hockey500 Skrevet 31. mai 2006 Rapporter Del Skrevet 31. mai 2006 (endret) Jeg har nettopp installert GProFTPD til FTP-serveren min, legger til en bruker, men jeg får ikke logget inn selv om jeg vet jeg skriver inn riktig brukernavn/passord Sånn ser fila ut ServerType standalone DefaultServer on Umask 022 ServerName "0.0.0.0" ServerIdent on "My FTPD" ServerAdmin [email protected] IdentLookups off UseReverseDNS off Port 21 PassivePorts 49152 65534 #MasqueradeAddress None TimesGMT off MaxInstances 30 MaxLoginAttempts 3 TimeoutLogin 300 TimeoutNoTransfer 120 TimeoutIdle 120 DirFakeUser off nobody DirFakeGroup off nobody DefaultTransferMode binary AllowForeignAddress on AllowRetrieveRestart on AllowStoreRestart on DeleteAbortedStores off TransferRate RETR 30 TransferRate STOR 40 TransferRate STOU 40 TransferRate APPE 40 SystemLog /var/log/secure #gp_random_username_length 6 #gp_random_password_length 6 #gp_randomize_case lower #gp_useradd_homedir_path /home/ftp #gp_useradd_upload_path /upload #gp_html_path /var/www/ftp.html #gp_welcome_name welcome.msg <IfModule mod_tls.c> TLSEngine off TLSRequired off TLSVerifyClient off TLSProtocol TLSv1 TLSLog /var/log/proftpd_tls.log TLSRSACertificateFile /etc/gproftpd/gproftpd.pem </IfModule> <Limit LOGIN> AllowUser eksamen DenyALL </Limit> <Anonymous /home/ftp> User eksamen Group nogroup AnonRequirePassword off MaxClients 5 "The server is full, hosting %m users" DisplayLogin welcome.msg DisplayFirstChdir .msg <Limit LOGIN> Allow from all Deny from all </Limit> <Limit LIST NLST STOR STOU APPE RETR RNFR RNTO DELE MKD XMKD SITE_MKDIR RMD XRMD SITE_RMDIR SITE SITE_CHMOD SITE_CHGRP MTDM PWD XPWD SIZE STAT CWD XCWD CDUP XCUP > AllowAll </Limit> </Anonymous> Jeg prøver å sette opp en bruker med alle rettigheter, men selv ubuntuguide.org sitt eksempel på dette funker ikke. Noen som da ser feilen her? Hvorfor får jeg ikke logget inn? jeg prøver med brukernavn: eksamen og passordfeltet blankt EDIT: fjerna spoiler, koden var ikke så lang som jeg trodde Endret 31. mai 2006 av hockey500 Lenke til kommentar
kakkle Skrevet 31. mai 2006 Rapporter Del Skrevet 31. mai 2006 (endret) Sjekk at gruppen nouser finnes... Jeg ville kanskje tro at det skal være nogroup... Sjekk i filen /etc/group EDIT: Og bytt i config til rett gruppe EDIT: Hmmm... ar du endret litt her nå ? Eller har jeg postet i feil post ? Mener det stod user nobody og group nobody før.. Forresten så ser dette litt ulogisk ut: <Limit LOGIN> AllowUser eksamen DenyALL </Limit> Bytt rekkefølgen på Allow og Deny. Nå tillater du jo først en bruker, og etterpå nekter du alle, altså også den som du tillot over... Uten at jeg er sikker på det.. Men for meg høres det litt logisk ut... Endret 31. mai 2006 av kakkle Lenke til kommentar
hockey500 Skrevet 31. mai 2006 Forfatter Rapporter Del Skrevet 31. mai 2006 (endret) Glem hele GProFTPD. Jeg klarte det når jeg redigerte Ubuntuguide.org sin kode litt: Sånn så den ut: # # /etc/proftpd.conf -- This is a basic ProFTPD configuration file. # To really apply changes reload proftpd after modifications. # ServerName "Debian" ServerType standalone DeferWelcome off MultilineRFC2228 on DefaultServer on ShowSymlinks on TimeoutNoTransfer 600 TimeoutStalled 600 TimeoutIdle 1200 DisplayLogin welcome.msg DisplayFirstChdir .message ListOptions "-l" DenyFilter \*.*/ # Uncomment this if you are using NIS or LDAP to retrieve passwords: #PersistentPasswd off # Uncomment this if you would use TLS module: #TLSEngine on # Uncomment this if you would use quota module: #Quotas on # Uncomment this if you would use ratio module: #Ratios on # Port 21 is the standard FTP port. Port 21 # To prevent DoS attacks, set the maximum number of child processes # to 30. If you need to allow more than 30 concurrent connections # at once, simply increase this value. Note that this ONLY works # in standalone mode, in inetd mode you should use an inetd server # that allows you to limit maximum number of processes per service # (such as xinetd) MaxInstances 30 # Set the user and group that the server normally runs at. User nobody Group nogroup # Umask 022 is a good standard umask to prevent new files and dirs # (second parm) from being group and world writable. Umask 022 022 # Normally, we want files to be overwriteable. AllowOverwrite on # Delay engine reduces impact of the so-called Timing Attack described in # http://security.lss.hr/index.php?page=deta...