Hello,
Firstofall thanks for great tool systrace! it kicks!
I am running openbsd buildin ftpd. Is this possible to hide
files with systrace?
i have policy:
[...]
native-fsread: filename eq "/-lgA" then permit
native-ioctl: permit
native-getuid: permit
native-fchdir: permit
native-fstatfs: permit
native-fsread: filename eq "/pub" then permit
native-fsread: filename match "/pub/*" then permit
native-fsread: filename match "/temp/*" then permit
native-chdir: filename eq "/pub" then permit
native-chdir: filename match "/pub/*" then permit
native-chdir: filename eq "/temp" then permit
native-chdir: filename match "/temp/*" then permit
native-chdir: filename match "/<non-existent filename>: /pub/*" then permit
native-fsread: filename eq "/index.html" then deny[econnreset]
native-fsread: filename eq "/robots.txt" then deny[enoent]
native-fsread: filename eq "/temp" then deny[enoent]
native-kill: pidname eq "/usr/libexec/ftpd" and signame eq "SIGTERM" then permit
It doesnt show index.html/robots.txt in mozilla, but in shell ftp client:
[...]
ftp> dir
229 Entering Extended Passive Mode (|||59321|)
150 Opening ASCII mode data connection for '/bin/ls'.
total 4
drwxr-xr-x 3 0 0 512 May 28 21:19 pub
ftpd: index.html: Connection reset by peer
ftpd: robots.txt: No such file or directory
ftpd: temp: No such file or directory
226 Transfer complete.
Is this possible, is there trick to do job?
Thanks!
Viktors.
-------------------------------------------------------------------------------
http://www.one.lv - Tavs mobilais e-pasts!
Tagad lasi savu e-pastu ar mobilo telefonu - wap.one.lv!