PDA

View Full Version : ftp server AAARRRGGHHH!



thephydeaux
18th March 2006, 07:02 PM
Hey Guys

I've been trying unsuccessfully to get proftpd to work. In particular I want to be able to log in from outside and load files into /var/ftp/uploads

the config files are below. Yeah, I know that it allows login as root, but that way to try to get access any way I could and then work from there.

Login through the network doesnt want to work either, although I can "see" the site with a browser.

Any Clues?

Thanks guys
Tim R



# This is the ProFTPD configuration file
# $Id: proftpd.conf,v 1.1 2004/02/26 17:54:30 thias Exp $

ServerName " ftp server"
ServerIdent on "FTP Server ready."
ServerAdmin root@localhost
ServerType standalone
#ServerType inetd
DefaultServer on
AccessGrantMsg "User %u logged in."
#DisplayConnect /etc/ftpissue
#DisplayLogin /etc/ftpmotd
#DisplayGoAway /etc/ftpgoaway
DeferWelcome off

# Use this to excude users from the chroot
DefaultRoot ~ !adm

# Use pam to authenticate (default) and be authoritative
AuthPAMConfig proftpd
AuthOrder mod_auth_pam.c* mod_auth_unix.c

# Do not perform ident nor DNS lookups (hangs when the port is filtered)
IdentLookups off
UseReverseDNS off

# Port 21 is the standard FTP port.
Port 21

# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022

# Default to show dot files in directory listings
ListOptions "-a"

# See Configuration.html for these (here are the default values)
#MultilineRFC2228 off
#RootLogin off
#LoginPasswordPrompt on
#MaxLoginAttempts 3
#MaxClientsPerHost none
#AllowForeignAddress off # For FXP

# Allow to resume not only the downloads but the uploads too
AllowRetrieveRestart on
AllowStoreRestart on

# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 20

# Set the user and group that the server normally runs at.
User ftp
Group ftp

# This is where we want to put the pid file
ScoreboardFile /var/run/proftpd.score

# Normally, we want users to do a few things.
<Global>
AllowOverwrite yes
<Limit ALL SITE_CHMOD>
AllowAll
</Limit>
<Directory /var/ftp/uploads>
</Directory>
DefaultRoot /var/ftp/uploads
RootLogin on
RequireValidShell on
</Global>

# Define the log formats
LogFormat default "%h %l %u %t &#092;"%r&#092;" %s %b"
LogFormat auth "%v [%P] %h %t &#092;"%r&#092;" %s"
<Anonymous /var/ftp/uploads>
UserAlias anonymous Tim
Group ftp
AllowOverwrite on
AnonRequirePassword on
DisplayGoAway """Sorry, there are too many connections. Please try again later"""
AccessDenyMsg "Your login failed. Please try again"
AccessGrantMsg "Login Successful."
HideNoAccess on
HiddenStor on
</Anonymous>

# TLS
# Explained at http://www.castaglia.org/proftpd/modules/mod_tls.html
#TLSEngine on
#TLSRequired on
#TLSRSACertificateFile /usr/share/ssl/certs/proftpd.pem
#TLSRSACertificateKeyFile /usr/share/ssl/certs/proftpd.pem
#TLSCipherSuite ALL:&#33;ADH:&#33;DES
#TLSOptions NoCertRequest
#TLSVerifyClient off
##TLSRenegotiate ctrl 3600 data 512000 required off timeout 300
#TLSLog /var/log/proftpd/tls.log

# A basic anonymous configuration, with an upload directory.
#<Anonymous ~ftp>
# User ftp
# Group ftp
# AccessGrantMsg "Anonymous login ok, restrictions apply."
#
# # We want clients to be able to login with "anonymous" as well as "ftp"
# UserAlias anonymous ftp
#
# # Limit the maximum number of anonymous logins
# MaxClients 10 "Sorry, max %m users -- try again later"
#
# # Put the user into /pub right after login
# #DefaultChdir /pub
#
# # We want &#39;welcome.msg&#39; displayed at login, &#39;.message&#39; displayed in
# # each newly chdired directory and tell users to read README* files.
# DisplayLogin /welcome.msg
# DisplayFirstChdir .message
# DisplayReadme README*
#
# # Some more cosmetic and not vital stuff
# DirFakeUser on ftp
# DirFakeGroup on ftp
#
# # Limit WRITE everywhere in the anonymous chroot
# <Limit WRITE SITE_CHMOD>
# DenyAll
# </Limit>
#
# # An upload directory that allows storing files but not retrieving
# # or creating directories.
# <Directory uploads/*>
# AllowOverwrite no
# <Limit READ>
# DenyAll
# </Limit>
#
# <Limit STOR>
# AllowAll
# </Limit>
# </Directory>
#
# # Don&#39;t write anonymous accesses to the system wtmp file (good idea&#33;)
# WtmpLog off
#
# # Logging for the anonymous transfers
# ExtendedLog /var/log/proftpd/access.log WRITE,READ default
# ExtendedLog /var/log/proftpd/auth.log AUTH auth
#
#</Anonymous>

hawker
18th March 2006, 07:38 PM
Are you trying to access a mac via FTP?

Or is this Windows/Linux?

thephydeaux
18th March 2006, 07:45 PM
&#39;tis on a fedora core linux box

Thanks

Tim R

Silver
18th March 2006, 07:45 PM
I got mine to work through a MySQL user table.

hawker
18th March 2006, 10:29 PM
This might help: http://www.siliconvalleyccie.com/linux-hn/ftp-server.htm

thephydeaux
19th March 2006, 06:52 AM
Thanks Guys

Tim R

mac_man_luke
19th March 2006, 01:05 PM
I have found unless you have a correct DNS record it can be very flaky