Here is the official doc page to setup ftpaccess configuration from Oracle
http://docs.oracle.com/cd/E23823_01/html/816-5174/ftpaccess-4.html#REFMAN4ftpaccess-4
defumask umask class
Set the umask applied to files created by the FTP server if the remote user is a member of the named class. If class is not specified, then use the umask as the default for classes that do not have one specified.
The mode of files created may be specified by using the upload directive.
Define a directory with dirglob that permits or denies uploads. If it does permit uploads, all newly created files is owned by owner and group and has their permissions set according to mode. Existing files that are overwritten retains their original ownership and permissions. Directories are matched on a best-match basis. For example:
would only allow uploads into /incoming and /incoming/gifs. Files that were uploaded to /incoming are owned by ftp/daemon and have permissions of 0666. Files uploaded to /incoming/gifs are owned by jlc/guest and have permissions of 0600. The optional dirs and nodirs keywords can be specified to allow or disallow the creation of new subdirectories using the mkdir command. If the upload command is used, directory creation is allowed by default. To turn it off by default, you must specify a user, group and mode followed by the nodirs keyword as the first line where the upload command is used in this file. If directories are permitted, the optionald_mode determines the permissions for a newly created directory. If d_mode is omitted, the permissions are inferred from mode. The permissions are 0777 if mode is also omitted. The upload keyword only applies to users who have a home directory of root-dir. root-dir may be specified as * to match any home directory. The owner or groupmay each be specified as *, in which case any uploaded files or directories are created with the ownership of the directory in which they are created. The optional first parameter selects whether root-dir names are interpreted as absolute or relative to the current chroot'd environment. The default is to interpret names as absolute. You can specify any number of class=classname restrictions. If any are specified, this upload clause only takes effect if the current user is a member of one of the classes.
In the absence of any matching upload clause, real and guest users can upload files and make directories, but anonymous users cannot. The mode of uploaded files is 0666. For created directories, the mode is 0777. Both modes are modified by the current umask setting.
Our requirement is to upload files and directories as user1 with permission 777 so any normal user can remove the uploaded directories.
After spending hours with defumask and umask syntax, I figured out that the secret sauce is in the upload.
edit /etc/ftpd/ftpaccess as below
upload /mft/user1 /mft/user1 yes user1 group1 0777 dirs 0777
upload /mft/user1 /mft/user1/* yes user1 group1 0777 dirs 0777
upload /mft/user1 /mft/user1/*/* yes user1 group1 0777 dirs 0777
if you are uploading a structure like folder1/folder2/folder3 under /mft/user1
You would need all 3 lines to make all the folder1/folder2/folder3 files/directories under /mft/user1 with 777
:-(
i know
No comments:
Post a Comment