Bogdan Taru enscribed thusly:
> Hello, everyone,
> I'm using Proftpd1.2.0pre3, and I've got the following problem: it works
You've got a worse problem than you think. You are running
a version of ProFTP with known security holes. The mess over ProFTP
and getting security holes fixed prompted at least one distribution
to pull it entirely. The vulnerabilities included potential remote root
shell attacks. I think they got the holes fixed, but you need to be on
1.2.0pre6 at minimum!
> like a charm with anonymous users, and with bourne-shell users. But I made
> a special shell for the unprivileged users, with only 2 commands included.
> For these users, I get the following error when they try to establish a
> ftp connection:
> failed login 'user_name' from localhost [127.0.0.1] to 127.0.0.1:21
> (invalid shell)
> If I change their shell into bourne shell, everything works normal... What
> am I missing??? What's the connection between the shell and ftp? Am I
> missing something in building the shell, or in configuring the ftp server?
Did you add the name of the shell to /etc/shells? That's a list
of valid shells and ftp won't allow an account with an invalid shell to
log in (to prevent system accounts from being compromised, I suppose).
> Thanks & Have fun,
> bogdan
Mike
--
Michael H. Warfield | (770) 985-6132 | [EMAIL PROTECTED]
(The Mad Wizard) | (770) 331-2437 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
