brevig
2004-02-08, 01:40 PM CST
I've just installed proftpd 1.2.9.
I've edited the proftpd.conf file to use testuser (useradd -M testuser) and group testuser instead of nobody because it said that user nobody didn't exist(yet when i tried to create user nobody i couldn't because there was one.)
Then I added a file called "proftpd" to /etc/xinetd.d/
service ftp
{
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/sbin/proftpd
log_on_failure += USERID
disable = no
}
I restarted xinetd then started proftpd
I then tried ftping to localhost but it tells me that
"421 Service not available, remote server has closed connection"
So after i got that i tried ftp'ing to 127.0.0.1 and 192.168.1.100 just to see if it would do the same, It did.
So i looked at iptables --list and it says
"ACCEPT tcp -- anywhere anywhere stat NEW tcp dpt; ftp"
From that I would figure that it would accept ftp connections.
Can anyone offer some help with this?
ProFTPD.CONF FILE BELOW
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.
ServerName "Test Server"
ServerType standalone
DefaultServer on
# Port 21 is the standard FTP port.
Port 21
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd).
MaxInstances 30
# Set the user and group under which the server will run.
User testuser
Group testuser
# To cause every FTP user to be "jailed" (chrooted) into their home
# directory, uncomment this line.
DefaultRoot ~
# Normally, we want files to be overwriteable.
<Directory />
AllowOverwrite on
</Directory>
# A basic anonymous configuration, no upload directories. If you do not
# want anonymous users, simply delete this entire <Anonymous> section.
<Anonymous ~ftp>
<Limit LOGIN>
DenyAll
</Limit>
UseFtpUsers on
RequireValidShell off
User ftp
Group ftp
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous ftp
# Limit the maximum number of anonymous logins
MaxClients 10
# We want 'welcome.msg' displayed at login, and '.message' displayed
# in each newly chdired directory.
DisplayLogin welcome.msg
DisplayFirstChdir .message
# Limit WRITE everywhere in the anonymous chroot
<Limit WRITE>
DenyAll
</Limit>
</Anonymous>
I've edited the proftpd.conf file to use testuser (useradd -M testuser) and group testuser instead of nobody because it said that user nobody didn't exist(yet when i tried to create user nobody i couldn't because there was one.)
Then I added a file called "proftpd" to /etc/xinetd.d/
service ftp
{
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/sbin/proftpd
log_on_failure += USERID
disable = no
}
I restarted xinetd then started proftpd
I then tried ftping to localhost but it tells me that
"421 Service not available, remote server has closed connection"
So after i got that i tried ftp'ing to 127.0.0.1 and 192.168.1.100 just to see if it would do the same, It did.
So i looked at iptables --list and it says
"ACCEPT tcp -- anywhere anywhere stat NEW tcp dpt; ftp"
From that I would figure that it would accept ftp connections.
Can anyone offer some help with this?
ProFTPD.CONF FILE BELOW
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.
ServerName "Test Server"
ServerType standalone
DefaultServer on
# Port 21 is the standard FTP port.
Port 21
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd).
MaxInstances 30
# Set the user and group under which the server will run.
User testuser
Group testuser
# To cause every FTP user to be "jailed" (chrooted) into their home
# directory, uncomment this line.
DefaultRoot ~
# Normally, we want files to be overwriteable.
<Directory />
AllowOverwrite on
</Directory>
# A basic anonymous configuration, no upload directories. If you do not
# want anonymous users, simply delete this entire <Anonymous> section.
<Anonymous ~ftp>
<Limit LOGIN>
DenyAll
</Limit>
UseFtpUsers on
RequireValidShell off
User ftp
Group ftp
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous ftp
# Limit the maximum number of anonymous logins
MaxClients 10
# We want 'welcome.msg' displayed at login, and '.message' displayed
# in each newly chdired directory.
DisplayLogin welcome.msg
DisplayFirstChdir .message
# Limit WRITE everywhere in the anonymous chroot
<Limit WRITE>
DenyAll
</Limit>
</Anonymous>