Open System Services Management and Operations Guide (G06.30+, H06.08+, J06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series

211

212

213

214

215

216

217

218

219

220

Allowing Anonymous FTP Use

To configure FTP for anonymous access to the OSS file system, use the Safeguard product. For

example, enter SAFECOM commands similar to:

ADD USER NULL.FTP, 0,254, OWNER 255,255, PASSWORD guest

ALTER USER NULL.FTP, GUARDIAN DEFAULT SECURITY OOOO

ALTER USER NULL.FTP, GUARDIAN DEFAULT VOLUME $guest.ftp

ADD ALIAS anonymous, 0,254, PASSWORD guest

ALTER ALIAS anonymous, GUARDIAN DEFAULT SECURITY OOOO

ALTER ALIAS anonymous, GUARDIAN DEFAULT VOLUME $guest.ftp

ALTER ALIAS anonymous, INITIAL-DIRECTORY /user/guest

ADD ALIAS ftp, 0,254, PASSWORD guest

ALTER ALIAS ftp, GUARDIAN DEFAULT SECURITY OOOO

ALTER ALIAS ftp, GUARDIAN DEFAULT VOLUME $guest.ftp

ALTER ALIAS ftp, INITIAL-DIRECTORY /user/guest

FREEZE USER NULL.FTP

FREEZE ALIAS anonymous

FREEZE ALIAS ftp

Note that:

• The Safeguard BLIND-LOGON attribute for the node must be set to OFF.

• The group number for the anonymous FTP user name NULL.FTP must be 0.

• The member number for the anonymous FTP user name NULL.FTP is not 0 or 255.

The member number 0 is reserved for a different user name in the group with the group

name NULL.

◦

◦ The member number 255 is assigned to the group manager of a group; users with the

user name NULL.FTP should not have group manager access for the group with the group

name NULL.

• Although other aliases are case-sensitive, FTP aliases for anonymous users are case-insensitive.

For example, you need to configure only “ftp” in the FTPUSERS file to bar access by both

the user aliases “ftp” and “FTP.”

• An alias must have a valid initial working directory (in the previous example, /user/guest):

If no valid initial working directory is specified for an anonymous alias, then FTP access

for that alias is denied.

◦

◦ An initial working directory of /E, /G, or a directory in /G is invalid.

• The aliases anonymous and ftp must be frozen under the Safeguard product, so that those

names cannot be used for access through any server process other than FTP.

Freezing the user NULL.FTP disables anonymous access to the Guardian environment.

• No OSS initial working directory is specified for the user NULL.FTP. As a result, the user

NULL.FTP is not allowed access to the OSS file system.

• The aliases anonymous and ftp do not have access to the Guardian environment.

• The user definition NULL.FTP and its aliases must all use the same Guardian default subvolume.

214 Managing Users and Groups