hukker: Simply being in a group doesn't offer you any rights to the group. To access group commands you need one of the 1GM flags
site change [user] flags +G
However, if you have just the G (i.e. no 1 or M flag) you have no rights to specific groups including the one you are in! These must be explicitly granted via:
site change [user] admingroup [group]
This is because you can be a member of many groups but perhaps you should only be able to admin a subset of them. Users with the 1 or M flag can create users without explicitly granted admingroup privileges however users are not created in their default group but rather into the NoGroup group. Thus the master ioFTPD account can run around creating users, but you'll notice they all end up in the NoGroup group...
BTW, the line you posted:
admingroups 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
is clearly wrong. It should just be a list of groups you can admin. So
admingroups 0
would imply you can admin the "ioftpd" group used for files that aren't explicitly in any other group (that's actually controlled by the default_ setttings in ioftpd.ini).
If you can confirm that no external scripts are setting the admingroups line via editing the userfile then the TCL or site command must be goofing up somehow... Try to reproduce it.
|