ssh server & postfix + courier

Sekcia: Konfigurácia 14.03.2007 | 18:58
Avatar Peter K. Kubuntu  Používateľ
cafte mam problem chcem na servery mat ssh a ftp (proftpd) ale mam problem, uzivatelia si mozu behat po hocijakej zlozke... potrebujem aby vedeli byt iba vo svojej... cize v ~ :) lebo takto mozu behat vsade /etc /var atd...

dalej sa chcem opytat na postfix a courier nejak tento problem umna pretrvava... postfix default som rozbehal ale nejako dalej config som posral a uz zase nechcel posielat maily ziaden schopny navod pre debian som nenasiel :(
    • Re: ssh server & postfix + courier 14.03.2007 | 19:04
      Avatar borg Arch, Debian jessie  Administrátor
      http://www.proftpd.org/docs/
      http://www.openssh.com/manual.html
      http://www.postfix.org/documentation.html
      • Re: ssh server & postfix + courier 14.03.2007 | 19:05
        Avatar Peter K. Kubuntu  Používateľ
        to mi vela povedalo ako spravit aby usery boli cez ssh aj ftp v svojej home zlozke...
        • Re: ssh server & postfix + courier 14.03.2007 | 19:08
          Avatar borg Arch, Debian jessie  Administrátor
          no malo by ;) pre ssh by malo byt riesenie na http://chrootssh.sourceforge.net/index.php ale necital som to cele. treba nastudovat dokumentaciu
    • Re: ssh server & postfix + courier 15.03.2007 | 12:21
      fixinko   Návštevník
      proftpd ma na to direktivu DefaultRoot ~... pri ssh to bude o nieco zlozitejsie, kedze mu tam musis spravit enviroment... mozno by nebolo zle spravit virtualny stroj, a tam nadrbat juzrov :-) mal by si to uplne oddelene, a v pripade nutnosti by si to vedel rychlo shutdownut :-)
      • Re: ssh server & postfix + courier 15.03.2007 | 14:26
        Avatar lime Debian, Red Hat, Fedora Core 3  Používateľ
        Tu mas config proftpd.conf, dufam ze ti pomoze :))

        ServerName "moj.server.sk"
        ServerType standalone
        DeferWelcome off

        MultilineRFC2228 on
        DefaultServer on
        ShowSymlinks on
        AllowOverwrite on
        AllowForeignAddress on

        TimeoutNoTransfer 600
        TimeoutStalled 600
        TimeoutIdle 1200

        DisplayLogin welcome.msg
        DisplayFirstChdir .message
        ListOptions "-l"

        DenyFilter \*.*/

        UseReverseDNS off
        IdentLookups off

        RootLogin off
        RequireValidShell off
        DefaultRoot ~

        TransferLog /var/log/ftpdata.log
        SystemLog /var/log/proftpd.log

        # Uncomment this if you are using NIS or LDAP to retrieve passwords:
        #PersistentPasswd off


        # Uncomment this if you would use quota module:
        #Quotas on

        # Uncomment this if you would use ratio module:
        #Ratios on

        # Port 21 is the standard FTP port.
        Port 21

        # To prevent DoS attacks, set the maximum number of child processes
        # to 30. If you need to allow more than 30 concurrent connections
        # at once, simply increase this value. Note that this ONLY works
        # in standalone mode, in inetd mode you should use an inetd server
        # that allows you to limit maximum number of processes per service
        # (such as xinetd)
        MaxInstances 30

        # Set the user and group that the server normally runs at.
        User nobody
        Group nogroup

        <Directory /*>
        # Umask 022 is a good standard umask to prevent new files and dirs
        # (second parm) from being group and world writable.
        Umask 022 022
        # Normally, we want files to be overwriteable.
        AllowOverwrite on
        </Directory>


        # A basic anonymous configuration, no upload directories.

        # <Anonymous ~ftp>
        # User ftp
        # Group nogroup
        # # We want clients to be able to login with "anonymous" as well as "ftp"
        # UserAlias anonymous ftp
        # # Cosmetic changes, all files belongs to ftp user
        # DirFakeUser on ftp
        # DirFakeGroup on ftp
        #
        # RequireValidShell off
        #
        # # Limit the maximum number of anonymous logins
        # MaxClients 10
        #
        # # We want 'welcome.msg' displayed at login, and '.message' displayed
        # # in each newly chdired directory.
        # DisplayLogin welcome.msg
        # DisplayFirstChdir .message
        #
        # # Limit WRITE everywhere in the anonymous chroot
        # <Directory *>
        # <Limit WRITE>
        # DenyAll
        # </Limit>
        # </Directory>
        #
        # # Uncomment this if you're brave.
        # # <Directory incoming>
        # # # Umask 022 is a good standard umask to prevent new files and dirs
        # # # (second parm) from being group and world writable.
        # # Umask 022 022
        # # <Limit READ WRITE>
        # # DenyAll
        # # </Limit>
        # # <Limit STOR>
        # # AllowAll
        # # </Limit>
        # # </Directory>
        #
        # </Anonymous>
        Prejdite z modrej obrazovky k linuxu :))
        • Re: ssh server & postfix + courier 18.03.2007 | 21:25
          Avatar Peter K. Kubuntu  Používateľ
          hmm default config? ;)
          • Re: ssh server & postfix + courier 18.03.2007 | 21:44
            Avatar lime Debian, Red Hat, Fedora Core 3  Používateľ
            Dobre nie :)), v jednoduchosti je krasa :)) iba tie logy som tam supol
            Prejdite z modrej obrazovky k linuxu :))