[OpenAFS] permissions, symbolic links, ftp
Jeffrey Altman
jaltman@columbia.edu
Thu, 08 Jan 2004 10:25:16 -0500
This is a cryptographically signed message in MIME format.
--------------ms030007070305050201070304
Content-Type: multipart/alternative;
boundary="------------020306070400050101010200"
This is a multi-part message in MIME format.
--------------020306070400050101010200
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
What FTP client are you using?
Many Windows clients take a path and attempt to obtain a directory
listing of
each path segment to validate the rest of the path or to produce a graphical
listing of the tree. These clients require that all segments of the path be
readable.
It is a common technique to create a tree for anonymous ftp such as
top/unreadable/readable/user
the idea behind it is that you must know the entire path ahead of time
in order to obtain access to the files. Many windows clients fail on this.
This includes early versions of ftp support in Internet Explorer.
You might try a different client.
Jeffrey Altman
Ron Croonenberg wrote:
>Hi Jeffrey
>
>Ok, I'll try that. But I am still wondering why I can traverse the directories
>via that symbolic link when logged in (via a shell) but why I can't when I log
>in using ftp.
>
>thanks,
>
>Ron
>
>
>>What are the ACL's on /home/user and /home/user/public_html?
>>otheruser will need at least 'l' on these to traverse them in order to get
>>to the csc496 subdirectory.
>>
>>-- Jeffrey T. Hutzelman (N3NHS) <jhutz+@cmu.edu>
>> Sr. Research Systems Programmer
>> School of Computer Science - Research Computing Facility
>> Carnegie Mellon University - Pittsburgh, PA
>>
>>
>>
>
>=======================================================================================
> Ron Croonenberg | Phone: 1 765 658 4761
> Technology Coordinator | Fax: 1 765 658 4732
> |
> Department of ComputerScience | e-mail : ronc@DePauw.edu
> DePauw University |
> Julian Science & Math Center | http://www.depauw.edu/acad/computer/RonCroonenberg.asp
> 602 South College Ave. |
> Greencastle, IN 46135 |
>=======================================================================================
>_______________________________________________
>OpenAFS-info mailing list
>OpenAFS-info@openafs.org
>https://lists.openafs.org/mailman/listinfo/openafs-info
>
--------------020306070400050101010200
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
<font face="Bitstream Cyberbit">What FTP client are you using?<br>
<br>
Many Windows clients take a path and attempt to obtain a directory
listing of <br>
each path segment to validate the rest of the path or to produce a
graphical<br>
listing of the tree. These clients require that all segments of the
path be<br>
readable. <br>
<br>
It is a common technique to create a tree for anonymous ftp such as<br>
<br>
top/unreadable/readable/user<br>
<br>
the idea behind it is that you must know the entire path ahead of time <br>
in order to obtain access to the files. Many windows clients fail on
this.<br>
This includes early versions of ftp support in Internet Explorer.<br>
<br>
You might try a different client.<br>
<br>
Jeffrey Altman<br>
<br>
<br>
Ron Croonenberg wrote:<br>
</font>
<blockquote cite="mid20040108.000A975F@4x4-cowboy" type="cite">
<pre wrap=""><font face="Bitstream Cyberbit">Hi Jeffrey
Ok, I'll try that. But I am still wondering why I can traverse the directories
via that symbolic link when logged in (via a shell) but why I can't when I log
in using ftp.
thanks,
Ron
</font></pre>
<blockquote type="cite">
<pre wrap=""><font face="Bitstream Cyberbit">What are the ACL's on /home/user and /home/user/public_html?
otheruser will need at least 'l' on these to traverse them in order to get
to the csc496 subdirectory.
