Question : Restricting FTP access to home directory. Windows 2000. IIS.

Info:

1. I created a user on my webserver called, "user1".

2. I created a folder in the FTP home directory (C:\clients) called, "user1".

3. The user is able to FTP into my webserver with the login: '"user1". The user's root directory is (C:\clients\user1).

4. The user is also able to cd up to the FTP home directory (C:\clients), and back down into all sub-directories (C:\clients\user0, C:\clients\user2, et cetera).

Issue:

The issue is (4); I do not want the user to be able to move out of his or her home directory.

Stipulations:

1. I have dozens and dozens of logins; I would rather not change any permissions on the FTP root directory, or any of the other sub-directories. However - if this is the only way to complete this task; so be it.

2. I'd rather not bring into play any other third-party software.

Thank you much!

Whah.

Answer : Restricting FTP access to home directory. Windows 2000. IIS.

Hello,

first of all, for real security, you MUST set permissions on every individual user directory.  There is no other way to do it properly.

What you can do to hide the user folders from other users is to create virtual paths from the ftp root instead of physical.

For example, make a folder called c:\ftproot and make it read only to everyone (except admins of course)  then make this location the defauilt ftp server root.

Now make virtual ftp paths (right click ftp server->new->virtual) for example:  user1->c:\clients\user1

Now the user is logged in to their own root, but if the cdup to the ftp root, they do not see all the other folders.

Note that unless you put different permissions on each folder, that they will still be able to access by guessing the path name.  i.e. user1 may log on and then do "cd ../user2" to access the data of user2.

Cheers.