At approximately line 110 in vsftpd.conf.example, the information about how to set up a chroot environment for users is listed. There is a small section in that area which defines the default settings for the chroot_list_file which defines (based on the settings listed below) the users that should be chrooted. Unfortunately, it seems that the code has been modified to change the default file name and the example configuration file has not. Reproducible: Always Steps to Reproduce: 1. In vsftpd.conf, enable the following options: chroot_list_enable=YES passwd_chroot_enable=YES 2. Note at theis point that the default option on chroot_list_file is /etc/vsftpd/vsftpd.chroot_list 3. Start vsftpd: /etc/init.d/vsftpd start 4. Attempt to login to the server. Actual Results: 500 OOPS: could not open chroot() list file:/etc/vsftpd/chroot_list 500 OOPS: priv_sock_get_result Connection closed by remote host. Expected Results: Allow login and chroot based on the file's contents. Portage 2.0.51.22-r2 (default-linux/x86/2005.0, gcc-3.3.5-20050130, glibc-2.3.5-r0, 2.6.11-gentoo-r6 i686) ================================================================= System uname: 2.6.11-gentoo-r6 i686 Pentium III (Coppermine) Gentoo Base System version 1.6.13 dev-lang/python: 2.3.5 sys-apps/sandbox: 1.2.11 sys-devel/autoconf: 2.13, 2.59-r6 sys-devel/automake: 1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.5 sys-devel/binutils: 2.15.92.0.2-r10 sys-devel/libtool: 1.5.18-r1 virtual/os-headers: 2.6.11-r2 ACCEPT_KEYWORDS="x86" AUTOCLEAN="yes" CBUILD="i686-pc-linux-gnu" CFLAGS="-O2 -pipe -march=pentium3 -fomit-frame-pointer" CHOST="i686-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3/share/config /usr/share/config /var/qmail/control" CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d" CXXFLAGS="-O2 -pipe -march=pentium3 -fomit-frame-pointer" DISTDIR="/usr/portage/distfiles" FEATURES="autoconfig distlocks sandbox sfperms strict" GENTOO_MIRRORS="http://gentoo.seren.com/gentoo http://mirror.datapipe.net/gentoo http://mirror.datapipe.net/gentoo ftp://ftp.ussg.iu.edu/pub/linux/gentoo ftp://mirrors.tds.net/gentoo" MAKEOPTS="-j3" PKGDIR="/usr/portage/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="/usr/local/portage" SYNC="rsync://rsync.gentoo.org/gentoo-portage" USE="x86 alsa apm arts avi berkdb bitmap-fonts crypt cups eds emboss encode foomaticdb fortran gdbm gif gpm gstreamer gtk2 imlib ipv6 ithreads jpeg libg++ libwww mad mikmod motif mp3 mpeg mysql ncurses nls ogg oggvorbis opengl oss pam pdflib perl png python quicktime readline samba sdl spell ssl tcpd tiff truetype truetype-fonts type1-fonts vorbis xml2 xmms xv zlib userland_GNU kernel_linux elibc_glibc" Unset: ASFLAGS, CTARGET, LANG, LC_ALL, LDFLAGS, LINGUAS
Created attachment 64954 [details] My vsftpd.conf Originally, the line stating chroot_file_name was commented out. I had to enable the line to fix my issue (or rename the chroot file, but I went with uncommenting the file).
Fixed example conf to read banned_email_file=/etc/vsftpd/banned_emails chroot_list_file=/etc/vsftpd/chroot_list