AlArenal
6th February 2007, 11:27
Hi!
I gave ISPConfig a try on my fresh Debian Etch system and after playing around a bit I'd like to clarify the following points:
1. I cannot log in to FTP via customer login data. It only works when I create a user (for email) and use his login data and then of course land in the user's web directory..
2. I don't want to have subfolders on FTP and web for each and every user I create for email. These services' settings should not be mixed together or there should at least be an option to not allow a email user to login via ftp per default.
3. After logging in as a user via FTP I can see and read each and every file on my whole root file system! How do I fix this security issue?
I hope I didn't miss some points in the documentation that would have clarified some of these.
I gave ISPConfig a try on my fresh Debian Etch system and after playing around a bit I'd like to clarify the following points:
1. I cannot log in to FTP via customer login data. It only works when I create a user (for email) and use his login data and then of course land in the user's web directory..
2. I don't want to have subfolders on FTP and web for each and every user I create for email. These services' settings should not be mixed together or there should at least be an option to not allow a email user to login via ftp per default.
3. After logging in as a user via FTP I can see and read each and every file on my whole root file system! How do I fix this security issue?
I hope I didn't miss some points in the documentation that would have clarified some of these.