• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Secure ftp without giving shell access

E

ebinc

Guest
Hi

Is their a way to provide secure ftp, but without allowing shell terminal access?

I see anyone logged in via ftp can go up a level and see what other domains are hosted on the server

is their a way to lock their view only to their domain folders?

also what is the url for a domain setup on a Plesk virtual account (shared ip)
that will let a client view their website until their domain name propagates?

Thanks
 
I have no idea about how to fix this, but, anyone can see what domains are hosted on a box using reverse dns lookup on your IP anyway ....

www.whois.sc

-poke
 
Originally posted by ebinc
Hi

Is their a way to provide secure ftp, but without allowing shell terminal access?

I see anyone logged in via ftp can go up a level and see what other domains are hosted on the server

is their a way to lock their view only to their domain folders?

also what is the url for a domain setup on a Plesk virtual account (shared ip)
that will let a client view their website until their domain name propagates?

Thanks

DefaultRoot ~ psacln


Make sure that is in between your Global settings
in /usr/local/psa/ftpd/etc/proftpd.conf

That should lock them to there homedir
 
Originally posted by poke
I have no idea about how to fix this, but, anyone can see what domains are hosted on a box using reverse dns lookup on your IP anyway ....

www.whois.sc

-poke

no they cant, unless you have PTR records assigned for each of your domains that you host, which you shouldnt

You should only have one PTR record per ip address.

check your dns template settings.
 
www.break.co.nz = 1.1.1.1

Advanced View of 1.1.1.1

10 domains found on 1.1.1.1
Showing all 10.

Website
edited



so what just happened here..... or was you signature not your actual URL

regards,
poke
 
Originally posted by etan
no they cant, unless you have PTR records assigned for each of your domains that you host, which you shouldnt

You should only have one PTR record per ip address.

check your dns template settings.

****, i retract my comment..


please remove those from your post :)
 
sorry dude if i exposed your urls ...:p They are removed!!

peace out,

poke
 
Yeah that is interesting.... I looked around whois.sc and didn't see anything on why only .com's appear....

-poke
 
Re: Re: Secure ftp without giving shell access

Originally posted by etan
DefaultRoot ~ psacln


Make sure that is in between your Global settings
in /usr/local/psa/ftpd/etc/proftpd.conf

That should lock them to there homedir

I have this, its not stoping ftp users logged in from viewing what domains are hosted on the server


heres what my file looks like

ServerName "ProFTPD"
ServerType inetd
ServerType inetd
DefaultServer on
<Global>
DefaultRoot ~ psacln
AllowOverwrite on
</Global>
DefaultTransferMode binary
UseFtpUsers on

Thanks
Ed
 
Back
Top