>> think this can be solved using WebDNA. I think it's completely a >>> matter of the proper directives in the proftpd.conf file. Do any of >>> you WebDNA'ers use ProFTP in this way, and if so, would you care to >>> share your conf directives? Thanks, and we should probably take this >>> off-list unless there are others who chime in with related curiosity. >>=20 >> -- >> Redakto - Content Management that simply works >>=20 >> ComputerOil=AE GmbH >> Unionstrasse 4 >> 8032 Z=FCrich / Switzerland >> Telefon +41 43 333 1 555 >>=20 >> info@computeroil.com >> http://computeroil.com >>=20 >>=20 >>=20 >>=20 >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list . >> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to >> >> Web Archive of this list is at: http://webdna.smithmicro.com/ >>=20 >>=20 > Michael Davis, President Kondooit, Inc. > Primary: 503.849.5475 3603 S.E. Sherman St. > Billing: 503.849.5351 Portland, OR 97214 > Fax: 208.361.5696 Data Center: 503.236.4684 >=20 > - Broadband Internet Services http://www.kondooit.com/ > Co-Location | Hosting | Fixed Wireless | Content >=20 >=20 >=20 > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: http://webdna.smithmicro.com/ >=20 -- Redakto - Content Management that simply works ComputerOil=AE GmbH Unionstrasse 4 8032 Z=FCrich / Switzerland Telefon +41 43 333 1 555 info@computeroil.com http://computeroil.com ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: WebDNA and FTP ( Alain Russell 2003)
  2. Re: WebDNA and FTP ( "Nitai @ ComputerOil" 2003)
  3. Re: WebDNA and FTP ( Michael Davis 2003)
  4. Re: WebDNA and FTP ( "Nitai @ ComputerOil" 2003)
  5. WebDNA and FTP ( Michael Davis 2003)
In the proftpd.conf file you can see in what user and group the daemon runs= , usually root and wheel. The directory tells the daemon that this folder has to be treated like this= : Directory /Volumes/Rest/WebSites/myfolder/* Users and how to restrict them to certain directories are not done in the config file. This is only for changing uploaded files to another user and/o= r permissions if needed. Sincerely, Nitai Aventaggiato CEO On 22.8.2003 11:09 Uhr, "Michael Davis" wrote: > Thanks Nitai. Does it matter what user and group the ProFTPD process > is running as? The default conf file tries to run the server daemon as > a user and group that isn't present on a stock OS X install. In your > example, how is authentication done/how does the server know to > restrict a user to a certain directory? Also, can this setup be > modified to consult with a users file instead of hard coding the > user/pass? >=20 > Mike >=20 > On Friday, August 22, 2003, at 01:49 AM, Nitai @ ComputerOil wrote: >=20 >> Just did the same. >>=20 >> I added these lines to the conf file. >>=20 >> # All files in the specified folder should be owned by www and wheel >> >> AllowOverwrite on >> UserOwner www >> GroupOwner wheel >> Umask 001 >> >>=20 >> You need to learn some things about umask, but that can be find in the >> help >> file. >>=20 >> Sincerely, >> Nitai Aventaggiato >> CEO >>=20 >>=20 >> On 22.8.2003 10:42 Uhr, "Michael Davis" wrote: >>=20 >>> This is a bit off topic, but I'm guessing someone on this list has >>> conquered this problem... >>>=20 >>> I have a customer hosted on Apache1.3/WebDNA4.5 that wants an FTP >>> directory set up. I can force Apache to process tpl files in a >>> directory as text/html, bypassing the WebDNA Engine. That solves the >>> security issue regarding uploading of malicious WebDNA code. But I >>> have had no luck working with ProFTPD in allowing a non-system user to >>> authenticate from a users (htpasswd) file and have read/write access >>> to >>> a directory that is also read/written to by WebDNA as www:www. I >>> don't >>> think this can be solved using WebDNA. I think it's completely a >>> matter of the proper directives in the proftpd.conf file. Do any of >>> you WebDNA'ers use ProFTP in this way, and if so, would you care to >>> share your conf directives? Thanks, and we should probably take this >>> off-list unless there are others who chime in with related curiosity. >>=20 >> -- >> Redakto - Content Management that simply works >>=20 >> ComputerOil=AE GmbH >> Unionstrasse 4 >> 8032 Z=FCrich / Switzerland >> Telefon +41 43 333 1 555 >>=20 >> info@computeroil.com >> http://computeroil.com >>=20 >>=20 >>=20 >>=20 >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list . >> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to >> >> Web Archive of this list is at: http://webdna.smithmicro.com/ >>=20 >>=20 > Michael Davis, President Kondooit, Inc. > Primary: 503.849.5475 3603 S.E. Sherman St. > Billing: 503.849.5351 Portland, OR 97214 > Fax: 208.361.5696 Data Center: 503.236.4684 >=20 > - Broadband Internet Services http://www.kondooit.com/ > Co-Location | Hosting | Fixed Wireless | Content >=20 >=20 >=20 > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: http://webdna.smithmicro.com/ >=20 -- Redakto - Content Management that simply works ComputerOil=AE GmbH Unionstrasse 4 8032 Z=FCrich / Switzerland Telefon +41 43 333 1 555 info@computeroil.com http://computeroil.com ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ "Nitai @ ComputerOil"

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

DRC (2004) PCS Frames (1997) [taxrate] question (1997) Bad creator codes which cause access denied error message (1997) Modify Database (1998) Items XX to XX shown (1997) upgrading (1997) Is there a way......... (2000) Webcatalog server support (1997) WebCat2b13MacPlugIn - [include] doesn't allow creator (1997) ListDatabases & ShowIf (2003) Can't use old cart file (was One more try) (1997) %@#*& back button!!! (1999) [FileInfo] (1998) [shipTotal] or [shippingTotal] ??? (1998) TCP Connect (2000) Shipping charges based on dollar level (1997) Explorer 3.0/ Access Denied! (1997) OT: Thawte SSL on Mac OS X Server (2005) Configuring E-mail (1997)