Red Hat Bugzilla – Bug 151337
RFE: pure-ftpwho and non-root accounts
Last modified: 2007-11-30 17:11:01 EST
Aurelien, This is a RFE (Request For Enhancement) regarding pure-ftpd: I would like to be able to run pure-ftpwho without being root. The patch - pure-ftpd-1.0.20-rfe.patch - modifies/creates the following files: 1) Modifies - pure-ftpd.spec (usermode/pure-ftpwho + pedantic) 2) Adds - /etc/pam.d/pure-ftpwho 3) Adds - /etc/security/console.apps/pure-ftpwho 4) Modifies /etc/rc.d/init.d/pure-ftpd (pedantic) The usermode files are based on the ones included in the package hddtemp (also in extras). Target branches: FC-3 and devel TIA, jpo
Created attachment 112067 [details] RFE: pure-ftpwho and non-root accounts
Looks sane, and works fine. Committed. Concerning potential security problems, here's something from the official FAQ : ========= http://www.pureftpd.org/FAQ --- -> How do I give access to the 'pure-ftpwho' command to non-root users? The 'pure-ftpwho' command is restricted to root by default, because users probably shouldn't be given the ability to spy what other users are doing on the same host. However, it's safe to put the setuid bit on that command, in order to have it work as any user: chmod 4711 /usr/local/sbin/pure-ftpwho ---- Using usermode is just better. (only local users are allowed). Thanks Jose.