Menu
▾
▴
Re: [Proftpd-user] Hi
|
From: Leutnant S. <chk...@gm...> - 2010-06-07 09:04:39
|
hi ! - check your firewall logs , maybee changes happend there.. is the server behind nat ? - check if premissions are set correct for your home-dir set a higher debug level and check the logs then ...( http://www.proftpd.de/DebugLevel.373.0.html) greetings 2010/6/6 Michael Olszynski <mi...@ol...> > Hello, > > I am nut sure if I am in the right list. I used proftpd for about 2 > years on a debian server. Recently I niticed that I can´t connect anymore. > > Filezilla states: > "Status: Nächsten Versuch abwarten... > Status: Verzögere Verbindungsversuch da der vorherige fehlgeschlagen ist... > Status: Verbinde mit 192.168.1.252:21... > Status: Verbindung hergestellt, warte auf Willkommensnachricht... > Fehler: Zeitüberschreitung der Verbindung > Fehler: Herstellen der Verbindung zum Server fehlgeschlagen" > > and so on and so on. > > proftpd.log in va/log states only open and close of a connection > > "Jun 06 21:08:48 LS-GL7D6 proftpd[1456] 127.0.0.1 > (Workstation[192.168.1.100]): FTP session opened. > Jun 06 21:08:48 LS-GL7D6 proftpd[1456] 127.0.0.1 > (Workstation[192.168.1.100]): FTP session closed. > Jun 06 21:09:13 LS-GL7D6 proftpd[1470] 127.0.0.1 > (Workstation[192.168.1.100]): FTP session opened. > Jun 06 21:09:13 LS-GL7D6 proftpd[1470] 127.0.0.1 > (Workstation[192.168.1.100]): FTP session closed." > > Syslog states only connection: > "Jun 6 20:57:27 localhost proftpd[1216]: connect from 192.168.1.100 > (192.168.1.100) > Jun 6 20:57:53 localhost proftpd[1230]: connect from 192.168.1.100 > (192.168.1.100) > Jun 6 20:58:19 localhost proftpd[1232]: connect from 192.168.1.100 > (192.168.1.100) > Jun 6 21:03:22 localhost proftpd[1367]: connect from 192.168.1.100 > (192.168.1.100) > Jun 6 21:03:48 localhost proftpd[1381]: connect from 192.168.1.100 > (192.168.1.100) > Jun 6 21:04:13 localhost proftpd[1382]: connect from 192.168.1.100 > (192.168.1.100) > Jun 6 21:07:09 localhost proftpd[1442]: connect from 192.168.1.100 > (192.168.1.100) > Jun 6 21:07:35 localhost proftpd[1456]: connect from 192.168.1.100 > (192.168.1.100) > Jun 6 21:08:00 localhost proftpd[1470]: connect from 192.168.1.100 > (192.168.1.100)" > > > And I don´t know anymore what the problem could be. > Does anybody have an idea how to solve the problem? I (think - ... hope > ...) that I didn´t change anything on my server. I tried apt-get remove > and install ... "played" with configs .. but I can´t see any error > message pointing at the problem. > > This is how my proftpd.conf looks like: > > > " > # > # /etc/proftpd/proftpd.conf -- This is a basic ProFTPD configuration file. > # To really apply changes reload proftpd after modifications. > # > > # Includes DSO modules > Include /etc/proftpd/modules.conf > > # Set off to disable IPv6 support which is annoying on IPv4 only boxes. > UseIPv6 on > > ServerName "Debian" > ServerType inetd > DeferWelcome off > > MultilineRFC2228 on > DefaultServer on > ShowSymlinks on > > TimeoutNoTransfer 600 > TimeoutStalled 600 > TimeoutIdle 1200 > > DisplayLogin welcome.msg > DisplayFirstChdir .message > ListOptions "-l" > > DenyFilter \*.