wu-ftp user rights

My users are now able to download some OS files and other users files, nothing critical to system tho. Is this security hole that i missed or an feature?

If its a feature, how can i set that users dont have any rights outside /home/myaccount. I know that chroot is an option, but i dont care if users can see files, i only want to prevent access those file.

Debian Stable
wu-ftp 2.6.2

 

 

 

 

Top