更新 vsftpd 2.3.5 注意事項
vsftpd: refusing to run with writable root inside chroot()
查看 https://security.appspot.com/vsftpd/Changelog.txt
At this point: v2.3.5 released!
- Add stronger checks for the configuration error of running with a writeable
root directory inside a chroot(). This may bite people who carelessly turned
on chroot_local_user but such is life.
這行的意思代表是根目錄不能是寫入的權限
chmod a-w /var/www →請依照您的網站目錄/ver/www
根目錄無法寫入解決的方式可以使用ACL的權限將目錄加入群組使用者,根目錄也可以寫入
root@server:/var# chown root:www www
root@server:/var# setfacl -m g:www:rwx www
root@server:/var# getfacl www
# file: www
# owner: root
# group: www
user::r-x
user:tony:rwx
group::r-x
group:tony:rwx
group:www:rwx
mask::rwx
other::r-x
default:user::rwx
default:user:tony:rwx
default:group::r-x
default:mask::rwx
default:other::r-x