Re: vsftp help
I don't know if this helps or not. I had a problem with vsftpd afte I upgraded to the version RH puts out via up2date. I finally had to back down to the previous version from the initial install. But I missed most of this thread, so if I'm off course, I'll go back to sleep. Leonard Automatically inserted lawyer supplied blurb follows >>> [EMAIL PROTECTED] 10/15/03 10:11AM >>> Thanks, I tried it with the firewall off and still getting the same results. Must be some sort of config error I guess. -Rich >That is usually a sign of a Firewall. > >Passive uses ports gt 1024. Look for that possibly, or use port >instead of passive. > >Rich Ransom wrote: >>I've installed vsftp and can log in ok. I can do a pwd command and >>it tells me where I am, but when I try any other commmand I get: >> >>ftp> ls >>227 Entering Passive Mode (129,15,99,44,197,69) >>200 PORT command successful. Consider using PASV. >>425 Failed to establish connection. >> >> >>Where Do I start looking to fix it? >> >>--Rich **CONFIDENTIALITY NOTICE** The information contained in this e-mail may be confidential and/or privileged and is intended for the sole use of the individual or organization named above. If you are not the intended recipient or an authorized representative of the intended recipient, any review, copying or distribution of this e-mail and its attachments, if any, is prohibited. If you have received this e-mail in error, please notify the sender immediately by return e-mail and delete this message from your system. -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
Re: vsftp help
Thanks, I tried it with the firewall off and still getting the same results. Must be some sort of config error I guess. -Rich That is usually a sign of a Firewall. Passive uses ports gt 1024. Look for that possibly, or use port instead of passive. Rich Ransom wrote: I've installed vsftp and can log in ok. I can do a pwd command and it tells me where I am, but when I try any other commmand I get: ftp> ls 227 Entering Passive Mode (129,15,99,44,197,69) 200 PORT command successful. Consider using PASV. 425 Failed to establish connection. Where Do I start looking to fix it? --Rich -- = Stacy J. BrandenburgRed Hat Inc. = = Sr. Network Engineer http://www.redhat.com = -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list -- Rich Ransom Webmaster KISS Institute http://www.botball.org http://www.kipr.org [EMAIL PROTECTED] -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
Re: vsftp help
That is usually a sign of a Firewall. Passive uses ports gt 1024. Look for that possibly, or use port instead of passive. Rich Ransom wrote: I've installed vsftp and can log in ok. I can do a pwd command and it tells me where I am, but when I try any other commmand I get: ftp> ls 227 Entering Passive Mode (129,15,99,44,197,69) 200 PORT command successful. Consider using PASV. 425 Failed to establish connection. Where Do I start looking to fix it? --Rich -- = Stacy J. BrandenburgRed Hat Inc. = = Sr. Network Engineer http://www.redhat.com = -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
Re: vsftp
On Thu, 2003-09-11 at 10:48, Rich Ransom wrote: > Can anyone suggest the location of a good vsftp install/setup tutorial? > ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-1.2.0/EXAMPLE This provides examples of config options for different applications... -- John [EMAIL PROTECTED] -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
Re: vsftp - why does this not work
On Thu, 28 Aug 2003 10:44:42 -0500 (CDT) "Distribution Lists" <[EMAIL PROTECTED]> wrote: > I'm trying to configure VSFTP to only ftp for one user + anonymous... but > I can still ftp and logon from any userid in /etc/passwd. > > Heres my config...can anyone see where I'm going wrong ? > > > -- > more vsftpd > #%PAM-1.0 > auth required /lib/security/pam_listfile.so item=user sense=deny > file=/etc/vsftpd.ftpusers onerr=succeed Change sense=deny to: sense=allow Regards, Sean -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
Re: VSFTP configuration
