DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD General

OpenBSD General Other questions regarding OpenBSD which do not fit in any of the categories below.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 14th January 2013
ershiba ershiba is offline
Loading, please wait...
 
Join Date: Dec 2012
Posts: 34
Default setting up ftp to allow /var/www/htdocs

hi all,
i started the built-in ftpd_flags="-D" in /etc/rc.conf.local

if i use ftp in, i could write in /home/oem only (my user id is oem)

what is the best security practice that i should do in order to write to /var/www/htdocs ?

i am doing for web development, i would code the php scripts in my windoze machine and upload it using ftp client and run test it on browser,

just want to confirm, is vsftpd a better tools for such situation?

or, i should do the following,

$ cd /var/www/htdocs
$ sudo ln -s ../../../../home/oem/website-abc.com website-abc.com

thanks in advance.

a little bit update
Quote:
$ cd /var/www/htdocs
$ sudo ln -s ../../../../home/oem/website-abc.com website-abc.com
doesn't seem to works,

Last edited by ershiba; 14th January 2013 at 09:13 AM.
Reply With Quote
  #2   (View Single Post)  
Old 14th January 2013
ershiba ershiba is offline
Loading, please wait...
 
Join Date: Dec 2012
Posts: 34
Default

i did the following, but i still need you guys advices,
Code:
$ cd /var/www
$ sudo mkdir website-abc
$ cd htdocs
$ sudo ln -s ../website-abc abc
$ cd /var/www
$ sudo chown -R oem website-abc
$ cd ~
$ sudo ln -s /var/www/website-abc abc
so, when i ftp into, i go to ftp://192.168.56.200/abc/
then i would able to upload every files,

it seems working, but is it fine ( in terms of security & logic ) to set this in such a way?
Reply With Quote
  #3   (View Single Post)  
Old 14th January 2013
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,975
Default

The best security practice is not to use FTP on an insecure network except for "anonymous" downloads. All FTP traffic, including userid and password transmission, is conducted in the clear. On OpenBSD, the secure replacement for FTP is sftp(1), a component of OpenSSH. This uses SSH for file transfer, and includes completely encrypted traffic and the entire suite of SSH authentication methods. On Windows, OpenSSH (including sftp) is available under Cygwin.

By default, /var/www/htdocs is owned by root:daemon and the directory is filemode 755, so only root has write access. Rather than creating a series of symbolic links, you could change htdocs ownership to oem:daemon.
Reply With Quote
  #4   (View Single Post)  
Old 14th January 2013
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,125
Default

You can use FileZilla. It runs on Windows, Linux, Mac OS X and the BSD's.
To configure Filezilla to use scp or sftp see http://forum.filezilla-project.org/v...c.php?f=3&t=76
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #5   (View Single Post)  
Old 15th January 2013
ershiba ershiba is offline
Loading, please wait...
 
Join Date: Dec 2012
Posts: 34
Default

thanks for the concern guys,
i would switch to sftp soon =)
Reply With Quote
Reply

Tags
ftp

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Need Help setting up NAT (pf.conf) wlm2 OpenBSD Security 11 22nd October 2011 03:47 PM
Setting up brasero. Ninguem NetBSD Package System (pkgsrc) 2 27th September 2011 03:27 PM
I need help setting up queues. MarcRiv OpenBSD Security 6 17th November 2009 11:31 PM
Setting Up MPD benjgvps FreeBSD General 0 21st May 2008 12:20 PM
thanks for setting this up DraconianTimes Off-Topic 8 5th May 2008 08:14 AM


All times are GMT. The time now is 07:30 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick