Facebook
TwitterJoel Hansen
New Pleskian
We are currently running Plesk 12 on Ubutnu 12.04 LTS.
The only relevant documentation we could find so far is this: http://kb.parallels.com/en/9689
Where:
Symptoms
FTP users created for accessing certain domains can access another customer's domain and other directories on the server. They also have access to the root directory.
FTP users should be able to view only their own domain's directory.
Cause
The issue may occur in the following cases:
You have an unsupported FTP server program installed.
The ProFTPd configuration file has been manually edited (the DefaultRoot directive value has been changed).
Resolution
To allow users to access only their home directories, add the "DefaultRoot ~" line at the end of the FTP server's configuration file (usually /etc/proftpd.conf):
# echo "DefaultRoot ~" >> /etc/proftpd.conf
Which would be great! However, this does not seem to be a solution for us. Right now, this is restricted to SFTP and not FTP and after including "DefaultRoot ~" >> /etc/proftpd.conf, we see no change in behavior. It's possible that OpenSSH is not properly handling FTP user group(s) and we are looking into that.
So ultimately, we would like to know if there's something else we need to be configuring to restrict SFTP users to their home directory as well as the Plesk user/usergroup that may need to be configured within OpenSSH.
Thank you in advance to the community!
The only relevant documentation we could find so far is this: http://kb.parallels.com/en/9689
Where:
Symptoms
FTP users created for accessing certain domains can access another customer's domain and other directories on the server. They also have access to the root directory.
FTP users should be able to view only their own domain's directory.
Cause
The issue may occur in the following cases:
You have an unsupported FTP server program installed.
The ProFTPd configuration file has been manually edited (the DefaultRoot directive value has been changed).
Resolution
To allow users to access only their home directories, add the "DefaultRoot ~" line at the end of the FTP server's configuration file (usually /etc/proftpd.conf):
# echo "DefaultRoot ~" >> /etc/proftpd.conf
Which would be great! However, this does not seem to be a solution for us. Right now, this is restricted to SFTP and not FTP and after including "DefaultRoot ~" >> /etc/proftpd.conf, we see no change in behavior. It's possible that OpenSSH is not properly handling FTP user group(s) and we are looking into that.
So ultimately, we would like to know if there's something else we need to be configuring to restrict SFTP users to their home directory as well as the Plesk user/usergroup that may need to be configured within OpenSSH.
Thank you in advance to the community!
