in /etc/vsftpd.conf, then files that have been uploaded are anonymously downloadable again, although the incoming directory is still not listable. This is almost certainly undesirable, except in a trusted environment because associates of anyone who has parked files on your server will be able to download them.

The root FTP directory /srv/ftp/ itself should be owned by user root and group root, and there should be no subdirectory that is readable, writable, and listable.

- See Chapter 2 for more information about permissions.

An anonymous FTP session looks something like Listing 23-3.


Successfully Uploading Files

Was this article helpful?

0 0

Post a comment