Pro/Forums - View Single Post

snap-tech · 11-22-2006, 01:47 AM

Snap-Tech stepping in.

I will keep this simple.

1. If you are making a web page place this and all graphic files under the www folder and keep as read only for all users.

2. I would create a root folder called ftp. Under the folder called ftp create your individual user folders -- as follows

ftp\user1
ftp\user2
ftp\user3

Then create a share that points to ftp\user1 anc call the share user1
then create a share that points to ftp\user2 and call the share user2

Now create your users -- lets say user1 user2 user3.

Give user1 full access to the share called user1
give user2 full access to the share called user2
give user3 full access to the share called user3

If you create a share that points to the folder called ftp then give users1 user2 and user3 read only to the share called ftp. this means that they will see the folders called user1 user2 and user3 but will not be able to access the folders other than the one that there share points to. If you don't want the users to know that there are other users folders then don't give any of them access to the share called ftp or just don't create the share called ftp.

I always found it easiest to name the shares the same as the folder they point to. This helps keep things inline and easier to remember what points to what.

If for example you give any user full access to the share called ftp they will have full access for all folders located under the share, even if you deny them access to the share called user1 or user2 or user3.

The snap security is a top-down security.

Also something that helps is when you are testing shares, open up another window and login into the admin page and check the active user tab and see what the ftp user is actually logged in as. They may be in a guest and not the user u think they are in as.

Also remember that share1 does not point to a folder, it points to the root so I would remove all users from share1 other than the snap administrator. Only admins should have any access to share1 which gives them full access to all data on snap no matter what share/folders have been created.

Douglas Snap-Tech

11-22-2006, 01:47 AM	#8
snap-tech Cooling Neophyte Join Date: Mar 2002 Location: Washington State Posts: 54	Re: M4100 FTP Share Snap-Tech stepping in. I will keep this simple. 1. If you are making a web page place this and all graphic files under the www folder and keep as read only for all users. 2. I would create a root folder called ftp. Under the folder called ftp create your individual user folders -- as follows ftp\user1 ftp\user2 ftp\user3 Then create a share that points to ftp\user1 anc call the share user1 then create a share that points to ftp\user2 and call the share user2 Now create your users -- lets say user1 user2 user3. Give user1 full access to the share called user1 give user2 full access to the share called user2 give user3 full access to the share called user3 If you create a share that points to the folder called ftp then give users1 user2 and user3 read only to the share called ftp. this means that they will see the folders called user1 user2 and user3 but will not be able to access the folders other than the one that there share points to. If you don't want the users to know that there are other users folders then don't give any of them access to the share called ftp or just don't create the share called ftp. I always found it easiest to name the shares the same as the folder they point to. This helps keep things inline and easier to remember what points to what. If for example you give any user full access to the share called ftp they will have full access for all folders located under the share, even if you deny them access to the share called user1 or user2 or user3. The snap security is a top-down security. Also something that helps is when you are testing shares, open up another window and login into the admin page and check the active user tab and see what the ftp user is actually logged in as. They may be in a guest and not the user u think they are in as. Also remember that share1 does not point to a folder, it points to the root so I would remove all users from share1 other than the snap administrator. Only admins should have any access to share1 which gives them full access to all data on snap no matter what share/folders have been created. Douglas Snap-Tech