*/ > > # Port 21 is the standard FTP port. > Port 21 > > # In some cases you have to specify passive ports range to by-pass > # firewall limitations. Ephemeral ports can be used for that, but > # feel free to use a more narrow range. > # PassivePorts 49152 65534 > > # To prevent DoS attacks, set the maximum number of child processes > # to 30. If you need to allow more than 30 concurrent connections > # at once, simply increase this value. Note that this ONLY works > # in standalone mode, in inetd mode you should use an inetd server > # that allows you to limit maximum number of processes per service > # (such as xinetd) > MaxInstances 30 > > # Set the user and group that the server normally runs at. > User proftpd > Group nogroup > > # Umask 022 is a good standard umask to prevent new files and dirs > # (second parm) from being group and world writable. > Umask 022 022 > # Normally, we want files to be overwriteable. > AllowOverwrite on > > # Uncomment this if you are using NIS or LDAP to retrieve passwords: > # PersistentPasswd off > > # Be warned: use of this directive impacts CPU average load! > # > # Uncomment this if you like to see progress and transfer rate with ftpwho > # in downloads. That is not needed for uploads rates. > # UseSendFile off > > TransferLog /var/log/proftpd/xferlog > SystemLog /var/log/proftpd/proftpd.log > > <IfModule mod_tls.c> > TLSEngine off > </IfModule> > > <IfModule mod_quota.c> > QuotaEngine on > </IfModule> > > <IfModule mod_ratio.c> > Ratios on > </IfModule> > > > # Delay engine reduces impact of the so-called Timing Attack described in > # http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02 > # It is on by default. > <IfModule mod_delay.c> > DelayEngine on > </IfModule> > > <IfModule mod_ctrls.c> > ControlsEngine on > ControlsMaxClients 2 > ControlsLog /var/log/proftpd/controls.log > ControlsInterval 5 > ControlsSocket /var/run/proftpd/proftpd.sock > </IfModule> > > <IfModule mod_ctrls_admin.c> > AdminControlsEngine on > </IfModule> > > # A basic anonymous configuration, no upload directories. > > # <Anonymous ~ftp> > # User ftp > # Group nogroup > # # We want clients to be able to login with "anonymous" as well as "ftp" > # UserAlias anonymous ftp > # # Cosmetic changes, all files belongs to ftp user > # DirFakeUser on ftp > # DirFakeGroup on ftp > # > # RequireValidShell off > # > # # Limit the maximum number of anonymous logins > # MaxClients 10 > # > # # We want 'welcome.msg' displayed at login, and '.message' displayed > # # in each newly chdired directory. > # DisplayLogin welcome.msg > # DisplayFirstChdir .message > # > # # Limit WRITE everywhere in the anonymous chroot > # <Directory *> > # <Limit WRITE> > # DenyAll > # </Limit> > # </Directory> > # > # # Uncomment this if you're brave. > # # <Directory incoming> > # # # Umask 022 is a good standard umask to prevent new files and dirs > # # # (second parm) from being group and world writable. > # # Umask 022 022 > # # <Limit READ WRITE> > # # DenyAll > # # </Limit> > # # <Limit STOR> > # # AllowAll > # # </Limit> > # # </Directory> > # > # </Anonymous> > <Global> > DefaultRoot /mnt/disk1/share > AllowRetrieveRestart on > RequireValidShell off > <Limit LOGIN> > AllowGroup ftp_users > DenyAll > </Limit> > <Directory /mnt/disk1/share/> > <Limit WRITE> > DenyAll > </Limit> > </Directory> > > <Directory /mnt/disk1/share/upload> > <Limit WRITE> > AllowAll > </Limit> > </Directory> > </Global> > > > > " > > > ------------------------------------------------------------------------------ > ThinkGeek and WIRED's GeekDad team up for the Ultimate > GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the > lucky parental unit. See the prize list and enter to win: > http://p.sf.net/sfu/thinkgeek-promo > _______________________________________________ > ProFTPD Users List <pro...@pr...> > Unsubscribe problems? > http://www.proftpd.org/list-unsub.html -- please don't send me word - documents ( http://www.gnu.org/philosophy/no-word-attachments.html) |