![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to ftpd.8 CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [CSRG BSD Unix] / 43BSDReno / libexec / ftpd|
Return to ftpd.8 CVS log | Up to [CSRG BSD Unix] / 43BSDReno / libexec / ftpd |
1.1 ! root 1: .\" Copyright (c) 1985, 1988 The Regents of the University of California. ! 2: .\" All rights reserved. ! 3: .\" ! 4: .\" Redistribution and use in source and binary forms are permitted provided ! 5: .\" that: (1) source distributions retain this entire copyright notice and ! 6: .\" comment, and (2) distributions including binaries display the following ! 7: .\" acknowledgement: ``This product includes software developed by the ! 8: .\" University of California, Berkeley and its contributors'' in the ! 9: .\" documentation or other materials provided with the distribution and in ! 10: .\" all advertising materials mentioning features or use of this software. ! 11: .\" Neither the name of the University nor the names of its contributors may ! 12: .\" be used to endorse or promote products derived from this software without ! 13: .\" specific prior written permission. ! 14: .\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED ! 15: .\" WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF ! 16: .\" MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. ! 17: .\" ! 18: .\" @(#)ftpd.8 6.8 (Berkeley) 6/24/90 ! 19: .\" ! 20: .TH FTPD 8 "February 23, 1989" ! 21: .UC 5 ! 22: .SH NAME ! 23: ftpd \- DARPA Internet File Transfer Protocol server ! 24: .SH SYNOPSIS ! 25: .B ftpd ! 26: [ ! 27: .B \-d ! 28: ] [ ! 29: .B \-l ! 30: ] [ ! 31: .BR \-t timeout ! 32: ] [ ! 33: .BR \-T maxtimeout ! 34: ] ! 35: .SH DESCRIPTION ! 36: .I Ftpd ! 37: is the DARPA Internet File Transfer Protocol ! 38: server process. The server uses the TCP protocol ! 39: and listens at the port specified in the ``ftp'' ! 40: service specification; see ! 41: .IR services (5). ! 42: .PP ! 43: If the ! 44: .B \-d ! 45: option is specified, ! 46: debugging information is written to the syslog. ! 47: .PP ! 48: If the ! 49: .B \-l ! 50: option is specified, ! 51: each ftp session is logged in the syslog. ! 52: .PP ! 53: The ftp server ! 54: will timeout an inactive session after 15 minutes. ! 55: If the ! 56: .B \-t ! 57: option is specified, ! 58: the inactivity timeout period will be set to ! 59: .I timeout ! 60: seconds. ! 61: A client may also request a different timeout period; ! 62: the maximum period allowed may be set to ! 63: .I timeout ! 64: seconds with the ! 65: .B \-T ! 66: option. ! 67: The default limit is 2 hours. ! 68: .PP ! 69: The ftp server currently supports the following ftp ! 70: requests; case is not distinguished. ! 71: .PP ! 72: .nf ! 73: .ta \w'Request 'u ! 74: \fBRequest Description\fP ! 75: ABOR abort previous command ! 76: ACCT specify account (ignored) ! 77: ALLO allocate storage (vacuously) ! 78: APPE append to a file ! 79: CDUP change to parent of current working directory ! 80: CWD change working directory ! 81: DELE delete a file ! 82: HELP give help information ! 83: LIST give list files in a directory (``ls -lgA'') ! 84: MKD make a directory ! 85: MDTM show last modification time of file ! 86: MODE specify data transfer \fImode\fP ! 87: NLST give name list of files in directory ! 88: NOOP do nothing ! 89: PASS specify password ! 90: PASV prepare for server-to-server transfer ! 91: PORT specify data connection port ! 92: PWD print the current working directory ! 93: QUIT terminate session ! 94: REST restart incomplete transfer ! 95: RETR retrieve a file ! 96: RMD remove a directory ! 97: RNFR specify rename-from file name ! 98: RNTO specify rename-to file name ! 99: SITE non-standard commands (see next section) ! 100: SIZE return size of file ! 101: STAT return status of server ! 102: STOR store a file ! 103: STOU store a file with a unique name ! 104: STRU specify data transfer \fIstructure\fP ! 105: SYST show operating system type of server system ! 106: TYPE specify data transfer \fItype\fP ! 107: USER specify user name ! 108: XCUP change to parent of current working directory (deprecated) ! 109: XCWD change working directory (deprecated) ! 110: XMKD make a directory (deprecated) ! 