although i can set up vsftp properly, but the problem is that user account who connected to my ftp server can browser my entire system file. let say i have some diary in my computer, i don't want other user read them. i think it's useless or waste time to chmod permission on each directory that i don't want user to read it.

is there any short cut or special method to stop regular user broswer my file system except their home directory after they connect into my ftp server ?????????????????????????

this is the case with all ftp servers.

the answer to it is : chroot

many ftp servers come with their own chroot option to jail users, and some you have to set the whole server up in its own chrooted environment.

there is a link in my sig to my how-to for setting this up with proftpd securely if you want an example. (I realize you aren't using proftpd).

Originally posted by Hayl
this is the case with all ftp servers.

the answer to it is : chroot

many ftp servers come with their own chroot option to jail users, and some you have to set the whole server up in its own chrooted environment.

there is a link in my sig to my how-to for setting this up with proftpd securely if you want an example. (I realize you aren't using proftpd).
thanks. Hayl, i am checking your link . good resource :'D

the chroot options (ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-1.2.0/vsftpd.conf) are near the bottom.

Originally posted by stiles
the chroot options (ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-1.2.0/vsftpd.conf) are near the bottom.
thanks stiles. i have sense what to do now. i mean i know what i should do ^^>>

anyone has official website of vsftpd???
i need its documentation and want to learn about other directives.

its website doesn't show in regular search engine, i can't find it on the web.

http://vsftpd.beasts.org/

(what a cheezy URL - beasts.org ???)

Originally posted by Hayl


there is a link in my sig to my how-to for setting this up with proftpd securely if you want an example. (I realize you aren't using proftpd).


which link is it?

umm the one that says "My Screenshots and other stuff"

gotcha...i found that page, but couldn't find info but i might have missed....but i found it on google.

thanks
while i got you though:

with proftp, it is much better at letting users only see their own home folder, but i am guessing that i can allow them to certain other folders as well, too, right?

I am still reading the docs...

i didn't see the GIGANTIC HOW-TO at the top of your page....sorry.

back to vsftp.....how can I tell if someone is logged on via ftp?

netstat -an | grep \\\<2[10]\\\>

will show all network connections having one endpoint on either port 21 (FTP control) or 20 (FTP data). It'll also show the remote IP address, but you'd need something specific to vsftpd to find out who they're logged on as, for example. Try checking its logs.

Actually, it'll also show any connection where one end has an IP address containing the octet "20" or "21", but assuming you can mentally filter those out, it'll still work.