Re: [Devil-Linux-discuss] vsFTPd FTP server

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

--- Heiko Zuerker <he...@zu...> skrev:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> 
> On Sun, August 13, 2006 12:21, Bjorn wrote:
> > Hi,
> >
> >
> > I've installed DL 1.2.10 and try to configure vsftpd. But I can't
> get
> > users to login. I found some messages in the listarchive regarding
> the same
> > problem but no solution what I could see. The result after an
> attempt to
> > login is: '530 Login incorrect.'
> >
> >
> > Here is what I have done.
> > Create a user:
> >
> >
> > useradd -m -G users,ftp ftptest passwd ftpuser
> >
> > Add the username to /etc/vsftpd.users
> >
> >
> > I've edited the 'default' vsftpd.conf file:
> > anonymous_enable=NO local_enable=YES write_enable=YES
> local_umask=002
> > #anon_upload_enable=YES
> > #anon_mkdir_write_enable=YES
> > dirmessage_enable=YES connect_from_port_20=YES #chown_uploads=YES
> > #chown_username=whoever
> > idle_session_timeout=600 data_connection_timeout=120
> nopriv_user=nobody
> > #async_abor_enable=YES
> > #ascii_upload_enable=YES
> > #ascii_download_enable=YES
> > ftpd_banner=Welcome to this FTP service. #deny_email_enable=YES
> > #banned_email_file=/etc/vsftpd.banned_emails
> > chroot_list_enable=YES chroot_list_file=/etc/vsftpd.chroot_list
> > chroot_local_user=YES #ls_recurse_enable=YES
> > listen=yes text_userdb_names=YES userlist_enable=YES
> userlist_deny=NO
> > userlist_file=/etc/vsftpd.users secure_chroot_dir=/var/empty
> > dual_log_enable=YES xferlog_file=/var/log/vsftpd.log
> xferlog_std_format=YES
> >  xferlog_enable=YES #syslog_enable=YES
> > #ftp_username=nobody
> > check_shell=NO background=YES pam_service_name=vsftpd
> >
> > I read in the mail-archive and on www.vsftpdrocks.org/faq/ that PAM
> > must be configured. Here is my /etc/pam.d/vsftpd:
> >
> > auth     required       pam_listfile.so item=user sense=deny
> > file=/etc/vsftp.users onerr=succeed # Uncomment the following line
> for
> > anonymous ftp. #auth    sufficient     pam_ftp.so
> > auth     required       pam_unix.so auth     required      
> pam_shells.so
> > account  required       pam_unix.so password required      
> pam_unix.so
> > session  required       pam_unix.so
> >
> > Can anyone see what is wrong in my configuration?
> 
> Check our mailinglist archives, I think we had a discussion about
> this
> before.

Yes, I saw that. But did not find any solution. 
However, I have found the problem now. The problem is that
pam_shells.so in /etc/pam.d/vsftpd requires that the users shell is
listed in /etc/shells. In DL 1.2.10 /etc/shells looks like:

root@Devil:/ # cat /etc/shells
/usr/sbin/jk_chrootsh
/usr/bin/scponly
/usr/sbin/scponlyc

So if anyone has this problem, either comment out pam_shells.so line or
set e.g. /usr/bin/scponly as shell for users.

Regards,
Bjorn

> 
> 
> - -- 
> 
> Regards
>   Heiko Zuerker
>   http://www.devil-linux.org
> 
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.4 (GNU/Linux)
> 
> iEYEARECAAYFAkTg0OkACgkQUcytMSbs+YXK9QCdE/MpFA2pNTIcvjVSgu8WPnGc
> aUEAnRWL+itr89YJ64I7w6xz84DHngIA
> =XWYU
> -----END PGP SIGNATURE-----
> 
> 
>
-------------------------------------------------------------------------
> Using Tomcat but need to do more? Need to support web services,
> security?
> Get stuff done quickly with pre-integrated technology to make your
> job easier
> Download IBM WebSphere Application Server v.1.0.1 based on Apache
> Geronimo
>
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
> _______________________________________________
> Devil-linux-discuss mailing list
> Dev...@li...
> https://lists.sourceforge.net/lists/listinfo/devil-linux-discuss
> 