- 论坛徽章:
- 0
|
用linux本身的权限控制,a/b/c都隶属于group比如ftpgrp1
将ftp目录设置成770并且chgrp到ftpgrp1
将ftp/a目录设置成700并且chown到a
b/c类似
如果你还有一个目录/ftp/d是只有a/b能读写而c没有权限,同样设置group比如ftpgrp2且只包含a/b
以LDAP设置虚拟用户为例
dn: cn=a,ou=people,o=test
objectClass: top
objectClass: posixAccount
uid: a
uidNumber: 1001
gidnumber: 1000
homeDirectory: /ftp/a
userPassword: ******
loginShell: /dev/null
dn: cn=b,ou=people,o=test
objectClass: top
objectClass: posixAccount
uid: b
uidNumber: 1002
gidnumber: 1000
homeDirectory: /ftp/b
userPassword: ******
loginShell: /dev/null
dn: cn=c,ou=people,o=test
objectClass: top
objectClass: posixAccount
uid: c
uidNumber: 1003
gidnumber: 1000
homeDirectory: /ftp/c
userPassword: ******
loginShell: /dev/null
dn: cn=ftpgrp1,ou=group,o=test
objectclass: top
objectclass: posixGroup
cn: ftpgrp1
gidnumber: 1000
dn: cn=ftpgrp2,ou=group,o=test
objectclass: top
objectclass: posixGroup
cn: ftpgrp2
gidnumber: 2001
memberuid: a
memberuid: b |
|