-- Jeffrey T. Hutzelman (N3NHS) <a class="moz-txt-link-rfc2396E" href="mailto:jhutz+@cmu.edu"><jhutz+@cmu.edu></a>
Sr. Research Systems Programmer
School of Computer Science - Research Computing Facility
Carnegie Mellon University - Pittsburgh, PA
</font></pre>
</blockquote>
<pre wrap=""><!----><font face="Bitstream Cyberbit">
=======================================================================================
Ron Croonenberg | Phone: 1 765 658 4761
Technology Coordinator | Fax: 1 765 658 4732
|
Department of ComputerScience | e-mail : <a class="moz-txt-link-abbreviated" href="mailto:ronc@DePauw.edu">ronc@DePauw.edu</a>
DePauw University |
Julian Science & Math Center | <a class="moz-txt-link-freetext" href="http://www.depauw.edu/acad/computer/RonCroonenberg.asp">http://www.depauw.edu/acad/computer/RonCroonenberg.asp</a>
602 South College Ave. |
Greencastle, IN 46135 |
=======================================================================================
_______________________________________________
OpenAFS-info mailing list
<a class="moz-txt-link-abbreviated" href="mailto:OpenAFS-info@openafs.org">OpenAFS-info@openafs.org</a>
<a class="moz-txt-link-freetext" href="https://lists.openafs.org/mailman/listinfo/openafs-info">https://lists.openafs.org/mailman/listinfo/openafs-info</a>
</font></pre>
</blockquote>
</body>
</html>
--------------020306070400050101010200--
--------------ms030007070305050201070304
Content-Type: application/x-pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature
MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIJUDCC
AwYwggJvoAMCAQICAwpxijANBgkqhkiG9w0BAQQFADCBkjELMAkGA1UEBhMCWkExFTATBgNV
BAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYDVQQKEwZUaGF3dGUx
HTAbBgNVBAsTFENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9QZXJzb25hbCBGcmVl
bWFpbCBSU0EgMjAwMC44LjMwMB4XDTAzMDczMDAyMDkyOFoXDTA0MDcyOTAyMDkyOFowRjEf
MB0GA1UEAxMWVGhhd3RlIEZyZWVtYWlsIE1lbWJlcjEjMCEGCSqGSIb3DQEJARYUamFsdG1h
bkBjb2x1bWJpYS5lZHUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBtDG6ZyGA
sK+rZOfKPKGBn6oCTLYSLk/mpeX9QTmTG71qh308KUeN35qqoRXjLvscfw6NPOYXiuxE/RqL
sx7WKEnK3C4gzzpioCTX1b7o4M7YbpvCRBFPE9Jgsd0yz2EN+mk/pPuK1GP+iQNot2m4A56A
aPe6F5T25GqffU535GNIdAtWPao6wHcOm17se25ny/TNzb9mlA4UzYl9XP7MF1fkpJyaDDAy
DNNTSSjxBdPVs2EaYq1p/xadXbIpysQiySXAxoeiZusgJopRHLcBsBmmY9QVD4QnUqZVmfJ5
f1CiNri5vlexKCmdFSrxMLuoLr4EQZCECdusp6ZnIt75AgMBAAGjMTAvMB8GA1UdEQQYMBaB
FGphbHRtYW5AY29sdW1iaWEuZWR1MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQEEBQADgYEA
DPKe/CuAgEUxsrPskJQx2fL6soAEG2iqrqOGIRREHDaXWDBNMEWEbOEMLvh3+yhqHOUc9x3r
2IfsP/XHnujaqsMVXLagokVTnpPN675wv8LZ8hLHblLnykaTCq6RZpVskh2iAiJwpYMcKNF6
jyYaQyGHBGT3PK8uVGVCG4Pp9k4wggMGMIICb6ADAgECAgMKcYowDQYJKoZIhvcNAQEEBQAw
gZIxCzAJBgNVBAYTAlpBMRUwEwYDVQQIEwxXZXN0ZXJuIENhcGUxEjAQBgNVBAcTCUNhcGUg
VG93bjEPMA0GA1UEChMGVGhhd3RlMR0wGwYDVQQLExRDZXJ0aWZpY2F0ZSBTZXJ2aWNlczEo
MCYGA1UEAxMfUGVyc29uYWwgRnJlZW1haWwgUlNBIDIwMDAuOC4zMDAeFw0wMzA3MzAwMjA5
MjhaFw0wNDA3MjkwMjA5MjhaMEYxHzAdBgNVBAMTFlRoYXd0ZSBGcmVlbWFpbCBNZW1iZXIx
IzAhBgkqhkiG9w0BCQEWFGphbHRtYW5AY29sdW1iaWEuZWR1MIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEAwbQxumchgLCvq2TnyjyhgZ+qAky2Ei5P5qXl/UE5kxu9aod9PClH
