ftpubuntu-14.04proftpd

Proftpd: disable identity switch


So, I'm running proFTPD (latest),on Ubuntu 14.04.3 LTS Server 64.

Once a client has successfully authenticated, Proftpd (running as root) switches the new process to the identity/privileges of the authenticated user: all disk operations (read/writes) occurs under than privileges.

I'm looking for a way to perform disk operations as root user.

Thnaks

Danny P.


Solution

  • Two ways of accomplishing this come to mind.

    First, you could construct/use a separate AuthUserFile, and in that file, you define an entry for your user, and that user the UID of 0. This will effectively make your user a root user -- but only for FTP logins. Note that if you use this approach, you will also need to allow root logins (which ProFTPD rejects by default) using:

    RootLogin on
    

    in your proftpd.conf.

    Alternatively, you could use the UserOwner directive, and specify that user "root" should be used, but only in designated directories. For example:

    <Directory /path/to/some/dir>
      # In this directory, file uploads/writes happen as the root user
      UserOwner root
    </Directory>
    

    This second approach can be used with all of your FTP clients, rather than just specific users, but can be restricted to specific users if need be.

    Hope this helps!