CentOS 5 Networking :: Can't Get Vsftpd To Accept Anything But Anonymous Connections
Jun 5, 2010
This is on Centos 5.3 by the way..... I had a DVD and, well, just wanted to test some things.. I'm aware that this is not the latest release.
And, by the way (I just read an earlier post) I've added the username and password with which I'm trying to login (..hello?).
I'm at work and I don't have a copy of my Vsftpd configuration file (don't wanna edit this whole thing - actually there is a copy, below). I've used Slackware for years and never had any issues with Vsftpd - it just works. I am trying Centos because I need help with upgrading my mail server (qmail) and there's not much help for Slackware users. Also, I used to run RHEL3 and had vsftpd working fine (had to copy some file to /etc/pam.d) but it worked famously. I compiled all my web server stuff (just don't like these default things where I have no idea how things are integrated) and I'm hung up on - of all things - vsftpd.
Anyway....When I try to log into my ftp server I get "KERBEROS_V4 rejected as an authentication type" and only the anonymous account works. Any other logins produce an error (incorrect login - see ya' later). I have SE Linux and the firewall OFF. I don't recall the directive, precisely, but my vsftpd.conf file is set allow local users to connect. I installed with yum and it added some lines at the bottom (one was about a user list and the other was about PAM). I've got a chroot list and a user list although it's not clear to me precisely where the user list should be placed. I actually uninstalled the RPM and compiled, too. I've done everything but call an exorcist. And I've found tons of posts regarding this on the net and none of the fixes worked. Man - on slackware you type "make" and "make install" (I build it with tcp_wrappers) and you're off to the races.
Actually - I did upload the vsftpd.conf file to work (where I'm at, now). Minus lines that were commented out it looks like this:
Could it, possibly, be something about how I am adding the user, the shell type, etc? I know that in Redhat I used to type "/usr/sbin/useradd -d /home/someuser joe". I've done it that way and I've also done it like so: "useradd -d /home/schmoe -s /bin/bash schmoe".
View 2 Replies
ADVERTISEMENT
Jan 5, 2010
I've recently been asked to setup our FTP server to accept connections from a remote host. They sent me a file "id_dsa.pub" with instructions to add this key to the xfer user.
Unfortunately I've no idea how to do this!
I'm running vsftpd 2.0.5 on Centos 5.3
View 4 Replies
View Related
May 4, 2010
I am attempting to configure vsftpd to allow anonymous users to PUT files into a shared incoming directory. This would be like a dropbox for my customers. Ideally, the incoming directory's contents would not be viewable by the users.
I believe that refused connection is due to the PAM configuration for vsftpd.
May 4 08:03:16 WSVM-S1-1 sshd[1512]: Invalid user anonymous from xxx.xxx.xxx.xxx
May 4 08:03:16 WSVM-S1-1 sshd[1513]: input_userauth_request: invalid user anonymous
May 4 08:03:16 WSVM-S1-1 sshd[1512]: pam_unix(sshd:auth): check pass; user unknown
[Code].....
View 3 Replies
View Related
Aug 14, 2009
I'm trying to get vsftpd running with both anonymous and local user access to the same folder. The directory I'm using is /tftp with the following permissions:
dr-srwxrwx 7 root root 12288 2009-08-14 15:54 tftp
My vsftpd.conf is this:
anonymous_enable=YES
local_enable=YES
write_enable=YES
[code]....
I set the default "ftp" user's home directory to /tftp (was /var/ftp).
View 4 Replies
View Related
May 28, 2009
I am writing a server which uses edge-triggered epoll. When the server calls accept(), it just extracts the first connection in the pending queue. If there are more connections that are waiting, can we make the server accept all the pending connections? I wrote a loop like the following:
do {
client_fd = accept(...);
/* Work with the client fd */
} while (client_fd != -1); [/code]
Doesn't seem to work. A related question, more a clarification, is as follows. My understanding was that a connect() at the client returns only when accept() in the server returns. Clearly, I was incorrect. Even with no accept() call in the server, my client was able to connect and send data. Am I getting this right?
View 2 Replies
View Related
Feb 5, 2010
I have installed vsftpd by "yum -y install vsftpd",disabled anonymous login and set .When I use a linux client's file browser to login using a user account "ftpacc" by ftp://ip_address, its location is "/" instead of /home/ftpacc".When I use a window client to login, its location is "/home/ftpacc"
View 1 Replies
View Related
Sep 4, 2010
vsftpd is working fine in my network with anonymous user but i need to access that from out-side all the setting is done on the router. I am getting page to access ftp form out-side but only for ftp users not anonymous user how i will give permeation to access ftp to anonymous user ?
