Limit vsftp upload to a given set of file-names

Posted by Chen Levy on Server Fault See other posts from Server Fault or by Chen Levy
Published on 2010-03-16T10:22:11Z Indexed on 2010/03/16 10:26 UTC
Read the original article Hit count: 628

Filed under:

ftp

|

vsftp

|

upload

|

filename

|

restrict-access

I need to configure an anonymous ftp with upload. Given this requirement I try to lock this server down to the bear minimum.

One of the restrictions I wish to impose is to enable the upload of only a given set of file-names.

I tried to disallow write permission to the upload folder, and put in it some empty files with write permission:

/var/ftp/         [root.root] [drwxr-xr-x]
|-- upload/       [root.root] [drwxr-xr-x]
|   |-- upfile1   [ftp.ftp]   [--w-------]
|   `-- upfile2   [ftp.ftp]   [--w-------]
`-- download/     [root.root] [drwxr-xr-x]
    `-- ...

But this approach didn't work because when I tried to upload upfile1, it tried to delete and create a new file in its' place, and there is no permissions for that.

Is there a way to make this work, or perhaps use a different approach like abusing the deny_file option?

© Server Fault or respective owner

Related posts about ftp

sudo apt-get update problem

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I have a problem with sudo apt-get update that I can't seem to fix and It's causing problems with alot of installations I want to do. I run Ubuntu 12.04. Ign http://ftp.availo.se precise InRelease Ign http://ftp.availo.se precise-updates InRelease Ign http://ftp.availo… >>> More
Why does DEP kill IE when accessing Microsoft FTP?

as seen on Super User - Search for 'Super User'
I start up IE (9.0.8112.16421) with about:blank and I go to ftp://ftp.microsoft.com/ I press Alt, click View and then Open FTP Site in Windows Explorer. At this point IE stops responding and eventually crashes (though the window is still active, sometimes) and I get the usual Windows dialog box saying… >>> More
Shrinking TCP Window Size to 0 on Cisco ASA

as seen on Server Fault - Search for 'Server Fault'
Having an issue with any large file transfer that crosses our Cisco ASA unit come to an eventual pause. Setup Test1: Server A, FileZilla Client <- 1GBPS - Cisco ASA <- 1 GBPS - Server B, FileZilla Server TCP Window size on large transfers will drop to 0 after around 30 seconds of a large… >>> More
Shrinking Windows Size to 0 on Cisco ASA

as seen on Server Fault - Search for 'Server Fault'
Having an issue with any large file transfer that crosses our Cisco ASA unit come to an eventual pause. Setup Test1: Server A, FileZilla Client <- 1GBPS - Cisco ASA <- 1 GBPS - Server B, FileZilla Server TCP Window size on large transfers will drop to 0 after around 30 seconds of a large… >>> More
Weird FTP issue between Unity Express and Windows Server 2008 FTP

as seen on Server Fault - Search for 'Server Fault'
My VOIP specialist complained about not being able to run backups of the Unity Express onto our FTP server (Microsoft FTP on Server 2008). I did a packet trace and observed some weird behavior that I think is even kind of funny in a way. The Unity FTP client is able to initiate both control and data… >>> More

Related posts about vsftp

Limit vsftp upload to a given set of file-names

as seen on Server Fault - Search for 'Server Fault'
I need to configure an anonymous ftp with upload. Given this requirement I try to lock this server down to the bear minimum. One of the restrictions I wish to impose is to enable the upload of only a given set of file-names. I tried to disallow write permission to the upload folder, and put in it… >>> More
Getting VSFTP running on Fedora 14

as seen on Server Fault - Search for 'Server Fault'
Having troubles getting VSFTPD running on Fedora 14. Here is what I have done so far, please let me know if I am missing something. When I try to connect through FTP it says connection time out. Installed VSFTP with yum yum install vsftpd Edited config file vi /etc/vsftpd/vsftpd.conf Started… >>> More
vsftp on CentOS - unable to get a folder list of /var directory

as seen on Server Fault - Search for 'Server Fault'
Hi, I'm just getting started with CentOS and running into a strange issue with vsftp. When I FTP in, then change directory to /var I don't get a folder list. Is there something about CentOS or vsftp in particular that I may be missing that causes this behavior? The permissions on the folder… >>> More
A specific user is unable to log in to vsftpd

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I am setting up a new user let his name be ftpguy. He has access to only one directory /var/www/xxx. I have already chowned the directory so that he has write and read privileges. The user is also unable to login via ssh as I have disabled that by changing his shell to /sbin/nologin. Also, in vsftpd… >>> More
ftp connection problem, vsftp server, active mode

as seen on Server Fault - Search for 'Server Fault'
I have a server that runs vsftpd to handle ftp connections. One of my users have a notebook with Total Commander and WinSCP installed. Both ftp clients fail right after the connection is established to the server and it tries to download the directory listing without any particular error message. The… >>> More