redhat 9.0 ftp users 1

[sabbathunter]

i am having a problem with FTP in linux. when i try to link my XP pro box to it, i am asked for a user name and password.

if i check sign in anonymous, i dont know what password to use (i configured the linux to allow anonymous users).
also how do i add additional users and passwords for it?


david

 

[sabbathunter]

btw i even tried to login as root to the ftp (i know you arent supposed to for security reasons, but i took root out of the dontallow users and tried anyway, but no luck)

david

 

[Tappe]

First check if your ftp service is running (ps -ax), and you have the firewall setup to allow tcp port 21. There are some more for passive ftp and some ftp clients (CuteFTP) seem to like open, but don't have them memorized. I ended up making an anonymous user and setting it to a blank password but be careful not to give this user too many rights or too many dirs. Just the one under home works fine for Redhat if I remember.

 

[kvashisht]

this is aproblem with XP box or some other M/C also.
U pls add user in your ftpaccess file aftet ftpuser line.
this user must not be in listed in ftpusers file.

Regds,
Kaushal Vashisht

 

[fluid11]

Which FTP server are you running? I'll assume vsftpd since its RH9.

If you sign in with 'anonymous', use any password you want. Sometimes your FTP server will require the password be an email address, so just type any address (doesn't have to be valid), fake@address.com.

If you allowed regular users to log in in the /etc/vsftpd.conf file, the users are just regular system users listed in the /etc/passwd file. To add a user, I would do something like this...

useradd -s /bin/false jdoe
passwd jdoe

Also, you can set vsftpd up to authenticate users from a separate text file that you specify if you want to keep your FTP users separate from your system accounts.

ChrisP
RHCE, LPIC-1, CCNA, CNE, MCSE, +10 others

 

[sabbathunter]

i am indeed running RH 9.0 (see subject lol )

when i tried to sign in as anonymous with an email address i got the error message saying the user or email address was not valid.

i also tried the above solution
"useradd -s /bin/false jdoe
passwd jdoe"

i then restarted the vsftp

but when i tried to login as jdoe with the password i created i got the following message
"cannot login to the FTP server with the username and password provided"

what step am i missing here to gain access?

thanks

david

 

[sabbathunter]

also on the vsftpd.conf file i set the following
connect_from_port_20=YES
connect_from_port_21=yes

when i did that and restarted the vsftpd the error changed to
windows cannot access this folder. make sure you typed the filename correctly and you have permission to access this folder.

Details: A connection with the server could not be established.


then i realized i got an error on the restart of vsftpd
it said the restart was successful under status it said
vsftpd dead but subsys locked.

david

 

[sabbathunter]

here is a copy of my vsftpd.conf file.
hopefully it will help

david

# Allow anonymous FTP?
anonymous_enable=YES
#
anon_upload_enable=yes
# Uncomment this to allow local users to log in.
local_enable=YES
#
# Uncomment this to enable any form of FTP write command.
write_enable=YES
#
# Default umask for local users is 077. You may wish to change this to 022,
# if your users expect that (022 is used by most other ftpd's)
local_umask=022
#
# Uncomment this to allow the anonymous FTP user to upload files. This only
# has an effect if the above global write enable is activated. Also, you will
# obviously need to create a directory writable by the FTP user.
anon_upload_enable=YES
#
# Uncomment this if you want the anonymous FTP user to be able to create
# new directories.
anon_mkdir_write_enable=YES

# Activate directory messages - messages given to remote users when they
# go into a certain directory.
dirmessage_enable=YES
#
# Activate logging of uploads/downloads.
xferlog_enable=YES
#
# Make sure PORT transfer connections originate from port 20 (ftp-data).
connect_from_port_20=YES

#
# If you want, you can arrange for uploaded anonymous files to be owned by
# a different user. Note! Using "root" for uploaded files is not
# recommended!
chown_uploads=YES
#chown_username=anonymous
#
# You may override where the log file goes if you like. The default is shown
# below.
#xferlog_file=/var/log/vsftpd.log
#
# If you want, you can have your log file in standard ftpd xferlog format
xferlog_std_format=YES
#
# You may change the default value for timing out an idle session.
#idle_session_timeout=600
#
# You may change the default value for timing out a data connection.
#data_connection_timeout=120
#
# It is recommended that you define on your system a unique user which the
# ftp server can use as a totally isolated and unprivileged user.
#nopriv_user=ftpsecure
#
# Enable this and the server will recognise asynchronous ABOR requests. Not
# recommended for security (the code is non-trivial). Not enabling it,
# however, may confuse older FTP clients.
#async_abor_enable=YES
#
# By default the server will pretend to allow ASCII mode but in fact ignore
# the request. Turn on the below options to have the server actually do ASCII
# mangling on files when in ASCII mode.
# Beware that turning on ascii_download_enable enables malicious remote parties
# to consume your I/O resources, by issuing the command "SIZE /big/file" in
# ASCII mode.
# These ASCII options are split into upload and download because you may wish
# to enable ASCII uploads (to prevent uploaded scripts etc. from breaking),
# without the DoS risk of SIZE and ASCII downloads. ASCII mangling should be
# on the client anyway..
#ascii_upload_enable=YES
#ascii_download_enable=YES
#
# You may fully customise the login banner string:
ftpd_banner=Welcome to blah FTP service.
#
# You may specify a file of disallowed anonymous e-mail addresses. Apparently
# useful for combatting certain DoS attacks.
#deny_email_enable=YES
# (default follows)

#banned_email_file=/etc/vsftpd.banned_emails
#
# You may specify an explicit list of local users to chroot() to their home
# directory. If chroot_local_user is YES, then this list becomes a list of
# users to NOT chroot().
#chroot_list_enable=YES
# (default follows)
chroot_list_file=/etc/vsftpd.chroot_list
#
# You may activate the "-R" option to the builtin ls. This is disabled by
# default to avoid remote users being able to cause excessive I/O on large
# sites. However, some broken FTP clients such as "ncftp" and "mirror" assume
# the presence of the "-R" option, so there is a strong case for enabling it.
#ls_recurse_enable=YES

pam_service_name=vsftpd
#userlist_enable=YES
#enable for standalone mode
listen=YES

 

[Tappe]

What program are you using to connect to this? I set up vsftp with RH9, and it worked right out of the box. I then allowed annon. logins and have never had a problem. I use the ftp command from other UNIX systems and PuttyFTP (a million dollar peice of free software) for Windows systems, only down side to these are the lack of ability to do batch transfer (many dirs and/or files). Now if any1 knows a way around that, please share... As for your problem, try making the directory owner group the ftp service runas user, not anonymous.
chown -R ftp /var/ftp
chgrp -R ftp /var/ftp
chmod 770 /var/ftp
then try uncommenting chown_user_name or remakring out chown uploads. I don't know if you want to change the owner of all uploads or not but I think those two lines need to either both be there or both be remarked out. Two more i spotted real quick, try remarking out the chown_list_file string. Again don't know if you use it but if it's not setup, it will cause problems. Finally put in the very bottom tcp_wrappers=YES. Do that last because I doubt that will fix your problem, but it is a useful feature (RH9 allows tcp wrappers in kernel i believe). Hope that mess helps. -Tappe

 

[fluid11]

sabbathunter, was this issue resolved from this thread, thread54-674160 or is it a separete issue?

 

[rzs0502]

What is the root directory of you FTP server?

If your FTP home is for an example /var/ftp, the ftp directory must have read/write access to the world for anonymous access, orread/write access to the user that's logging on via ftp.