View 26 Replies
View Related
Feb 25, 2011
I have a bunch of Ubuntu boxes on one subnet, 192.168.1.0. I have a Windows 7 box on another subnet, 192.168.2.0. I am able to ping and SSH to all servers on the .1 subnet except for one server, which I will call PITA. I will attempt to SSH to PITA, and it won't respond, nor does it respond to pings. I will the SSH to PITA from another of the test servers, successfully connect, and then when I SSH from my Windows 7 machine I can connect successfully. If I first connect via console to PITA and send some pings out (to anywhere, like 4.2.2.2), I can also connect from my Windows 7 machine. I've never seen anything like this.
One of the weird things is that I used PITA to create an image that I then used to create many of the other test servers, and they work fine, so I'm not sure what the problem is. I've checked /var/log/messages and syslog and there's nothing in them that indicates a problem. I've rebooted this server, restarted SSH, changed the IP in case it was conflicting with something else, forced an ARP update in case it was cached (since I had bonded the interfaces), cleared the ARP cache on my own machine, verified Network Manager is not installed...and I still have this issue.
Here are some network-related config:
/etc/network/interfaces
Quote:
# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).
# The loopback network interface
[code]....
View 3 Replies
View Related
May 19, 2010
In my house I have a small computer running ubuntu karmic that works as a server/media center.
I would like to have a folder (my ~/public folder) openly available to the entire world via anonymous ftp.
I have read somewhere that the defauld vsftpd config is basically this: no local user login, anon only and sharing a folder called /home/ftp, but I can't get this to work.
Here is my /etc/vsftpd.conf file:
Code:
View 9 Replies
View Related
Mar 24, 2011
obviously it's at least difficult but I'm interested in knowing if it's theoretically possible to allow anonymous users of vsftpd to upload to the same directory that anon_root is set to. If it's not then it's no big deal, I'm just trying to get a sense of the range of possibilities.
View 1 Replies
View Related
Feb 18, 2011
Our DBA has an application running on Server2 which needs to connect to Server1 (Linux OEL5.5 server) thru port# 9171. I use telnet to test basic connectivity.What should I do on Server1 in order to open up port#9171 for connection.
View 4 Replies
View Related
Feb 2, 2010
Hope you can help me out. I'm trying to setup a "drop-box" on ubuntu 9.10 server with vsftpd. I'm able to login and land in the /home/user directory, however I cannot write anything.
View 5 Replies
View Related
Jan 17, 2011
how to add files (and where) for anonymous download. I installed vsftpd and configure /etc/vsftpd.conf file...just few common options like allowing anonymous,download,upload. And now i can login with anonymous. But i dont know what to do next, i want to try to download and upload files.
View 9 Replies
View Related
Mar 13, 2011
I just want to configure Vsftpd to allow users to have total access to the FTP server. The server and users are all on a private LAN behind a router with no access from the Net, so I don't need any security. The following basic configuration doesn't allow uploading files after I log on as anonymous/whatever:
/etc/vsftpd/vsftpd.conf
Code:
listen=YES
anonymous_enable=YES
local_enable=YES
write_enable=YES
xferlog_file=YES
#anonymous users are restricted (chrooted) to anon_root
#anon_root=/home/ftp/incoming
anon_root=/var/ftp
anon_upload_enable=YES
anon_mkdir_write_enable=YES
#chroot_local_user=NO
#chroot_list_enable=YES
#chroot_list_file=/etc/vsftpd.chroot_list
Here's what happens when I log on as anonymous/whatever and try to upload a file:
> ftp server
Connected to server.
220 (vsFTPd 2.0.5)
Name (server:root): anonymous
331 Please specify the password.
Password:<whatever>
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls -al
200 PORT command successful. Consider using PASV.
150 Here comes the directory listing.
drwxr-xr-x 3 0 0 4096 Mar 13 11:19 .
drwxr-xr-x 3 0 0 4096 Mar 13 11:19 ..
drwxr-xr-x 2 0 0 4096 May 25 2010 pub
226 Directory send OK.
ftp> put /var/tmp/ftp
local: /var/tmp/ftp remote: /var/tmp/ftp
200 PORT command successful. Consider using PASV.
553 Could not create file.
View 4 Replies
View Related
Dec 21, 2009
In /etc/xinetd you see a file by the name of gssftp
Is vsftpd replaced by gssftpd
I want to configure gssftp to allow anonymous logins can anybody tell me where is the conf file for gssftp
View 1 Replies
View Related
Jun 22, 2015
I've been using VSFTPD for years but i can't seem to get over this particular issue. I'm unable to make VSFTPD 3.0.2 work with a legit STARTSSL TLS cert on Debian 8.1 kernel 3.16.0-4-amd64.