On Tue, 2003-07-01 at 14:20, Bret Hughes wrote: > On Tue, 2003-07-01 at 12:42, Mark Haney wrote: > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SHA1 > > > > I'm having some trouble with getting vsftp configured for my setup. > > I hope it's possible to set it up without having to re-do everything. > > Here's the deal, we are finaly moving from IIS to Apache for our web > > server. That's a good thing. Our IIS server was hacked some weeks > > ago and hasn't been the same since. Now, I want to be able to setup > > ftp access for our teachers and staff who publish their webpages > > (some with FrontPage, others with Dreamweaver) but I haven't been > > able to figure out how to get vsftp to just default to a specific > > directory (ie the location of our webpages). Is this even possible? > > Or should I look for another ftp daemon that does this? Hope anyone > > has any ideas. > > > > Mark - > Create linux users then set their home directory to the web directory. usermod -d /var/www/html I'd create a group (ie teachers), then assign the users to that group as well. groupadd teachers usermod -G teachers Then chown apache:teachers * in you r web directory. Don't forget chmod 664 * in the web directory to allow apache and teachers to write to the dir. That should do it. You may have to change the default permissions in vsftp.conf though. -Mike -- Michael Gargiullo <[EMAIL PROTECTED]> Warp Drive Networks -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
Re: VSFTP configuration
On Tue, 2003-07-01 at 12:42, Mark Haney wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > I'm having some trouble with getting vsftp configured for my setup. > I hope it's possible to set it up without having to re-do everything. > Here's the deal, we are finaly moving from IIS to Apache for our web > server. That's a good thing. Our IIS server was hacked some weeks > ago and hasn't been the same since. Now, I want to be able to setup > ftp access for our teachers and staff who publish their webpages > (some with FrontPage, others with Dreamweaver) but I haven't been > able to figure out how to get vsftp to just default to a specific > directory (ie the location of our webpages). Is this even possible? > Or should I look for another ftp daemon that does this? Hope anyone > has any ideas. > Mark - I can't help with the vsftp stuff but would give you the same advice that was given to me on this list last week. DON'T put ftp on the box. go ahead and have your users download winscp and let them use ssh to upload files. Bret -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
Re: vsftp advice
Bill Dossett wrote: I need to run an FTP server and allow unknown people to upload files to it, anonymous ftp. I only want people to be able to upload, no downloads. I'm afraid I might leave some huge security hole in my server and wind up with a bunch of warez using my bandwidth and server which I can ill afford. If you don't want warez don't run vsftpd as a anonymous server (as I did) Read this howto ftp://info:[EMAIL PROTECTED]/vsftpd_with_virtual_users.txt bye Lucio -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
Re: vsftp
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 > From: "Richard Humphrey" <[EMAIL PROTECTED]> > > I am running Red Hat 8 with the default install of vsftp. I disabled > > anonymous logins in the vsftpd.conf file and restarted xinetd and yet I > can > > still login anonymously. Is there somewhere else I need to configure to > > block anonymous access? > > On Thu, 20 Mar 2003 15:01:59 -0500, Eric Wood wrote: > You might can remove anonftp: > # rpm -e anonftp That package has nothing to do with vsftpd. It's only for wu-ftpd. > But, anonymous_enable=NO in your /etc/vsftpd.conf should have done the > trick. > -eric wood - -- -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE+ejN30iMVcrivHFQRAjZZAJ9LT1F79D9jeq/FAf2+yj2xgmFt3wCaAjY0 PzFFuTU8umR28gUFw/jIwnw= =WVHk -END PGP SIGNATURE- -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
RE: vsftp
Doh! Stupid me, I didn't specify anonymous_enable=NO in the config file, I just commented out the entire line. Richard Humphrey -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Eric Wood Sent: Thursday, March 20, 2003 2:02 PM To: [EMAIL PROTECTED] Subject: Re: vsftp You might can remove anonftp: # rpm -e anonftp But, anonymous_enable=NO in your /etc/vsftpd.conf should have done the trick. -eric wood From: "Richard Humphrey" <[EMAIL PROTECTED]> > I am running Red Hat 8 with the default install of vsftp. I disabled > anonymous logins in the vsftpd.conf file and restarted xinetd and yet I can > still login anonymously. Is there somewhere else I need to configure to > block anonymous access? -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
Re: vsftp
You might can remove anonftp: # rpm -e anonftp But, anonymous_enable=NO in your /etc/vsftpd.conf should have done the trick. -eric wood From: "Richard Humphrey" <[EMAIL PROTECTED]> > I am running Red Hat 8 with the default install of vsftp. I disabled > anonymous logins in the vsftpd.conf file and restarted xinetd and yet I can > still login anonymously. Is there somewhere else I need to configure to > block anonymous access? -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
RE: vsftp
