2.2.9 on Debian Etch: issues and impressions

Discussion in 'Installation/Configuration' started by AlArenal, Feb 6, 2007.

  1. AlArenal

    AlArenal New Member

    Hi!

    I gave ISPConfig a try on my fresh Debian Etch system and after playing around a bit I'd like to clarify the following points:

    1. I cannot log in to FTP via customer login data. It only works when I create a user (for email) and use his login data and then of course land in the user's web directory..

    2. I don't want to have subfolders on FTP and web for each and every user I create for email. These services' settings should not be mixed together or there should at least be an option to not allow a email user to login via ftp per default.

    3. After logging in as a user via FTP I can see and read each and every file on my whole root file system! How do I fix this security issue?

    I hope I didn't miss some points in the documentation that would have clarified some of these.
     
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    1) Customers can never login to FTP, thas why every website has a dmin user.

    2) This option is already present in SVN and will be released in one of the next versions.

    3) This is not a ISPConfig issue, you just configured your FTP server wrong. Please have a look at the perfect setup guide for your linux distribution and configure your FTP server accordingly.
     
  3. Jorem

    Jorem New Member

    Add this to your proftpd config file. Each user can only look at their own files. And the ftp server is faster.

    DefaultRoot ~
    IdentLookups off
    UseReverseDNS off
     
  4. AlArenal

    AlArenal New Member

    Hi till, Jorem!

    After some investigation I found what went wrong. I used /etc/proftpd.conf which has been created by ISPConfig during install but the system uses the /etc/proftpd/proftpd.conf . I did not check the settings during the install procedure, so it is my fault, but you may also adjust your Debian 4.0 settings in ISPConfig's install script.

    Also I want to report that the link on http://www.howtoforge.com/perfect_setup_debian_sarge_p5 to http://proftpd.linux.co.uk/localsite/Userguide/linked/userguide.html is dead. I rather used this config file as a role model for my own: http://www.proftpd.de/Standard-Deluxe.57.0.html

    Now everything seems to work as it should and now I also understand the admin user thing.

    Thank you both for your support!
     

Share This Page