betaftpd with root acess?


Forum: Apps
Topic: betaftpd with root acess?
started by: xcoil
Posted by xcoil on May 05 2005,19:57
i can access with success to my betaftpd with the user:xcoil
(thatīs me :d)

but with as "root" the login its not possible it said login incorrect.

but iīm the administrator and the user and passw are right.

itīs possibel to access as root? or impossible?
Posted by Guest on May 06 2005,16:48
Not a good idea.  For security reasons, no daemon process should allow access to user "root".  However, you should be able to login as user "dsl" and this should be good enough.  User "dsl" can browse and download anything from the entire directory tree, and upload to directories which "dsl" has write access.

If what you wanted to do is upload a file into a directory that user "dsl" cannot write to, you are better off using the sshd secure shell daemon.  First make sure to set very strong passwords to "root" and "dsl" users on the computer running DSL.  Then start the sshd daemon from the DSL menu -> system -> daemons -> ssh -> start.  Then take note of the IP address of this computer (sudo pump -s).

Now, on the remote computer (Linux or Windows), make sure that you have either a secure shell terminal software (ssh) or a secure ftp client (sftp).  Almost all Linux distributions have them: just type "sftp dsl@xxx.xxx.xxx.xxx", give the password, and use it like ordinary console-based ftp.  For Windows, download and use the PuTTy sftp program.  Upload the files to /home/dsl first using sftp.

Then on the remote computer, use the ssh (or PuTTy ssh) to login as user "dsl".  Once you are in, you can change your access priviledges by doing "sudo su" to become a superuser.  With this, you can move the file to wherever you want as long as that location is physically writeable.

You can imagine from the previous paragraph that having a daemon that would allow a superuser to log in is a big security risk.  Do not leave any daemon running, no matter how strong you think your passwords are, unless all superuser accounts such as "dsl" are not allowed to log in.
Powered by Ikonboard 3.1.2a
Ikonboard © 2001 Jarvis Entertainment Group, Inc.