Redirect all customers in the "web" folder

Discussion in 'General' started by vaio1, Aug 15, 2007.

  1. vaio1

    vaio1 ISPConfig Developer ISPConfig Developer

    Hi guys,
    how can I redirect at the FTP login, a customer in the web folder instead of the ROOT folder?

    thanks
     
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    The only solution I'am aware of is to change the line:

    DefaultRoot ~

    to:

    DefaultRoot ~/web

    in your proftpd.conf file. But this has the drawback that the other directoreis below the web directory are not accessible anymore.
     
  3. vaio1

    vaio1 ISPConfig Developer ISPConfig Developer

    there is no way to permits to show only the web directory? I have tried as you told me but the result not change. The user see the web folder but if he click on the root item SmartFTP shows all directories again.

    Thanks
     
  4. mccharlet

    mccharlet Member HowtoForge Supporter

    You can change on your passwd file (on debain etch /etch/passwd)
     
  5. till

    till Super Moderator Staff Member ISPConfig Developer

    Then your ftp server is still configured wrong. Please post the proftpd.conf file. Are you sure that you use ptoftpd and not vsftpd?
     
  6. vaio1

    vaio1 ISPConfig Developer ISPConfig Developer

    I'm using the ISO Perfect Server Fedora 7 downloaded by this website.
    I'm using the proftpd deamon.

    Code:
     vi /etc/proftpd.conf
    # This is the ProFTPD configuration file
    # $Id: proftpd.conf,v 1.1 2004/02/26 17:54:30 thias Exp $
    
    ServerName                      "ProFTPD server"
    ServerIdent                     on "FTP Server ready."
    ServerAdmin                     [email protected]
    ServerType                      standalone
    #ServerType                     inetd
    DefaultServer                   on
    AccessGrantMsg                  "User %u logged in."
    #DisplayConnect                 /etc/ftpissue
    #DisplayLogin                   /etc/ftpmotd
    #DisplayGoAway                  /etc/ftpgoaway
    DeferWelcome                    off
    
    # Use this to excude users from the chroot
    DefaultRoot                     ~ !adm
    
    # Use pam to authenticate (default) and be authoritative
    AuthPAMConfig                   proftpd
    AuthOrder                       mod_auth_pam.c* mod_auth_unix.c
    
    # Do not perform ident nor DNS lookups (hangs when the port is filtered)
    IdentLookups                    off
    UseReverseDNS                   off
    
    # Port 21 is the standard FTP port.
    Port                            21
    
    # Umask 022 is a good standard umask to prevent new dirs and files
    # from being group and world writable.
    Umask                           022
    
    # Default to show dot files in directory listings
    ListOptions                     "-a"
    
    # See Configuration.html for these (here are the default values)
    #MultilineRFC2228               off
    #RootLogin                      off
    #LoginPasswordPrompt            on
    #MaxLoginAttempts               3
    #MaxClientsPerHost              none
    #AllowForeignAddress            off     # For FXP
    
    # Allow to resume not only the downloads but the uploads too
    AllowRetrieveRestart            on
    AllowStoreRestart               on
    
    # To prevent DoS attacks, set the maximum number of child processes
    # to 30.  If you need to allow more than 30 concurrent connections
    # at once, simply increase this value.  Note that this ONLY works
    # in standalone mode, in inetd mode you should use an inetd server
    # that allows you to limit maximum number of processes per service
    # (such as xinetd)
    MaxInstances                    5
    
    # Set the user and group that the server normally runs at.
    User                            nobody
    Group                           nobody
    
    # Disable sendfile by default since it breaks displaying the download speeds in
    # ftptop and ftpwho
    UseSendfile                     no
    
    # This is where we want to put the pid file
    ScoreboardFile                  /var/run/proftpd.score
    
    # Normally, we want users to do a few things.
    <Global>
    
    
    Thanks
     
  7. mlz

    mlz New Member

    Did you restart proftpd after making the change?
     
  8. vaio1

    vaio1 ISPConfig Developer ISPConfig Developer

    yes of course.
     
  9. till

    till Super Moderator Staff Member ISPConfig Developer

    Is this the complete proftpd.conf? It looks as there is missing something at the end of the file.
     
  10. vaio1

    vaio1 ISPConfig Developer ISPConfig Developer

    it's all.

    thanks
     
  11. till

    till Super Moderator Staff Member ISPConfig Developer

    Have you opened the file with e.g. vi and scrolled down with the arrow keays on your keayboard? Normally there must be some more lines after the line "<Global>".
     
  12. vaio1

    vaio1 ISPConfig Developer ISPConfig Developer

    Ups Sorry!

    Code:
    <Global>
      AllowOverwrite                yes
      <Limit ALL SITE_CHMOD>
        AllowAll
      </Limit>
    </Global>
    
    # Define the log formats
    LogFormat                       default "%h %l %u %t \"%r\" %s %b"
    LogFormat                       auth    "%v [%P] %h %t \"%r\" %s"
    
    # TLS
    # Explained at http://www.castaglia.org/proftpd/modules/mod_tls.html
    #TLSEngine                      on
    #TLSRequired                    on
    #TLSRSACertificateFile          /etc/pki/tls/certs/proftpd.pem
    #TLSRSACertificateKeyFile       /etc/pki/tls/certs/proftpd.pem
    #TLSCipherSuite                 ALL:!ADH:!DES
    #TLSOptions                     NoCertRequest
    #TLSVerifyClient                off
    ##TLSRenegotiate                ctrl 3600 data 512000 required off timeout 300
    #TLSLog                         /var/log/proftpd/tls.log
    
    # SQL authentication Dynamic Shared Object (DSO) loading
    # See README.DSO and howto/DSO.html for more details.
    #<IfModule mod_dso.c>
    #   LoadModule mod_sql.c
    #   LoadModule mod_sql_mysql.c
    #   LoadModule mod_sql_postgres.c
    #</IfModule>
    
    # A basic anonymous configuration, with an upload directory.
    #<Anonymous ~ftp>
    #  User                         ftp
    #  Group                                ftp
    #  AccessGrantMsg               "Anonymous login ok, restrictions apply."
    #
    #  # We want clients to be able to login with "anonymous" as well as "ftp"
    #  UserAlias                    anonymous ftp
    #
    #  # Limit the maximum number of anonymous logins
    #  MaxClients                   10 "Sorry, max %m users -- try again later"
    #
    #  # Put the user into /pub right after login
    #  #DefaultChdir                        /pub
    #
    #  # We want 'welcome.msg' displayed at login, '.message' displayed in
    #  # each newly chdired directory and tell users to read README* files.
    #  DisplayLogin                 /welcome.msg
    #  DisplayFirstChdir            .message
    #  DisplayReadme                        README*
    #
    #  # Some more cosmetic and not vital stuff
    #  DirFakeUser                  on ftp
    #  DirFakeGroup                 on ftp
    #
    #  # Limit WRITE everywhere in the anonymous chroot
    #  <Limit WRITE SITE_CHMOD>
    #    DenyAll
    #  </Limit>
    #
    #  # An upload directory that allows storing files but not retrieving
    #  # or creating directories.
    #  <Directory uploads/*>
    #    AllowOverwrite             no
    #    <Limit READ>
    #      DenyAll
    #    </Limit>
    #
    #    <Limit STOR>
    #      AllowAll
    #    </Limit>
    #  </Directory>
    #
    #  # Don't write anonymous accesses to the system wtmp file (good idea!)
    #  WtmpLog                      off
    #
    #  # Logging for the anonymous transfers
    #  ExtendedLog          /var/log/proftpd/access.log WRITE,READ default
    #  ExtendedLog          /var/log/proftpd/auth.log AUTH auth
    #
    #</Anonymous>
    
    
    DefaultRoot ~
    
    Include /etc/proftpd_ispconfig.conf
    
    
    thanks
     
  13. falko

    falko Super Moderator ISPConfig Developer

    Please change
    Code:
    DefaultRoot ~
    to
    Code:
    DefaultRoot ~/web
    at the end of proftpd.conf and restart Proftpd.
     
  14. vaio1

    vaio1 ISPConfig Developer ISPConfig Developer

    Hi Falko,

    the problem persist. The user can see the root directory and all subfolders. I would like to hide also the .files.

    thanks
     
  15. falko

    falko Super Moderator ISPConfig Developer

    What's in /etc/proftpd_ispconfig.conf?

    Please change
    Code:
    ListOptions                     "-a"
    to
    Code:
    ListOptions                     "-l"
    in your proftpd.conf and restart Proftpd.
     
  16. vaio1

    vaio1 ISPConfig Developer ISPConfig Developer

    Hi Falko,

    thank you for your reply. Here below you'll find the etc/proftpd_ispconfig.conf

    Code:
    ###################################
    #
    # ISPConfig proftpd Configuration File
    #         Version 1.0
    #
    ###################################
    DefaultAddress 127.0.0.1
    <VirtualHost my.static.IP>
            DefaultRoot             ~
            AllowOverwrite          on
            Umask                   002
    </VirtualHost>
    
    
    I have set the ListOptions with "-l" but the situation doesn't change.

    thanks
     
  17. falko

    falko Super Moderator ISPConfig Developer

    Please create a copy of /root/ispconfig/isp/conf/proftpd_ispconfig.conf.master in /root/ispconfig/isp/conf/customized_templates and change
    Code:
    DefaultRoot             ~
    to
    Code:
    DefaultRoot             ~/web
    in it. Do the same in /etc/proftpd_ispconfig.conf and restart Proftpd.conf.
     
  18. vaio1

    vaio1 ISPConfig Developer ISPConfig Developer

    PERFECT! Now works but when I try to delete/create a file inside the web folder it reply me with [14:30:23] 550 d: Permission denied.

    thanks
     
  19. till

    till Super Moderator Staff Member ISPConfig Developer

    Did you upload the files with the same FTP user?
     
  20. vaio1

    vaio1 ISPConfig Developer ISPConfig Developer

    yes of course.
     

Share This Page