500 OOPS: SSL: cannot load RSA certificate.
Openssl 1.0.1k correctly verifies the .PEM file containing both my domain's cert and the intermediate CA one. I've tried adding the private key to the .PEM file and also using it as a separate .key file. Also tried mixing my cert with the intermediate CA one and the private key... to no avail.
Every file is inside /etc where all the conf files reside (also the user specific conf files). File permissions for the .pem and key files are 600.
I'm successfully using the same certificate for NGINX.
Configuration file:
Code: Select alllisten=YES
listen_port=40000
pasv_enable=YES
pasv_min_port=40222
pasv_max_port=40224
listen_address=192.168.1.150
[Code] ....
View 1 Replies
View Related
Aug 1, 2009
I tried to set up vnc following the steps of this webpage:
[URL]
which did not work. I changed everything back the way it was, but when I tried to ssh in to my remote server, the connection timed out? It showed nothing in secure logs. I tried to ssh in through webmin, in asked for auth but did not connect. The logs said this:
Jul 30 12:05:10 server sshd[2829]: Did not receive identification string from 209.139.209.100
I tried to telnet port 22 through the shell in webmin and got this:
> telnet 209.139.209.100 22
Trying 209.139.209.100...
Connected to 209.139.209.100.
Escape character is '^]'.
Connection closed by foreign host.
I tried reinstalling ssh, but got the same errors...It worked fine before the howto. I can't imagine how it changed something in ssh...
View 1 Replies
View Related
Jul 13, 2010
I'm having problems getting openssh server to accept connections in Ubuntu 10.04.Here's what I've done (twice): Installed Ubuntu 10.04 on USB drive with pendrive installer. This creates a default user "ubuntu" and you don't get the chance to choose a password for it. Started a keyring for network access and selected password. Works.Enabled VNC and selected password. Works fine with VNC client on local network. Logs in as "ubuntu" user and asks for the VNC password, then connects. Note: the client doesn't know the "ubuntu" user password, and neither do I! However, it works.Installed openssh client and server from Ubuntu s/w center.
$ ssh localhost OR $ ssh ubuntu@localhost try to connect, but asks for password, which I don't know (see step one, above) so, then I created a new user, with known password, logged in as new user in Ubuntu, works.however, $ ssh newuser@localhost still fails, even when correct password for <newuser> is supplied. Rejects the password three times, then gets the usual error about keys.I also tried connecting with an SSH terminal app from my iPad, again using <newuser>. It gets essentially the same error, "failure to authenticate".
All this is still on my own LAN, haven't gotten to going outside the router yet.What I want to do in the end is use VNC over SSH from a client on my iPad to talk securely to Ubuntu while I'm traveling.
View 9 Replies
View Related
Jun 28, 2009
im using vsftp with : chroot_local_user=YES. I would like to have a commune directory for every user.
View 2 Replies
View Related
Mar 30, 2009
I have a Intel WIreless 3945 card, wit ipw3945 installed on Dell E1505. I use NetworkManager to function and everything is ok. I can connect to wireless networks that have no security, or WEP security, but I just can't connect to networks with WPA or WPA2 securty. What can be my malfunction?
View 2 Replies
View Related
Jun 6, 2009
I'm a newbie in CentOS
I have a question
Does CentOS allow unlimited connections like Windows 2003 enterprise ?
View 1 Replies
View Related
Sep 27, 2010
im using default setting for proftpd and having two major problem for me at least
1. how to disable anonymous login?
2. how to make proftpd login using my default box login?
View 1 Replies
View Related
Nov 4, 2010
I am trying to configure a ftp server (pure-ftp) where I am using CentOS 5.5.
View 1 Replies
View Related
Apr 20, 2011
I have a test server (2.6.18-194.el5) that allows automated tools from Windows 7/Windows Server 2008 to access the filesystem (anonymous NFS access) via Samba (3.5.4-0.70.el5_6.1). Documentation on the smbusers file on samba.org seems a little thin.