that worked. IMHO vsftpd is tons faster than wu-ftpd and since RedHat used it during the push of 7.2 on their ftp site I figured I would try it. -matt -Original Message- From: Juan Martinez [mailto:[EMAIL PROTECTED]] Sent: Thu 3/21/2002 2:45 PM To: [EMAIL PROTECTED] Cc: Subject: Re: vsftp I'm not sure about vsftp but most ftp servers I've used require that a user have a valid shell to be allowed to ftp. The shell's absolute path must appear in /etc/shells. You could add /sbin/nologin to /etc/shells and it should fix your problem. To keep a user in the home directory, however, you need to run the session chrooted as someone else has already pointed out. Juan On Thu, 21 Mar 2002, Chapman, Matt wrote: > Date: Thu, 21 Mar 2002 12:45:24 -0500 > From: "Chapman, Matt" <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > To: [EMAIL PROTECTED] > Subject: vsftp > > Hi, > > I installed vsftpd and I like it much better thus far than the hole > ridden wu-ftpd. My question is when I make a user's shell /sbin/nologin > so they can not telnet it also cuts off there ftp. How do I make it so > a user can ftp , not telnet, and for that matter keep them only in the > home dir they have permission too. > > -matt > > > > ___ > Redhat-list mailing list > [EMAIL PROTECTED] > https://listman.redhat.com/mailman/listinfo/redhat-list > ___ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list <>
RE: vsftp
That is what it is missing /etc/shells Thank you I shall try that. -matt > -Original Message- > From: Juan Martinez [mailto:[EMAIL PROTECTED]] > Sent: Thursday, March 21, 2002 2:46 PM > To: [EMAIL PROTECTED] > Subject: Re: vsftp > > > > I'm not sure about vsftp but most ftp servers I've used > require that a user have a valid shell to be allowed to ftp. > The shell's absolute path must appear in /etc/shells. You > could add /sbin/nologin to /etc/shells and it should fix your problem. > > To keep a user in the home directory, however, you need to > run the session chrooted as someone else has already pointed out. > > Juan > > > > On Thu, 21 Mar 2002, Chapman, Matt wrote: > > > Date: Thu, 21 Mar 2002 12:45:24 -0500 > > From: "Chapman, Matt" <[EMAIL PROTECTED]> > > Reply-To: [EMAIL PROTECTED] > > To: [EMAIL PROTECTED] > > Subject: vsftp > > > > Hi, > > > > I installed vsftpd and I like it much better thus far than the hole > > ridden wu-ftpd. My question is when I make a user's shell > > /sbin/nologin so they can not telnet it also cuts off there > ftp. How > > do I make it so a user can ftp , not telnet, and for that > matter keep > > them only in the home dir they have permission too. > > > > -matt > > > > > > > > ___ > > Redhat-list mailing list > > [EMAIL PROTECTED] > > https://listman.redhat.com/mailman/listinfo/redhat-list > > > > > > > ___ > Redhat-list mailing list > [EMAIL PROTECTED] > https://listman.redhat.com/mailman/listinfo/re> dhat-list > ___ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
Re: vsftp
I'm not sure about vsftp but most ftp servers I've used require that a user have a valid shell to be allowed to ftp. The shell's absolute path must appear in /etc/shells. You could add /sbin/nologin to /etc/shells and it should fix your problem. To keep a user in the home directory, however, you need to run the session chrooted as someone else has already pointed out. Juan On Thu, 21 Mar 2002, Chapman, Matt wrote: > Date: Thu, 21 Mar 2002 12:45:24 -0500 > From: "Chapman, Matt" <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > To: [EMAIL PROTECTED] > Subject: vsftp > > Hi, > > I installed vsftpd and I like it much better thus far than the hole > ridden wu-ftpd. My question is when I make a user's shell /sbin/nologin > so they can not telnet it also cuts off there ftp. How do I make it so > a user can ftp , not telnet, and for that matter keep them only in the > home dir they have permission too. > > -matt > > > > ___ > Redhat-list mailing list > [EMAIL PROTECTED] > https://listman.redhat.com/mailman/listinfo/redhat-list > ___ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
Re: vsftp
You need to chroot the environment in order to box them in to their own directories. -- Jonathan -- Jonathan M. Slivko Voyager Internet Services http://www.voyageri.net/ [EMAIL PROTECTED] - Original Message - From: "Chapman, Matt" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, March 21, 2002 12:45 PM Subject: vsftp > Hi, > > I installed vsftpd and I like it much better thus far than the hole > ridden wu-ftpd. My question is when I make a user's shell /sbin/nologin > so they can not telnet it also cuts off there ftp. How do I make it so > a user can ftp , not telnet, and for that matter keep them only in the > home dir they have permission too. > > -matt > > > > ___ > Redhat-list mailing list > [EMAIL PROTECTED] > https://listman.redhat.com/mailman/listinfo/redhat-list ___ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list