[Date Prev][Date Next][Thread Prev][Thread Next][Minivend by date
][Minivend by thread
]
FTP Permissions problems
****** message to minivend-users from Jeff Halper <jeff@ihot.com> ******
I'm a minivend newbie - just setting up a server to handle minivend
applications.
I am able to get minivend up, although it was quite a challenge at first
- needed new perl, then various errors.
We use Linux (Redhat). We had to get the new Perl, as recommended.
We have traditionally used 705 as the FTP permission - and placed all
ftp users in the same group - this allowed an ftp user to see the names
of other FTP users, but clicking on anyone elses directory produces an
error and you cannot explore another users directory.
But in 705 mode, the minivend does not have permission to initialize the
catalogs.
So - do we have to allow ftp users the privilege of 'exploring" or is
there some other way?
I've checked out a few other ISPS where I have shell accounts and ftp
accounts, and I am able to explore in places where I do not think i
should be allowed to get to - and in my opinion this is a security
problem that we want to avoid -
If you have hidden files in your web site, no body should be able to
discover the names of the hidden files this way.
Any advice-solutions?
Any minivend gurus out there who might want to earn some $$$ doing some
consulting-setup-assistance during this phase our setup?
Please respond privately to jeff@ihot.com if you might be interested in
consulting for $$$.
-Jeff
--
JEFF HALPER * Internet Hotline * POB 5787 * SJ CA 95150
http://www.ihot.com
mailto:jeff@ihot.com
408/881-1000 Fax 408/293-3456
-
To unsubscribe from the list, DO NOT REPLY to this message. Instead, send
email with 'UNSUBSCRIBE minivend-users' in the body to Majordomo@minivend.com.
Archive of past messages: http://www.minivend.com/minivend/minivend-list