jd+aqqEV4y77HH8OjTzmF4rsRP0ai7Me1ihJytwuIM86YqAk19W+6ODO2G6bwkQRTxPSYLHd
Ms9hDfppP6T7itRj/okDaLdpuAOegGj3uheU9uRqn31Od+RjSHQLVj2qOsB3Dpte7HtuZ8v0
zc2/ZpQOFM2JfVz+zBdX5KScmgwwMgzTU0ko8QXT1bNhGmKtaf8WnV2yKcrEIsklwMaHombr
ICaKURy3AbAZpmPUFQ+EJ1KmVZnyeX9Qoja4ub5XsSgpnRUq8TC7qC6+BEGQhAnbrKemZyLe
+QIDAQABozEwLzAfBgNVHREEGDAWgRRqYWx0bWFuQGNvbHVtYmlhLmVkdTAMBgNVHRMBAf8E
AjAAMA0GCSqGSIb3DQEBBAUAA4GBAAzynvwrgIBFMbKz7JCUMdny+rKABBtoqq6jhiEURBw2
l1gwTTBFhGzhDC74d/soahzlHPcd69iH7D/1x57o2qrDFVy2oKJFU56Tzeu+cL/C2fISx25S
58pGkwqukWaVbJIdogIicKWDHCjReo8mGkMhhwRk9zyvLlRlQhuD6fZOMIIDODCCAqGgAwIB
AgIQZkVyt8x09c9jdkWE0C6RATANBgkqhkiG9w0BAQQFADCB0TELMAkGA1UEBhMCWkExFTAT
BgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMRowGAYDVQQKExFUaGF3
dGUgQ29uc3VsdGluZzEoMCYGA1UECxMfQ2VydGlmaWNhdGlvbiBTZXJ2aWNlcyBEaXZpc2lv
bjEkMCIGA1UEAxMbVGhhd3RlIFBlcnNvbmFsIEZyZWVtYWlsIENBMSswKQYJKoZIhvcNAQkB
FhxwZXJzb25hbC1mcmVlbWFpbEB0aGF3dGUuY29tMB4XDTAwMDgzMDAwMDAwMFoXDTA0MDgy
NzIzNTk1OVowgZIxCzAJBgNVBAYTAlpBMRUwEwYDVQQIEwxXZXN0ZXJuIENhcGUxEjAQBgNV
BAcTCUNhcGUgVG93bjEPMA0GA1UEChMGVGhhd3RlMR0wGwYDVQQLExRDZXJ0aWZpY2F0ZSBT
ZXJ2aWNlczEoMCYGA1UEAxMfUGVyc29uYWwgRnJlZW1haWwgUlNBIDIwMDAuOC4zMDCBnzAN
BgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA3jMypmPHCSVFPtJueCdngcXaiBmClw7jRCmKYzUq
bXA8+tyu9+50bzC8M5B/+TRxoKNtmPHDT6Jl2w36S/HW3WGl+YXNVZo1Gp2Sdagnrthy+boC
9tewkd4c6avgGAOofENCUFGHgzzwObSbVIoTh/+zm51JZgAtCYnslGvpoWkCAwEAAaNOMEww
KQYDVR0RBCIwIKQeMBwxGjAYBgNVBAMTEVByaXZhdGVMYWJlbDEtMjk3MBIGA1UdEwEB/wQI
MAYBAf8CAQAwCwYDVR0PBAQDAgEGMA0GCSqGSIb3DQEBBAUAA4GBADGxS0dd+QFx5fVTbF15
1j2YwCYTYoEipxL4IpXoG0m3J3sEObr85vIk65H6vewNKjj3UFWobPcNrUwbvAP0teuiR59s
ogxYjTFCCRFssBpp0SsSskBdavl50OouJd2K5PzbDR+dAvNa28o89kTqJmmHf0iezqWf54TY
yWJirQXGMYID1TCCA9ECAQEwgZowgZIxCzAJBgNVBAYTAlpBMRUwEwYDVQQIEwxXZXN0ZXJu
IENhcGUxEjAQBgNVBAcTCUNhcGUgVG93bjEPMA0GA1UEChMGVGhhd3RlMR0wGwYDVQQLExRD
ZXJ0aWZpY2F0ZSBTZXJ2aWNlczEoMCYGA1UEAxMfUGVyc29uYWwgRnJlZW1haWwgUlNBIDIw
MDAuOC4zMAIDCnGKMAkGBSsOAwIaBQCgggIPMBgGCSqGSIb3DQEJAzELBgkqhkiG9w0BBwEw
HAYJKoZIhvcNAQkFMQ8XDTA0MDEwODE1MjUxNlowIwYJKoZIhvcNAQkEMRYEFPm1RBjV8OgV
4QBW4RngH34YFIhAMFIGCSqGSIb3DQEJDzFFMEMwCgYIKoZIhvcNAwcwDgYIKoZIhvcNAwIC
AgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEoMIGrBgkrBgEEAYI3
EAQxgZ0wgZowgZIxCzAJBgNVBAYTAlpBMRUwEwYDVQQIEwxXZXN0ZXJuIENhcGUxEjAQBgNV
BAcTCUNhcGUgVG93bjEPMA0GA1UEChMGVGhhd3RlMR0wGwYDVQQLExRDZXJ0aWZpY2F0ZSBT
ZXJ2aWNlczEoMCYGA1UEAxMfUGVyc29uYWwgRnJlZW1haWwgUlNBIDIwMDAuOC4zMAIDCnGK
MIGtBgsqhkiG9w0BCRACCzGBnaCBmjCBkjELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdlc3Rl
cm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYDVQQKEwZUaGF3dGUxHTAbBgNVBAsT
FENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9QZXJzb25hbCBGcmVlbWFpbCBSU0Eg
MjAwMC44LjMwAgMKcYowDQYJKoZIhvcNAQEBBQAEggEAT0OpwZdGYf1jW2uJqg6l1XaQFMKW
jsMTYGwBOHcZCu5a25v8891pqacy0JW0zkB9ZVKtnLd+PfMGA9DpyT3NJ5Wnj0ksGyKvBUy7
ePDPHNbjj9tNup3elg/e3k9moEsZ0a6pj0304WxI7HGzcVv9Il2DJnv1xqjieHuCvjINn081
+RfzFqiY3EqiKXucE49djhAfH46vqCLGHsS3D2t4YOKSZG5ZWT16fhkPCcvENMcRGwqi6uO7
t/zA7Lqsen8PLuumupGgrdix2uLyrLDCvV479//y6iXR3Go6FazAEg3mCd/M5Fd2PHbQITTl
CvjPWburXnvehXLN8M5LcKum+AAAAAAAAA==
--------------ms030007070305050201070304--