> I created a few posix directories under FTPGUEST/PUB.
>
> The purpose is to have a job, running in an other account, scanning
> /FTPGUEST/PUB/directories, copying the files in the account the job is
> running in, and purging the files in /FTPGUEST/PUB/directories.
>
> I always get a security violation when I attempt to get a file from
> /FTPGUEST/PUB/directories.
>
> I put the access rights to (R,W,A,L,X:ANY) on the account FTPGUEST, and
> (R,W,A,L,X,S:ANY) on the group PUB. I also put an ACD
(CD,DD,RD,TD,RACD:ANY)
> on my posix directories.

This seems correct.  It lets you traverse through the FTPGUEST account down
to the lowest directory.

> With the ALTSEC command, I can change the rights of existing files in
these
> directories, but all new files created by a put under a ftp client are
still
> secured.

You are correct that you need to ALTSEC;repacd=(r:@.@;...) on all of the
files
in the directories below PUB.  Each file under a directory is created with a

default ACD that only grants read-ACD (RACD) permission to the world.  All
other file accesses are denied.  This is the case when the file is created
by
the CI.  If the file is created via the shell the umask controls the default

permissions.  FTP to your system from other 3000's or unix boxes seems to
use the same default as the CI -- no permission.

So, your other account needs to have SM (probably not a good choice) or you
need a job that logson to the FTPGUEST account and chmods the files to grant
read access to the other account.  Seems overly complex -- it would be nice
if the CI supported UMASK.

Jeff Vance, CSY