by Scott Griffit » Mon, 23 Oct 1995 04:00:00
I have asked endless people in the various IRC channels yet
nobody was able to help me. I am not able to connect to my FTP server
from anywhere. Remote or localhost. When I log in, I get a 530 User
access denied. If anyone could give me insights to this problem I would
be much appreciative.
Sincerely,
Scott W. Griffith
by @hwa.co » Tue, 24 Oct 1995 04:00:00
>|> I have asked endless people in the various IRC channels yet
>|> nobody was able to help me. I am not able to connect to my FTP server
>|> from anywhere. Remote or localhost. When I log in, I get a 530 User
>|> access denied. If anyone could give me insights to this problem I would
>a) Is your shell listed in /etc/shells (if not loggin in as
> "anonymous")?
>---
> Bob Hauck Wasatch Communcations Group
by nath » Tue, 24 Oct 1995 04:00:00
this is probably a security hole.Quote:hwa> Hauck) writes:
>> In article
>> server |> from anywhere. Remote or localhost. When I log in, I
>> get a 530 User |> access denied. If anyone could give me insights
>> to this problem I would
/etc/inetd.conf
# See "man 8 inetd" for more information.
#
ftp stream tcp nowait root /usr/sbin/tcpd in.ftpd -A
the -A did the trick for me. Could someone let me know what terrible
things someone could do to me with this set?
(linux 1.2.13, yggdrasil)
nathan
--
Nathan O. Siemers, Ph.D.
Bristol-Myers Squibb Pharmaceutical Research Institute
3005 First Avenue, Seattle, WA 98121
by Jens Glas » Tue, 24 Oct 1995 04:00:00
: I have asked endless people in the various IRC channels yet
: nobody was able to help me. I am not able to connect to my FTP server
: from anywhere. Remote or localhost. When I log in, I get a 530 User
: access denied. If anyone could give me insights to this problem I would
: be much appreciative.
Try setting links for the files /etc/ftpaccess, /etc/ftpusers,
/etc/ftpgroups,/etc/ftpconversions to /usr/local/etc - this helped in
my case. If you don't have these files, read the Anon-FTP-Mini-HOWTO
and generate them yourself.
Hope this works, Jens.
--
Disclaimer: the opinions presented here are mine alone, but they should be
yours too because they're right.
[Me!]
by Scott Griffit » Thu, 26 Oct 1995 04:00:00
> > I have asked endless people in the various IRC channels yet
> >nobody was able to help me. I am not able to connect to my FTP server
> >from anywhere. Remote or localhost. When I log in, I get a 530 User
> >access denied. If anyone could give me insights to this problem I would
> >be much appreciative.
> >Sincerely,
> > Scott W. Griffith
> Hi,
> check that
> a) you have put a copy of /etc/passwd into ~/ftp/etc;
> b) don't have a file /etc/shutmsg (don't know exactly; it's the file
> created once you have done a "ftpshut") - if it exists, delete it;
> c) have set the correct permissions in ~/ftp .
> Feel free to mail me for further information
> Regards
> Michael
> --
> **************************************************************************
> * Our continuing mission: To seek out knowledge of C, to explore strange *
> * UNIX commands and to boldly code where no one has manpage 4... *
I know that this sounds like an trivial problem and all, but I
have files offered on my WWW server that cannot go out either. Most
annoying.
Thanks for your help, it is MUCH appreciated.
