Alkis Georgopoulos
2012-Apr-17 19:00 UTC
[syslinux] tftpd-hpa: the tftpdir is ignored if --secure isn't used
If I omit --secure from the tftpd-hpa command line, I then need to e.g. `tftp -c get /var/lib/tftpboot/vmlinuz` instead of plain /vmlinuz, even though I pass /var/lib/tftpboot as the tftp dir in the tftpd-hpa command line. That essentially means that I'm exporting my whole /, which is clearly something I don't want to do. I basically want tftpd-hpa to serve files from /var/lib/tftpboot but allow symlinks to point outside that dir. tftpd-hpa version: 5.2-1ubuntu1 cmdline: /usr/sbin/in.tftpd --listen --user tftp --address 0.0.0.0:69 --verbose /var/lib/tftpboot Kind regards, Alkis Georgopoulos
Alkis Georgopoulos
2012-Apr-17 19:37 UTC
[syslinux] tftpd-hpa: the tftpdir is ignored if --secure isn't used
hpa answered to me in #syslinux, mentioning it's by design, as that's how the BSD tftps works. And the tftpdir is used for path filtering. So allow me to change the question into a feature request, "please provide an option that will allow serving files from e.g. /var/lib/tftpboot, without requiring the clients to specify that dir, while allowing symlinks to point outside that dir". That would make LTSP installations easier, and it would allow for easier migration between tftpd-hpa / dnsmasq / aftpd, as the others do allow symlinks to point outside the TFTP dir by default. Thank you.