111: XPWD print the current working directory (deprecated) ! 112: XRMD remove a directory (deprecated) ! 113: .fi ! 114: .PP ! 115: The following non-standard or UNIX specific commands are supported ! 116: by the SITE request. ! 117: .PP ! 118: .nf ! 119: .ta \w'Request 'u ! 120: \fBRequest Description\fP ! 121: UMASK change umask. \fIE.g.\fP SITE UMASK 002 ! 122: IDLE set idle-timer. \fIE.g.\fP SITE IDLE 60 ! 123: CHMOD change mode of a file. \fIE.g.\fP SITE CHMOD 755 filename ! 124: HELP give help information. \fIE.g.\fP SITE HELP ! 125: .fi ! 126: .PP ! 127: The remaining ftp requests specified in Internet RFC 959 are ! 128: recognized, but not implemented. ! 129: MDTM and SIZE are not specified in ! 130: RFC 959, but will appear in the next updated FTP RFC. ! 131: .PP ! 132: The ftp server will abort an active file transfer only when the ! 133: ABOR command is preceded by a Telnet "Interrupt Process" (IP) ! 134: signal and a Telnet "Synch" signal in the command Telnet stream, ! 135: as described in Internet RFC 959. ! 136: If a STAT command is received during a data transfer, preceded by a Telnet IP ! 137: and Synch, transfer status will be returned. ! 138: .PP ! 139: .I Ftpd ! 140: interprets file names according to the ``globbing'' ! 141: conventions used by ! 142: .IR csh (1). ! 143: This allows users to utilize the metacharacters ``*?[]{}~''. ! 144: .PP ! 145: .I Ftpd ! 146: authenticates users according to three rules. ! 147: .IP 1) ! 148: The user name must be in the password data base, ! 149: .IR /etc/passwd , ! 150: and not have a null password. In this case a password ! 151: must be provided by the client before any file operations ! 152: may be performed. ! 153: .IP 2) ! 154: The user name must not appear in the file ! 155: .IR /etc/ftpusers . ! 156: .IP 3) ! 157: The user must have a standard shell returned by ! 158: .IR getusershell (3). ! 159: .IP 4) ! 160: If the user name is ``anonymous'' or ``ftp'', an ! 161: anonymous ftp account must be present in the password ! 162: file (user ``ftp''). In this case the user is allowed ! 163: to log in by specifying any password (by convention this ! 164: is given as the client host's name). ! 165: .PP ! 166: In the last case, ! 167: .I ftpd ! 168: takes special measures to restrict the client's access privileges. ! 169: The server performs a ! 170: .IR chroot (2) ! 171: command to the home directory of the ``ftp'' user. ! 172: In order that system security is not breached, it is recommended ! 173: that the ``ftp'' subtree be constructed with care; the following ! 174: rules are recommended. ! 175: .IP ~ftp) ! 176: Make the home directory owned by ``ftp'' and unwritable by anyone. ! 177: .IP ~ftp/bin) ! 178: Make this directory owned by the super-user and unwritable by ! 179: anyone. The program ! 180: .IR ls (1) ! 181: must be present to support the list command. This ! 182: program should have mode 111. ! 183: .IP ~ftp/etc) ! 184: Make this directory owned by the super-user and unwritable by ! 185: anyone. The files ! 186: .IR passwd (5) ! 187: and ! 188: .IR group (5) ! 189: must be present for the ! 190: .I ls ! 191: command to be able to produce owner names rather than numbers. ! 192: The password field in ! 193: .I passwd ! 194: is not used, and should not contain real encrypted passwords. ! 195: These files should be mode 444. ! 196: .IP ~ftp/pub) ! 197: Make this directory mode 777 and owned by ``ftp''. Users ! 198: should then place files which are to be accessible via the ! 199: anonymous account in this directory. ! 200: .SH "SEE ALSO" ! 201: ftp(1), getusershell(3), syslogd(8) ! 202: .SH BUGS ! 203: The anonymous account is inherently dangerous and should ! 204: avoided when possible. ! 205: .PP ! 206: The server must run as the super-user ! 207: to create sockets with privileged port numbers. It maintains ! 208: an effective user id of the logged in user, reverting to ! 209: the super-user only when binding addresses to sockets. The ! 210: possible security holes have been extensively ! 211: scrutinized, but are possibly incomplete.
This archive runs on limited infrastructure. Preserving old code on modern bandwidth. Automated agents are requested to crawl responsibly.