[NTLUG:Discuss] vsftp group setting
Leroy Tennison
leroy_tennison at prodigy.net
Thu Aug 30 21:50:23 CDT 2007
m m wrote:
> All:
>
> How do I do on vsftp configuration to make a default uploaded file or directory group owner as "ftp" but not "50".I have a vsftp running. every time the ftp user logged in and upload file or create a folder, the group is default to 50.
> I want it created as "ftp" (or other name) group by default.
> here is the setting on the vsftp.cong
> ------------------------
> local_umask=027
> write_enable=YES
> chroot_local_user=YES
> guest_enable=YES
> guest_username=user1 (linux user, was ftp)
> hide_ids=YES
> listen=YES
> local_enable=YES
> pam_service_name=vsftp
> session_support=NO
> use_localtime=YES
> user_config_dir=/etc/vsftpd/users
> userlist_enable=YES
> userlist_file=/etc/vsftpd/user_list
> virtual_use_local_privs=YES
> xferlog_enable=YES
> chown_uploads=YES
> chown_username=user1
> ------------------------------
> Any comments are welcome.Thanks.
> _________________________________________________________________
> Messenger Café — open for fun 24/7. Hot games, cool activities served daily. Visit now.
> http://cafemessenger.com?ocid=TXT_TAGLM_AugWLtagline
> _______________________________________________
> http://www.ntlug.org/mailman/listinfo/discuss
>
If you have a common location or finite set of locations for uploads you
should be able to 'chmod g+s <group name>' after setting the group to
own/write to the directory.
At first I thought this was too simple but I think I see your issue: Why
is the group owner being reported as 50 rather than ftp? I've seen this
in LDAP situations when the ID (user or group) was from LDAP but the
LDAP server wasn't on line.
A couple of "wild ideas": What does /etc/nsswitch.conf have for
'group', anything preceding 'files'? Is any other remote authentication
service (such as Samba) configured but unavailable (they would have to
have a ftp group which is unlikely)? The only other idea is (on a test
machine) to delete/re-create either the ftp user or group and see if
that makes a difference (assumes the user/group is re-created with
something other than 50 as it's ID).
More information about the Discuss
mailing list