I guess this goes here? (FTP stuff)

**Kickersny.com** · November 14th, 2005, 8:55 PM

Okay, so I know there are the files for .htpasswd and within .ncftp/ there is a file that gives each user's root directory and whatnot. However, I can not find the file which gives the hashes of the FTP passwords. Is that accessible by me (shared account)? Can I make it accessible by me?

Basically, I'm trying to accomplish a cron which will reset the password to a random string every X hours. Hashing the password and whatnot is not a problem; I just need a way to automate the password setting. Any thoughts?

**TJ09** · November 14th, 2005, 8:57 PM

I'm going to assume FTP users are system users with only access to FTP, meaning they'd be in the server password file.

You could access CPanel via PHP and do it like that, though.

**Kickersny.com** · November 14th, 2005, 9:01 PM

Well, I'm writing a Java application which will allow the FTP of files (so I can show a progress bar and whatnot). Obviously, I need a username and password. However, due to Java decompilers and whatnot, I can't have the password hard-coded into the app, so it will poll the server when it's setting up the FTP connection to get the password. I figure by randomly resetting it once every X hours (1, 2?), it'll keep it _reasonably_ secure.

Make sense? I might do it through cPanel/PHP, but that seems kinda roundabout.

**Kickersny.com** · November 15th, 2005, 10:16 AM

Okay, here's another one for you: is it possible to assign a certain FTP user only write privileges?

**fwwebs5** · November 15th, 2005, 11:33 PM

To change using PHP:

Quote:

$ftppwd="http://$ownername:$reseller_pass

$host:2082/frontend/$cpmod/ftp/dopasswdftp.html?acct=$username&password=$password ";
($fp = fopen($ftppwd, "r")) or die("Could not open file!");
if(!$fp){
echo "Error: Did not change password";
}

Quote:

I'm going to assume FTP users are system users with only access to FTP, meaning they'd be in the server password file.

Actually they're virtual users.

November 14th, 2005, 8:55 PM	#1 (permalink)
Kickersny.com Surpass Fan Super #1 Joined in Aug 2004 Hosted on SH58 1,688 posts Gave thanks: 6 Thanked 7 times	I guess this goes here? (FTP stuff) Okay, so I know there are the files for .htpasswd and within .ncftp/ there is a file that gives each user's root directory and whatnot. However, I can not find the file which gives the hashes of the FTP passwords. Is that accessible by me (shared account)? Can I make it accessible by me? Basically, I'm trying to accomplish a cron which will reset the password to a random string every X hours. Hashing the password and whatnot is not a problem; I just need a way to automate the password setting. Any thoughts? __________________ - Evan Charlton \| [site] \| Server - SH58

November 14th, 2005, 8:57 PM	#2 (permalink)
TJ09 SurPerson On a golden path... Joined in Jul 2004 Lives in front of my laptop Hosted on Sync 437 posts Gave thanks: 0 Thanked 1 Time in 1 Post	I'm going to assume FTP users are system users with only access to FTP, meaning they'd be in the server password file. You could access CPanel via PHP and do it like that, though. __________________ Me: TeeJay Server: Sync (Statistics) Site: technoized.com (Statistics) chown -R us ./base

November 14th, 2005, 9:01 PM	#3 (permalink)
Kickersny.com Surpass Fan Super #1 Joined in Aug 2004 Hosted on SH58 1,688 posts Gave thanks: 6 Thanked 7 times	Well, I'm writing a Java application which will allow the FTP of files (so I can show a progress bar and whatnot). Obviously, I need a username and password. However, due to Java decompilers and whatnot, I can't have the password hard-coded into the app, so it will poll the server when it's setting up the FTP connection to get the password. I figure by randomly resetting it once every X hours (1, 2?), it'll keep it _reasonably_ secure. Make sense? I might do it through cPanel/PHP, but that seems kinda roundabout. __________________ - Evan Charlton \| [site] \| Server - SH58

November 15th, 2005, 10:16 AM	#4 (permalink)
Kickersny.com Surpass Fan Super #1 Joined in Aug 2004 Hosted on SH58 1,688 posts Gave thanks: 6 Thanked 7 times	Okay, here's another one for you: is it possible to assign a certain FTP user only write privileges? __________________ - Evan Charlton \| [site] \| Server - SH58

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Rate This Thread
Rate This Thread:

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)