home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
kermit.columbia.edu
/
kermit.columbia.edu.tar
/
kermit.columbia.edu
/
newsgroups
/
misc.20031118-20041115
/
000232_jaltman2@nyc.rr.com_Tue Apr 20 12:05:15 2004.msg
< prev
next >
Wrap
Internet Message Format
|
2004-11-14
|
3KB
Path: newsmaster.cc.columbia.edu!panix!newsfeed.media.kyoto-u.ac.jp!feed5.newsreader.com!newsreader.com!news3.optonline.net!cyclone.rdc-nyc.rr.com!news-out.nyc.rr.com!twister.nyc.rr.com.POSTED!53ab2750!not-for-mail
Message-ID: <40854371.4070504@nyc.rr.com>
From: Jeffrey Altman <jaltman2@nyc.rr.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7b) Gecko/20040316
X-Accept-Language: en-us, en
MIME-Version: 1.0
Newsgroups: comp.protocols.kermit.misc
Subject: Re: Running kermit from within glftpd
References: <c61fv402ovm@drn.newsguy.com> <m1y8or8iss.gnus@usa.net> <c63ahj022do@drn.newsguy.com> <KXahc.24803$mX.7955553@twister.nyc.rr.com> <slrnc8ag45.8v3.fdc@sesame.cc.columbia.edu>
In-Reply-To: <slrnc8ag45.8v3.fdc@sesame.cc.columbia.edu>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Lines: 47
Date: Tue, 20 Apr 2004 15:34:22 GMT
NNTP-Posting-Host: 24.193.46.55
X-Complaints-To: abuse@rr.com
X-Trace: twister.nyc.rr.com 1082475262 24.193.46.55 (Tue, 20 Apr 2004 11:34:22 EDT)
NNTP-Posting-Date: Tue, 20 Apr 2004 11:34:22 EDT
Organization: Road Runner - NYC
Xref: newsmaster.cc.columbia.edu comp.protocols.kermit.misc:14949
glftpd is an FTPD which provides for a customizable set of
SITE commands. These commands may be used to execute locally
defined scripts. glftpd just like all other properly installed
FTP daemons place the user into a chroot jail.
When a user connects to Petri's glftpd and issues some
unspecified command this in turn will cause a Perl 5 script
to be executed. The Perl 5 script will cause a Kermit script
to execute which will utilize C-Kermit as a TLS aware FTP client
to connect to other FTP daemons on other hosts to perform a
variety of actions.
In some ways, you can compare what Petri is doing with C-Kermit
to the EDI services provided by IBM's Information Exchange Service
which also uses FTP protocol with AUTH TLS coupled with SITE
commands to provide a secure user interface to back-end operations.
Jeffrey Altman
Frank da Cruz wrote:
> On 2004-04-20, Jeffrey Altman <jaltman2@nyc.rr.com> wrote:
> : Your problems with running Kermit from within a chroot jail
> : are no longer related to Kermit. I suggest you ask your
> : questions in a linux related forum and attempt to find an
> : answer to the question
> :
> Or maybe try some other way of doing the same thing? Are you
> trying to install Kermit so it can be run "underneath" glftpd?
> I'm not quite sure what glftpd is, even after looking at a couple
> websites. Does this mean you want ftp clients to be able to
> make connections to glftpd, and then send SITE commands to run
> C-Kermit?
>
> Anyway, would it help you to know that C-Kermit has its own
> "chroot" command? Even when C-Kermit is not running in a chroot
> "jail", it can limit file access to any given rooted tree that is
> visible to it, without having to make copies of libraries and other
> files just so it can perform this service.
>
> - Frank
--
-----------------
This e-mail account is not read on a regular basis.
Please send private responses to jaltman at mit dot edu