Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations wOOdy-Soft on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

RH8 vsftp error 553 could not create file

Status
Not open for further replies.
paleogryph

paleogryph

MIS
Apr 11, 2002
144
US
RH8 running vsftp won't allow a user to put files in /var/ gets "error 553 could not create file". He can see the files/dirs though. The user can put files in his home dir. User is part of the group "webadmin". /var/ group ownership is that group, "webadmin". Perms for /var/ are 755, have tried 775 also, same results.

Any ideas?
thanks


>Think for yourself<
...or someone else will do it for you.
 
Sort by date Sort by votes
Can he save files using a local shell session? There are tons of parms available in vsftpd's config file that can mandate against writing files even if the user has appropriate local access.

Check local first, then check vsftpd.conf

Surfinbox.com Business Internet Services - National Dialup, DSL, T-1 and more.
 
Upvote 0 Downvote
No, it appears only root can write to this dir and subdirs. User can only write to his $HOME. Does this user need to have the same UID as root to fix this? That seems kind of extreme.


>Think for yourself<
...or someone else will do it for you.
 
Upvote 0 Downvote
vsftpd ENFORCES the rights on the local file system and does so with the identity of the USER that is signed in through FTP NOT THE DAEMON user running the FTP service.

Thus, user FRED signs into FTPD which is running locally as user 'FTP'. FRED's session is restricted to the rights that FRED had on the directories PLUS any additional restrictions that vsftpd.conf holds.

Therefore, vsftpd will NOT make file access less restrictive. Only MORE restrictive.

You need to make a change. You COULD change the rights to the directory in question. It's probably not appropriate to go adding people to root's groups or setuid. In fact, that's a very bad idea.

Finally, NO this isn't extreme, this is the way Unix, Linux, and vsftpd are designed to work. You need to properly set the file and directory access priviliges on the system and the applications will follow along.

Therefore, don't be surprised that a directory exclusive to 'root' doesn't allow other people to mess with it. That's by design.

Surfinbox.com Business Internet Services - National Dialup, DSL, T-1 and more.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

hobbytech
  • Locked
  • Question
Internet not connecting
Replies
5
Views
598
Stephen_Hawk
Stephen_Hawk
donald lepariku
  • Locked
  • Question
Error: 694, Severity: 24, State: 10 An attempt was made to read logical page '153', virtpage '616' f 1
Replies
3
Views
543
spamjim
spamjim
msk69
  • Locked
  • Question
RHEL 7 installation error
Replies
1
Views
444
msk69
msk69
spamjim
  • Locked
  • Question
Sorting out NTFS filesystem issues
Replies
0
Views
372
spamjim
spamjim
CecilXavier
  • Locked
  • Question
RHEL IDM with Radius not authenticating
Replies
0
Views
381
CecilXavier
CecilXavier

Part and Inventory Search

Sponsor

Back
Top