Manualshelf

Open System Services Management and Operations Guide (G06.29+, H06.07+)

ManualsBrandsHP ManualsServerHP NonStop G-Series
251252253254255256257258259260
Managing Security
Open System Services Management and Operations Guide527191-005
8-22
Hints and Suggestions
Configuring FTP Users
If an FTP server user requests that his or her user definition be configured for initial
access to the Guardian environment:
1. Leave that users definition with the default null value for its OSS initial working
directory.
2. Use the TACLCSTM file method to assign an OSS initial working directory for
indirect Telserv access (see Assigning an Initial Working Directory Using a
TACLCSTM File on page 8-18).
Allowing Anonymous FTP Use
To configure FTP for anonymous access to the OSS file system, use the Safeguard
product. For example, enter SAFECOM commands similar to:
ADD USER NULL.FTP, 0,254, OWNER 255,255, PASSWORD guest
ALTER USER NULL.FTP, GUARDIAN DEFAULT SECURITY OOOO
ALTER USER NULL.FTP, GUARDIAN DEFAULT VOLUME $guest.ftp
ADD ALIAS anonymous, 0,254, PASSWORD guest
ALTER ALIAS anonymous, GUARDIAN DEFAULT SECURITY OOOO
ALTER ALIAS anonymous, GUARDIAN DEFAULT VOLUME $guest.ftp
ALTER ALIAS anonymous, INITIAL-DIRECTORY /user/guest
ADD ALIAS ftp, 0,254, PASSWORD guest
ALTER ALIAS ftp, GUARDIAN DEFAULT SECURITY OOOO
ALTER ALIAS ftp, GUARDIAN DEFAULT VOLUME $guest.ftp
ALTER ALIAS ftp, INITIAL-DIRECTORY /user/guest
FREEZE USER NULL.FTP
FREEZE ALIAS anonymous
FREEZE ALIAS ftp
Note that:
The Safeguard BLIND-LOGON attribute for the node must be set to OFF.
The group number for the anonymous FTP user name NULL.FTP must be 0.
The member number for the anonymous FTP user name NULL.FTP is not 0 or
255.
°
The member number 0 is reserved for a different user name in the group with
the group name NULL.
°
The member number 255 is assigned to the group manager of a group; users
with the user name NULL.FTP should not have group manager access for the
group with the group name NULL.
Although other aliases are case-sensitive, FTP aliases for anonymous users are
case-insensitive. For example, you need to configure only “ftpin the FTPUSERS
file to bar access by both the user aliases “ftp” and “FTP.”