FTP Server with disabled Downloads

[mediator]

Hi,

I want to setup an ftp server where a folder say "test" has only following rights

- Upload rights : Users can upload files in the folder test

- No download : Users can see what they have uploaded in "test", but they cannot download it.

- Creating directory : Users can continue creating directories in "test"

- No editing : Users cannot edit whatever they have created or uploaded.

Please input your expertise as to how this can be done.

Server : CentOS 5, vsftpd-2.0.5-24

Thank you :)

[HawkMan]

http://www.whoishostingthis.com/blog/2011/05/25/understanding-file-permissions-ftp-chmod/

basically, I don't think what you want is possible within ftp.

[articuno1au]

You could do this pretty easily with ASP or PHP.

Simply set up a file upload box, and have a script list the contents of the folder (just make sure it's not in your website's hosted area).

[GreenMartian]

Yeah, files have Read, Write, and Execute permissions. For them to be able to list the files using FTP, they need Read permission - which unfortunately also implies viewing its contents (i.e. download).

If you want them to be able to upload & list, but not viewing their contents, as suggested above you could hide them behind a web interface.

[+InsaneNutter MVC]

You can do this just assigning the account "write" permissions for files, "create" for folders, then "list" for folders & sub folders.

I have just tested what you want to do in FileZilla server and can do exactly that. I imagine you should be able to do something similar with vsftpd.

[mediator]

Thank you all for your valuable time. But after some research I understood it is pretty simple. You don't have to think in terms of file permissions at all (Yeah I was doing the same until I started reading the man page of vsftpd.conf)

Solution : We only have to include 2 variables in vsftpd.conf

1. download_enable : which we set to "NO"

2. cmds_allowed : where we set all the commands except for rename,delete i.e (DELE, RMD, RNFR, RNTO etc)

We can also disable downloads by removing get, mget etc from cmds_allowed.

:)