ftpd(1M) C2 Trusted DG/UX 5.4.2T ftpd(1M)
NAME
ftpd - File Transfer Protocol server
SYNOPSIS
/usr/bin/ftpd [ -d ] [ -l ] [ -ttimeout ]
DESCRIPTION
The ftpd process is the DARPA Internet File Transfer Prototocol (FTP)
server process. The server uses the Transmission Control Protocol
(TCP) as its transport protocol. The FTP server is invoked by the
inetd server when an incoming connection is detected on the port
specified in /etc/services. See inetd(1M) and services(4) for
details.
Options
-d Enable debugging, with output going to /tmp/ftpd*.
-l Log each FTP session to the system log. For details about the
system log, see syslog(3C).
-ttimeout
Set the inactivity time-out period to timeout seconds. By
default, the FTP server does not time out an inactive session.
Requests
The FTP server currently supports the following requests; case is not
distinguished.
Request Description
ABOR abort any transfer in progress
ACCT specify account (ignored)
ALLO allocate storage
APPE append to a file
CDUP change to the parent of the current working directory
CWD change working directory
DELE delete a file
HELP give help information
LIST give list of files in a directory (ls -l)
MKD make a directory
MODE specify data transfer mode
NLST give list of names of files in directory (ls)
NOOP do nothing
PAGE specify a new page size
PASS specify password
PASV listen on a data port and wait for a connection
PORT specify data connection port
PWD print the current working directory
QUIT terminate session
REIN reinitialize server state
REST restart the last aborted transfer
RETR retrieve a file
RMD remove a directory
RNFR specify rename-from filename
RNTO specify rename-to filename
Licensed material--property of copyright holder(s) 1
ftpd(1M) C2 Trusted DG/UX 5.4.2T ftpd(1M)
SEOR specify a new end-of-record delimiter
SITE display any information specific to the remote system
STAT display server's status
STOR store a file
STOU store a file under a unique name
STRU specify data transfer structure
TYPE specify data transfer type
USER specify username
XCUP change to parent of current working directory
XCWD change working directory
XMKD make a directory
XPWD print the current working directory
XRMD remove a directory
The ftpd process interprets filenames according to the "globbing"
conventions used by csh(1). This allows you to use the
metacharacters ``*?[]{}~''.
User Authentication Rules
The ftpd process authenticates users according to three rules:
1) The username must be in the password database, /etc/passwd,
or, if you use the Network Information Service, it must be in
the Network Information Service password database. If a
password is required for a given username, it must be provided
by the client process before any file operations can be
performed.
If the host system is running Trusted DG/UX, the username must
have an account in the A&A database and must be specifically
authorized to use ftp.
2) The username must not be in the /etc/ftpd.deny file. If the
username is in this file, ftp access is denied to the user.
3) If the username is anonymous or ftp, an anonymous ftp login
must be specified in the password file (user ftp). In this
case, a user is allowed to log in by specifying any password
(by convention, this is given as the client hostname).
In the third case, ftpd takes special measures to restrict the
client's access privileges. The server performs a chroot(1M) command
to the home directory of the ftp user. So that system security is
not breached, it is recommended that the ftp subtree be constructed
with care. The following guidelines are recommended.
~ftp Make the home directory owned by ftp and unwritable by
anyone.
~ftp/bin Make this directory owned by the superuser and
unwritable by anyone. The programs ls(1) and pwd(1)
must be present to support the list and print
directory commands. These programs should have mode
111.
Licensed material--property of copyright holder(s) 2
ftpd(1M) C2 Trusted DG/UX 5.4.2T ftpd(1M)
~ftp/etc Make this directory owned by the superuser and
unwritable by anyone. The file group(4) must be
present for the ls command to work properly. This
file should be mode 444.
~ftp/pub To provide public filespace, create this directory
with mode 777 and owned by ftp. Users should then put
in this directory all files that are to be accessible
through the anonymous account.
SEE ALSO
ftp(1C), inetd(1M), ftpd.deny(4).
Trusted Facility Manual for the C2 Trusted DG/UX (Trademark) System
(093-701110)
BUGS
The server must run as the superuser to create sockets with
privileged port numbers. It maintains an effective user ID of the
logged-in user, reverting to the superuser only when binding
addresses to sockets.
Licensed material--property of copyright holder(s) 3