=LSS-2004-10-02 # It is on by default. #DelayEngine off # A basic anonymous configuration, no upload directories. # <Anonymous ~ftp> # User ftp # Group nogroup # # We want clients to be able to login with "anonymous" as well as "ftp" # UserAlias anonymous ftp # # Cosmetic changes, all files belongs to ftp user # DirFakeUser on ftp # DirFakeGroup on ftp # # RequireValidShell off # # # Limit the maximum number of anonymous logins # MaxClients 10 # # # We want 'welcome.msg' displayed at login, and '.message' displayed # # in each newly chdired directory. # DisplayLogin welcome.msg # DisplayFirstChdir .message # # # Limit WRITE everywhere in the anonymous chroot # <Directory *> # <Limit WRITE> # DenyAll # </Limit> # </Directory> # # # Uncomment this if you're brave. # # <Directory incoming> # # # Umask 022 is a good standard umask to prevent new files and dirs # # # (second parm) from being group and world writable. # # Umask 022 022 # # <Limit READ WRITE> # # DenyAll # # </Limit> # # <Limit STOR> # # AllowAll # # </Limit> # # </Directory> # # </Anonymous> <Anonymous ~ftp> User ftp Group nogroup UserAlias anonymous ftp DirFakeUser on ftp DirFakeGroup on ftp RequireValidShell off MaxClients 10 DisplayLogin welcome.msg DisplayFirstChdir .message </Anonymous> og redigerte til: # /etc/proftpd.conf -- This is a basic ProFTPD configuration file. # To really apply changes reload proftpd after modifications. # ServerName "Debian" ServerType standalone DeferWelcome off MultilineRFC2228 on DefaultServer on ShowSymlinks on TimeoutNoTransfer 600 TimeoutStalled 600 TimeoutIdle 1200 DisplayLogin welcome.msg DisplayFirstChdir .message ListOptions "-l" DenyFilter \*.*/ IdentLookups off UseReverseDNS off # Uncomment this if you are using NIS or LDAP to retrieve passwords: #PersistentPasswd off # Uncomment this if you would use TLS module: #TLSEngine on # Uncomment this if you would use quota module: #Quotas on # Uncomment this if you would use ratio module: #Ratios on # Port 21 is the standard FTP port. Port 21 # To prevent DoS attacks, set the maximum number of child processes # to 30. If you need to allow more than 30 concurrent connections # at once, simply increase this value. Note that this ONLY works # in standalone mode, in inetd mode you should use an inetd server # that allows you to limit maximum number of processes per service # (such as xinetd) MaxInstances 30 # Set the user and group that the server normally runs at. User nobody Group nogroup # Umask 022 is a good standard umask to prevent new files and dirs # (second parm) from being group and world writable. Umask 022 022 # Normally, we want files to be overwriteable. AllowOverwrite on # Delay engine reduces impact of the so-called Timing Attack described in # http://security.lss.hr/index.php?page=deta...=LSS-2004-10-02 # It is on by default. #DelayEngine off # A basic anonymous configuration, no upload directories. # <Anonymous ~ftp> # User ftp # Group nogroup # # We want clients to be able to login with "anonymous" as well as "ftp" # UserAlias anonymous ftp # # Cosmetic changes, all files belongs to ftp user # DirFakeUser on ftp # DirFakeGroup on ftp # # RequireValidShell off # # # Limit the maximum number of anonymous logins # MaxClients 10 # # # We want 'welcome.msg' displayed at login, and '.message' displayed # # in each newly chdired directory. # DisplayLogin welcome.msg # DisplayFirstChdir .message # # # Limit WRITE everywhere in the anonymous chroot # <Directory *> # <Limit WRITE> # DenyAll # </Limit> # </Directory> # # # Uncomment this if you're brave. # # <Directory incoming> # # # Umask 022 is a good standard umask to prevent new files and dirs # # # (second parm) from being group and world writable. # # Umask 022 022 # # <Limit READ WRITE> # # DenyAll # # </Limit> # # <Limit STOR> # # AllowAll # # </Limit> # # </Directory> # # </Anonymous> <Anonymous ~ftp> User eksamen Group nogroup UserAlias anonymous ftp DirFakeUser on ftp DirFakeGroup on ftp RequireValidShell off MaxClients 10 DisplayLogin welcome.msg DisplayFirstChdir .message <Directory *> <Limit WRITE> AllowAll </Limit> </Directory> </Anonymous> Glem hele GProFTPD. Får klare meg uten, men hvis det finnes alternativer så er jeg interessert i å høre om erfarginger med de også. Endret 31. mai 2006 av hockey500 Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå