[공유] [Solaris] 기본 ftp(in.ftpd)에서 계정별 홈디렉토리 상위로 접근 제한

Posted Jun 25, 2013

By audtjddld

1 min read

**class realusers real * class guestusers guest * class anonusers anonymous *

restricted-uid publ**

loginfails 3 passwd-check trivial warn private no shutdown /etc/ftpd/shutdown.msg

email user@hostname

guestuser username

rhostlookup no

keepalive yes recvbuf 65536 real,guest,anonymous sendbuf 65536 real,guest,anonymous

flush-wait no anonymous

passive ports 0.0.0.0/0 32768 65535

timeout data 600

timeout idle 300

banner /etc/ftpd/banner.msg greeting brief message /etc/ftpd/welcome.msg login message .message cwd=* readme README login readme README cwd=*

quota-info *

chmod no anonymous delete no anonymous overwrite no anonymous rename no anonymous umask no anonymous

compress yes realusers guestusers anonusers tar yes realusers guestusers anonusers

path-filter guest,anonymous /etc/ftpd/filename.msg ^[[:alnum:]._-]*$ ^[.-]

noretrieve relative class=anonusers / allow-retrieve relative class=anonusers /pub

upload class=anonusers * * no nodirs

upload class=anonusers * /incoming yes ftpadm ftpadm 0440 nodirs

log commands real,guest,anonymous

log security real,guest,anonymous

log transfers real,guest,anonymous inbound,outbound

xferlog format %T %Xt %R %Xn %XP %Xy %Xf %Xd %Xm %U ftp %Xa %u %Xc %Xs %Xr

limit-time anonymous 30

limit anonusers 10 Wk0730-1800 /etc/ftpd/toomany.msg

limit anonusers 50 SaSu|Any1800-0730 /etc/ftpd/toomany.msg

ftp 상위 디렉토리 접근 금지

경험 및 정보 공유

This article is licensed under CC BY 4.0 by the author.