Internet Express for Tru64 UNIX Version 6.10 Administration Guide (5900-1418, March 2011)

ManualsBrandsHP ManualsSoftwareHP-UX Internet Express Software

211

212

213

214

215

216

217

218

219

220

Minimum UID – The Administration utility searches for the specified UID and, if it is

available, assigns it to the account. If that UID number is not available, the utility assigns

the next highest available UID.

•

• FTP Group Name — Name of the group to which you want to assign the anonymous

Pure-FTP account. If the group you specify does not exist, the Administration utility creates

it.

• FTP Home Directory –The home directory is the root of the directory structure that you

want to make visible to anonymous FTP users. It contains the pub directory, which is the

repository for all publicly available documents. It also contains the bin directory, which

is the repository for all programs you want to make available to the public. Make sure

that the pub and bin directories have enough space for the files you plan to make

available to remote systems, and for the files you expect users to copy there from remote

systems. The default home directory of the anonymous FTP account is /data/ftp.

5. When the form is complete, click on Submit to create the anonymous FTP account. To restore

the form's default settings, click on Reset.

Notes:

After the account is established, use Tru64 UNIX commands to copy files and subdirectories to the

pub and bin directories.

Any program you want to run under FTP must reside somewhere under the /data/ftp directory

hierarchy. By convention, the bin directory is used to store programs and the pub directory is

used to store documents.

Enabling or Disabling Anonymous Pure-FTP Access

To enable or disable the anonymous login for Pure-FTP, follow these steps:

1. From the Administration utility Main menu, choose Manage Components.

2. From the Manage Components menu, choose Pure-FTP Server.

3. From the Pure-FTP Server Administration menu, choose Enable/Disable Anonymous Pure-FTP

Access.

The current status of the account is displayed (either enabled or disabled).

4. If access is enabled, click on Disable to disable access. If access is disabled, click on Enable

to enable access.

File upload is disabled by default for anonymous FTP access. If you wish to enable upload for

anonymous FTP, you need to edit /usr/local/etc/ftpaccess and add a line similar to the

following:

upload /data/ftp /pub yes ftp daemon 0666

In the example, the anonymous FTP user (ftp) with home directory /data/ftp is allowed to

upload files into the /data/ftp/pub directory and the resulting files have owner set to ftp,

group set to daemon, and permissions set to 0666.

Enabling or Disabling chroot

chroot is a technique under UNIX, whereby users are kept in a confined part of the directory tree.

Trying to change to a directory outside of this limited area will fail.

For example, assume there is a user with the user name mimi. With chroot disabled, mimi will be

able to log in and retrieve any public-readable file in the file system.

Now, with chroot enabled, when mimi next carries out a FTP log in, only mimi's home directory

(/usr/users/mimi or /home/mimi) will be reachable, not the whole file system.

To enable or disable the chroot for Pure-FTP, follow these steps:

214 FTP Server Administration