freenas 9.1.0 or 9.1.1.
Services on CIfS, FTP, Smart and ssh
Simple test set up - Volume=Myvolume user=Alice
Call me Alice for this - If I Alice use WinSCP to login via FTP port 21 I get taken to my home directory = Myvolume all good, I can't go up the tree, but if I instead use SFTP on port 22 to login as Alice, same username and password I get taken to root / and traverse all folders and files. I also tried this on another Windows computer using WinsCP and FileZilla. Same thing.
When I SFTP in I get from the system process display 'Nov 1 06:48:01 freenas sshd[3531]: _secure_path: /mnt/Vol320/Alice/.login_conf is group writeable by non-authorised groups'
I removed all permissions from Alice and she only belongs to her group. Still the same thing, full access to / except no access to her home directory.
Is this a bug for it seems to simple to get in.
As a side note: I did a complete install of 9.1.1 from 9.1.0 not an upgrade and created a new user Alice. I'm still learning. I noticed that I could FTP and SSH into freenas with WinSCP as above but I could not log in through windows network, I changed many permissions to get in. It kept refusing and I still couldn't log in through Windows so I used an old configuration file from 9.1.0 and loaded it. Great I could log in through windows but I can also get access to / using SFTP on port 22.
If it's not a bug what have I done wrong?
Services on CIfS, FTP, Smart and ssh
Simple test set up - Volume=Myvolume user=Alice
Call me Alice for this - If I Alice use WinSCP to login via FTP port 21 I get taken to my home directory = Myvolume all good, I can't go up the tree, but if I instead use SFTP on port 22 to login as Alice, same username and password I get taken to root / and traverse all folders and files. I also tried this on another Windows computer using WinsCP and FileZilla. Same thing.
When I SFTP in I get from the system process display 'Nov 1 06:48:01 freenas sshd[3531]: _secure_path: /mnt/Vol320/Alice/.login_conf is group writeable by non-authorised groups'
I removed all permissions from Alice and she only belongs to her group. Still the same thing, full access to / except no access to her home directory.
Is this a bug for it seems to simple to get in.
As a side note: I did a complete install of 9.1.1 from 9.1.0 not an upgrade and created a new user Alice. I'm still learning. I noticed that I could FTP and SSH into freenas with WinSCP as above but I could not log in through windows network, I changed many permissions to get in. It kept refusing and I still couldn't log in through Windows so I used an old configuration file from 9.1.0 and loaded it. Great I could log in through windows but I can also get access to / using SFTP on port 22.
If it's not a bug what have I done wrong?
