I wanted to implement a bit more of a secure anonymous ftp server setup
using the stock ftpd.  Browsing thru the sources (man do I love
source!!) lo and behold there is a flag 'u' that allows one to set the
default UMASK in effect.  So how come this isn't documented in the man
pages?

The setting is global unfortunately.  I intend to modify it a little bit
so that only anonymous gets the special flags.  The root of the problem
was somehow denying anonymous users download rights from /pub/incoming. 
Removing the 'read' right from the directory simply prevents the viewing
of a file list.  It doesn't do didly squat if the user already knows the
file name.  So I wanted to implement a umask of 717 so that the ftpadmin
group could read and delete the files as needed.

any ideas on a better solution?