DOKK / manpages / debian 12 / selinux-policy-doc / ftpd_selinux.8.en
ftpd_selinux(8) ftpd SELinux policy documentation ftpd_selinux(8)

ftpd_selinux - Security-Enhanced Linux policy for ftp daemons.

Security-Enhanced Linux provides security for ftp daemons via flexible mandatory access control.

SELinux requires files to have a file type. File types may be specified with semanage and are restored with restorecon. Policy governs the access that daemons have to files.

semanage fcontext -a -t public_content_t "/var/ftp(/.*)?"

semanage fcontext -a -t public_content_rw_t "/var/ftp/incoming(/.*)?"

SELinux policy is based on least privilege required and may also be customizable by setting a boolean with setsebool.

setsebool -P allow_ftpd_anon_write on

setsebool -P ftp_home_dir on

setsebool -P allow_ftpd_full_access on

setsebool -P allow_ftpd_use_cifs on

setsebool -P allow_ftpd_use_nfs on

This manual page was written by Dan Walsh <dwalsh@redhat.com>.

selinux(8), ftpd(8), setsebool(8), semanage(8), restorecon(8)

17 Jan 2005 dwalsh@redhat.com