ITEM: E6944L
How to set up system for anonymous ftp/restricted guest accounts.
Question:
How do we set up an anonymous ftp account in AIX 3.2.x?
Response:
To completely install and setup anonymous ftp there is
a script called /usr/lpp/tcpip/samples/anon.ftp. This will do it all
for you. We can also perform this process manually.
Doing it manually however, we can cut out several steps that the
script performs. There are many extraneous files and directories that
the script creates. To do this by hand:
1. Create a non-administrative group called ftp
2. Create a user named ftp. The only things that need
to be set are the user name (ftp), login user (false),
user can rlogin (false), another user can SU to user (false),
home directory (/u/ftp)*, and primary group (ftp). Everything
else is your option such as max CPU, max file size, etc...
* The home directory can really be anything, /u/ftp was
convenient.
3. Now, here are the commands that follow.
\#chmod 755 /u/ftp
\#cd /u/ftp
\#mkdir bin lib pub
\#cp /usr/bin/ls bin/ls
\#cp /lib/libc.a lib/libc.a
\#chmod 555 bin
\#chmod 555 lib
\#chmod 777 pub
pub is the directory set aside for users to put and get file to/from.
With this setup, anyone logged in as ftp in an ftp session will
perceive /u/ftp as '/'. In other words, nothing exists to that user
lower in the tree than /u/ftp. The user can only see files (with the
current setup) in /u/ftp/bin, /u/ftp/lib, and /u/ftp/pub. These will
appear to the user as /bin, /lib, and /pub respectively.
Nobody can use rlogin, telnet, su, rsh or any other form of shell as
the user ftp. The user ftp can ONLY be ftp'ed to.
This account can also be accessed with the login name of 'anonymous'.
For more information about ftp, see
man ftp
Practical UNIX Security (O'reilley and associates)
/usr/lpp/tcpip/samples/anon.ftp
Support Line: How to set up system for anonymous ftp/restricted guest accounts. ITEM: E6944L
Dated: November 1993 Category: N/A
This HTML file was generated 99/06/24~13:30:53
Comments or suggestions?
Contact us