Using proftpd I do something like this:<br><br><Directory /path/to/upload/Ftp><br> <Limit RETR, SITE, READ, LIST, MKD, DELE, RMD, CDUP, CWD, MDTM, NLST, RNFR, X<br>CUP, XCWD, XPWD><br> DenyAll<br> </Limit><br>
HideUser www-data<br> GroupOwner www-data<br> Umask 011<br></Directory><br><br>But better yet is to use webdav, which is incredibly easy now that apache2 is common. Using webdav means the files will be owned by the webserver automatically.<br>
<br>The problem with using a php upload script is that I don't like messing with the max upload size of PHP nor do I like long-running apache processes. Using either of the above, the file can be as large as you have free disk space.<br>
<br><div class="gmail_quote">On Jan 30, 2008 12:03 PM, Nathan C. Smith <<a href="mailto:nathan.smith@ipmvs.com">nathan.smith@ipmvs.com</a>> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<br><br>I'm trying to create an FTP "drop-box". I'd like to make it easy for<br>clients to drop files off and easy for internal people to retrieve the<br>files. Right now I am using vsftpd and I have a directory set up under<br>
/home/ftp called upload for new files.<br><br>So far the FTP part works fine. An anonymous user can drop files into the<br>upload folder and they cannot see (ls -lasp etc.) anything that is in the<br>folder.<br><br>The problem is that I would like to set up a web server that does a<br>
directory listing of the files that are in the anonymous drop box. Right<br>now the web server runs as www-data and vsftp runs as ftp.<br><br>Here are the permissions on the upload folder right now:<br><br>4 drwx-ws-wx 2 root root 4096 Jan 30 11:53 upload/<br>
<br>is there a way to make this work using permissions alone or do I have to<br>change the user one of the services run as? If I set everything to 777 It<br>works but I lose the privacy in the ftp directory I was going for. ls -lasp<br>
will show all the files on the site.<br><br>I could use some help or a little lesson in permissions.<br><br>As an aside, this isn't going to be in place 24x7. I will use a rule in the<br>firewall to flip the FTP availability to 'on' only when we know we have a<br>
large inbound file.<br><br>Thanks.<br><br>-Nate<br>_______________________________________________<br>Cialug mailing list<br><a href="mailto:Cialug@cialug.org">Cialug@cialug.org</a><br><a href="http://cialug.org/mailman/listinfo/cialug" target="_blank">http://cialug.org/mailman/listinfo/cialug</a><br>
</blockquote></div><br><br clear="all"><br>-- <br>Matthew Nuzum<br>newz2000 on freenode