Scott Griffith
by Stephen C. Dick » Fri, 27 Oct 1995 04:00:00
scd
303.674.0700 voice
719.520.9092 voice
719.633.8594 fax
____________________________________
by Raj Math » Sat, 04 Nov 1995 04:00:00
c) Did you recently upgrade to Shadow passwords (or downgrade to
non-shadow)?
d) Does your name appear in /etc/ftpusers?
e) Can you login normally using your userID?
f) Can other users ftp using their accounts?
g) Does your sysadmin have a grudge against you?
h) Does on of the hackers/crackers on your machine have a grudge
against you? :-)
I'll post some more as and when I think of them ;)
-- Raj
#include <std_disclaimer.h>
Bob> In article
Bob> have asked endless people in the various IRC channels yet |>
Bob> nobody was able to help me. I am not able to connect to my
Bob> FTP server |> from anywhere. Remote or localhost. When I log
Bob> in, I get a 530 User |> access denied. If anyone could give
Bob> me insights to this problem I would
Bob> a) Is your shell listed in /etc/shells (if not loggin in as
Bob> "anonymous")?
Bod> b) What's in /etc/hosts.allow and /etc/hosts.deny?
--
PGP: C6 3A 1A 93 DE 08 DA 65 / Ph: 91-11-3317583 / Fax: 3317583
It is the mind that moves.
1. Still having the server-to-server ftp problems.
hmm something must be the cause here.
could this be the culprit?
~~~~~~~~~~~~~~~~~~
# rc.conf
tcp_drop_synfin="YES"
tcp_restrict_rst="YES"
icmp_drop_redirect="YES"
~~~~~~~~~~~~~~~~~~
I don't think it's my ipf rules but you can view them below:
#################################################################
# Outside Interface
#################################################################
#----------------------------------------------------------------
# Allow out all TCP, UDP, and ICMP traffic & keep state on it
# so that it's allowed back in.
#----------------------------------------------------------------
pass out quick on xl0 proto tcp from any to any keep state
pass out quick on xl0 proto udp from any to any keep state
pass out quick on xl0 proto icmp from any to any keep state
block out quick on xl0 all
#----------------------------------------------------------------
# Allow bootp traffic in from your ISP's DHCP server only.
# Replace X.X.X.X/32 with your ISP's DHCP server address.
#----------------------------------------------------------------
pass in quick on xl0 proto udp from 24.67.253.195/32 to any port = 68 keep
state
#----------------------------------------------------------------
# Allow incomming ftp connections.
#----------------------------------------------------------------
pass in quick on xl0 proto tcp from any to any port = 719 keep state
#pass in quick on xl0 proto tcp from any to any port = 718 keep state
#----------------------------------------------------------------
# Block and log all remaining traffic coming into the firewall
# - Block TCP with a RST (to make it appear as if the service
# isn't listening)
# - Block UDP with an ICMP Port Unreachable (to make it appear
# as if the service isn't listening)
# - Block all remaining traffic the good 'ol fashioned way
#----------------------------------------------------------------
block return-rst in log quick on xl0 proto tcp from any to any
block return-icmp-as-dest(port-unr) in log quick on xl0 proto udp from any
to any
block in log quick on xl0 all
#################################################################
# Inside Interface
#################################################################
#----------------------------------------------------------------
# Allow out all TCP, UDP, and ICMP traffic & keep state
#----------------------------------------------------------------
pass out quick on rl0 proto tcp from any to any keep state
pass out quick on rl0 proto udp from any to any keep state
pass out quick on rl0 proto icmp from any to any keep state
block out quick on rl0 all
#----------------------------------------------------------------
# Allow in all TCP, UDP, and ICMP traffic & keep state
#----------------------------------------------------------------
pass in quick on rl0 proto tcp from any to any keep state
pass in quick on rl0 proto udp from any to any keep state
pass in quick on rl0 proto icmp from any to any keep state
block in quick on rl0 all
2. demystifying process stack vs. java thread stack on solaris
3. I already RTFM, but am still having problems
5. I am having problems with "fvwm2" or Xwindows
6. fonts on XDM
7. I am having problems with the 3c905 and the 3c509b with RH 5.0
9. I am having a /proc problem.
10. Help I am having OOP problems in Linux
11. SB PNP isa, I am having installation problems.
12. Help: Am I the Only one in the world having problems installing SR5
13. Storage Plus SPL300R kinda works, but I am having a problem