ServU security question!!!
7 views
Skip to first unread message
dylandog6
Feb 27, 2011, 4:23:12 PM2/27/11
to RhinoSoft.com User Group
Hello,
I'm not an expert so I just have one crucial question,
can anybody please reassure me if possible?
I installed Serv-U 9.4.0.2 and used the setup wizard.
I followed all instructions and set my server with the command
LOCK USER IN HOME DIRECTORY
I gave my username and password to a friend so he could download
from my PC, locking him into this home directory so he could see and
retrieve ONLY the files
in this folder (read only, no privileges) The folder is in an EXTERNAL
drive.
But I also have ANOTHER external drive (very private) ALSO connected
to
my PC.
My question:
IS IT POSSIBLE FOR THIS PERSON TO NAVIGATE OUTSIDE MY HOME DIRECTORY
AND EXPLORE (or download from) MY OTHER VERY PRIVATE EXTERNAL DRIVE?
Thanks a million to anyone willing to reassure me :)
Dylandog6
I'm not an expert so I just have one crucial question,
can anybody please reassure me if possible?
I installed Serv-U 9.4.0.2 and used the setup wizard.
I followed all instructions and set my server with the command
LOCK USER IN HOME DIRECTORY
I gave my username and password to a friend so he could download
from my PC, locking him into this home directory so he could see and
retrieve ONLY the files
in this folder (read only, no privileges) The folder is in an EXTERNAL
drive.
But I also have ANOTHER external drive (very private) ALSO connected
to
my PC.
My question:
IS IT POSSIBLE FOR THIS PERSON TO NAVIGATE OUTSIDE MY HOME DIRECTORY
AND EXPLORE (or download from) MY OTHER VERY PRIVATE EXTERNAL DRIVE?
Thanks a million to anyone willing to reassure me :)
Dylandog6
FTPServerTools
Feb 28, 2011, 5:53:11 PM2/28/11
to RhinoSoft.com User Group
If the user is locked in the home directory then he can not go outside
that directory. No matter how he tries to hack around it.
Just log in yourself and you see that there is no way of going up a
directory. You can only go into a directory that is given.
There is one thing tho, you should not use symlinks on ntfs level (if
you dont know what that is then you very likely dont use it) in the
subdir of that homedir.
Although I think that they wont work either to jump outside the home
dir and below...
If you block the create rights for making a new dir then he cant even
make new directories...
that directory. No matter how he tries to hack around it.
Just log in yourself and you see that there is no way of going up a
directory. You can only go into a directory that is given.
There is one thing tho, you should not use symlinks on ntfs level (if
you dont know what that is then you very likely dont use it) in the
subdir of that homedir.
Although I think that they wont work either to jump outside the home
dir and below...
If you block the create rights for making a new dir then he cant even
make new directories...
Reply all
Reply to author
Forward
0 new messages