[Info-vax] FTP permissions

[Stephen Hoffman]

On 2012-10-08 19:24:33 +0000, shadow1979 said:

> Hi,
> 
> I'm a newbies in OpenVMS. I'm a bit stuck here with the FTP permissions.

This isn't so much FTP, as one of security.

> Anyone know what I need to do in order for the ftp file to have RWED 
> permissions for world?

World full-access?  Um... OK.  That's somewhat of a blunt-instrument 
approach.   Well, you could give everybody SYSPRV or BYPASS.  Problem 
solved.  Well, that access problem is solved.  Passing out those 
privileges likely creates other problems.  ALL-class privileges can be 
a very blunt instrument.

Alternatively,  create a resource identifier on your system, and have 
the directory and the files in that directory owned by that identifier, 
and grant that identifier to the other users that need access to that 
directory and those files.  <http://labs.hoffmanlabs.com/node/1450>  
This'd be my preferred approach for a shared directory, the identifier 
can hold resource ownership (disk quota, etc) and the identifier then 
grants access.

Or yes, set up either the default protections DCL command that was 
referenced by VAXman, or set up an access control list (ACL) with a 
default protections access control list entry (ACE) or a default 
identifier and identifier to allow access to the directory and the 
files that you're working with.  These two approaches will cause the 
files to be created with the requested world access, or to cause the 
users to use the identifier to access the files, respectively.

You're probably not going to get much traction here without a trip 
through the OpenVMS Guide to System Security manual, to figure out how 
OpenVMS deals with its protections and security and identifiers and 
related.  That's located in the OpenVMS shelf at 
<http://www.hp.com/go/openvms/doc>.


-- 
Pure Personal Opinion | HoffmanLabs LLC