* why is it necessary map unix users to samba users?
* what purpose does this mapping serve?
* does the umask of the unix user limit the samba user it is mapped to when creating files/directories? what about anonomous access?
* why are files created via anonymous access owned by 'nobody'?
* how can I control what user and permissions files/directories are created with?
View 3 Replies
View Related
Jul 21, 2009
I'm developing a simple TCP server. 99% of incoming connections terminate correctly and the sockets disappear from netstat outputHowever, a few connections hang around for indefinitely in the FIN_WAIT2 state. Now, I know that the clients in this case are misbehaving by not sending a FIN,ACK to close the connection. However, regardless of client behaviour, the connections should only remain in this state for a maximum of 60 seconds (set globally by /proc/sys/net/ipv4/tcp_fin_timeout)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name Timer
tcp 0 0 10.0.0.12:2000 10.0.0.6:50990 FIN_WAIT2
[code]....
View 4 Replies
View Related
Jan 24, 2011
i've got a select based application that wants to support a large number of mostly idle connections. the code is java and works on windows, suse enterprise linux, mac os x. it does not work on centos 5.5 (32-bit, 2.6.18 kernel, 1G of memory).
i've read and followed the directions in various articles about tuning linux for large numbers of connections (including the C10K problem), and gotten the number of sockets up to 3200.
these didn't make any apparent difference:
[URL]
on windows, i can get up to around 78,000.
on suse enterprise linux (a few years ago), i got up to 90,000. that's where i got bored and stopped.
on my mac laptop with os x (snow leopard), i got up to 10,500.
i have used ulimit -n 10240
my current goal is 10k sockets.
the test is that i'm opening one socket at a time until it fails. when it fails, many of the sockets which have already been opened also fail, in one giant cascade. sounds like a buffer / memory problem.
each group of 64 sockets gets a thread to manage select calls for them. thus i'm only using around 61 threads total when it fails.
View 3 Replies
View Related
Jan 12, 2010
I just opened an (unmanaged) VPS account and and have been encountering nothing but problems with trying to get Apache up and running (its something I've done many times before).Basically the inital error was with LDAP not having enough space, so I disabled the related extensions and Apache still would not run. Looking at the log, it contains: (28)No space left on device: Unable to create scoreboard (anonymous shared memory failure)
View 1 Replies
View Related
Apr 7, 2009
After doing a clean base install of CentOS 5.3 on a test server, I started having problems with network disconnects. While SSH into the box, I would be intermittently disconnected from the SSH session. At first I thought it was my workstation, but after running ping tests from multiple machines on the network to the test box, it became apparent that the test box was dropping packets. When I lose my SSH connection, the pings also start timing out, for a few seconds, then start again. I increased the console logging and I can see when the ethernet port goes up and down when I physically disconnect the cable, but it does not go down or lose link when the disconnects occur. I changed the NIC ports being used and had the same result. I tried with a different switch with same result. I reinstalled CentOS 5.2 and the problem went away.
Upon further investigation, I found that CentOS 5.2 is using the e1000 driver for my NICs and CentOS 5.3 is using the e1000e driver. I resinstalled CentOS 5.3, and tried using the e1000 driver instead of the e1000e but it no longer detects my NIC's... apparently they moved the support from e1000 to e1000e. I have spent the last 3 days googleing for info on this problem and have not found a solution. Any recommendations? Should I submit a bug report?
[Code]...
View 12 Replies
View Related
Dec 30, 2010
I've recently installed Proftpd to host for someone for a couple of hours.
With the default config it works however when taken the comments out and edited for anonymous, proftpd fails to start
This is the default config file which works if you have a user and password for my machine, but anonymous wont work (when the comments were removed).
View 1 Replies
View Related
Jan 20, 2010
I'm trying to use Nautilus's connect to server to connect to an ftp server, but I'm having a problem. The username on the ftp server is "anonymous", but it requires a password. When Nautilus sees "anonymous" as the username it assumes it's dealing with a public ftp server and doesn't prompt for a password, and then, of course, I fail to connect.
I've tried modifying the .gtk-bookmarks file to account for this, but this leads to another problem. The password opens with a / and for whatever reason, this leads to Nautilus popping up an error: "Could not connect to ftp://anonymous:0/[rest of password]@[server]". It's adding a "0" to the beginning of my password for some reason. Is there any way to fix this without changing the password?
View 2 Replies
View Related
