vsftpd-prob

buli · 10 Aug. 2006

Moin!
Ich hab SuSE 10.0
Kernel 2.6.13-15
Gnome

Und vsftp 2.0.3-6 installiert.

local_enable=YES
anonymous_enable=NO

Wenn ich mich nun als User einloggen will, bekomm ich die Meldung:

500 OOPS: vsftpd: both local and anonymous access disabled!

Wenn ich nun anonymous an mache (local bleibt auch an) komm ich zwar auf den Server, aber wenn ich mich als User einloggen will, kommt die Meldung:

530 This FTP server is anonymous only.

Wat solln ditte?
local is doch an!

Oder muss ich irgendwo ne User-Liste erstellen?
Ich hab keine User-List gefunden, ausser ftpusers.
Diese verhindert ja den ftp-Zugang, und mein User-Name ist nicht dabei.

Thx 4 antworting!

cero · 10 Aug. 2006

Code:

local_enable 'YES' oder 'NO'
Wenn man hier 'YES' angibt, wird bei einem Login - Namen der in der /etc/passwd existiert, auch das Passwort in der /etc/shadow verwendet. D. h. wenn sich ein User mit einem Usernamen der auf dem System existiert einloggen will, dann musz er auch das dazugehoerige Passwort verwenden.

Ich würde mir einen eigenen User anlegen für FTP und diesem
als Loginshell /bin/false geben. So kann er sich nicht am system
anmelden, aber FTP machen.
Dann musst du unter /etc eine Datei anlegen z.B.: vsftpd.ftpusers und dort die
Usernamen eintragen.
Diese Datei muss dann auch in der vsftpd.conf eingetragen werde:

Code:

userlist_file=/etc/vsftpd.ftpusers

Kannst aber auch einen anderen Namen wählen.

Eine schöne Übersicht findest du hier:
http://strcat.neessen.net/eigenes/vsftp.html

buli · 10 Aug. 2006

cero schrieb:
Code:

. D. h. wenn sich ein User mit einem Usernamen der auf dem System existiert einloggen will, dann musz er auch das dazugehoerige Passwort verwenden.

Is schon klar!
Aber wie gesagt:
Ich bekomm immer die Meldung:
530 This FTP server is anonymous only.

Ich komm ja nichtmal dazu, das pw einzugeben.

cero · 10 Aug. 2006

Hast du auch den Eintrag userlist_file in deiner vsftpd.conf gemacht?

Code:

local_enable=YES
userlist_file=/etc/vsftpd.ftpusers
anonymous_enable=NO

In der angegebenen Datei einfach untereinander die User aufzählen:

Code:

Max
Heinz
...

buli · 10 Aug. 2006

Yup!
Und danach ging garnichts mehr!

cero · 10 Aug. 2006

buli schrieb:
Yup!
Und danach ging garnichts mehr!

Kannst du vielleicht mal deine vsftpd.conf posten?

buli · 10 Aug. 2006

Sischa dat!

# Example config file /etc/vsftpd.conf

#
write_enable=YES

dirmessage_enable=YES

#
nopriv_user=ftpsecure

#
ftpd_banner="Welcome to My FTP service."

#
ls_recurse_enable=YES
.
#
deny_email_enable=YES
#
#banned_email_file=/etc/vsftpd.banned_emails

#
hide_ids=YES
#
local_enable=YES
#
local_umask=022
#
chroot_local_user=YES

chroot_list_enable=YES
#
chroot_list_file=/etc/vsftpd.chroot_list

local_max_rate=7200

anonymous_enable=NO
#
anon_world_readable_only=YES
#
anon_upload_enable=YES
#
anon_umask=022
#
anon_mkdir_write_enable=YES
#
anon_other_write_enable=YES
#
chown_uploads=YES
chown_username=whoever

anon_max_rate=7200

syslog_enable=YES
#
# Uncomment this to log all FTP requests and responses.
#
log_ftp_protocol=YES
#
xferlog_enable=YES
#
vsftpd_log_file=/var/log/vsftpd.log
#
xferlog_std_format=YES
#
xferlog_file=/var/log/xferlog
#
dual_log_enable=YES
#
setproctitle_enable=YES
#
connect_from_port_20=YES
#
idle_session_timeout=600

data_connection_timeout=120

async_abor_enable=YES
#
ascii_upload_enable=YES
scii_download_enable=YES

#
pasv_enable=NO

pam_service_name=vsftpd

listen=YES

Hab was verändert, und nu krieg ich gesagt:

500 OOPS: unrecognised variable in config file: write_enable

cero · 11 Aug. 2006

Da würde ich die gesamte vsftpd.conf mal auf Tippfehler überprüfen.
Z.B muss es heissen:

Code:

ascii_download_enable=YES

write_enable=yes sieht ziemlich richtig aus - komisch.

Ich würde mal nur das Notwendigste aktivieren, testen und Stück für Stück
hinzufügen. Nicht vergessen nach einer Änderung den vsftp-server neu
zu starten.

buli · 11 Aug. 2006

Hier mal xinetd -d :

linux:/etc # xinetd -d
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/chargen [file=/etc/xinetd.conf] [line=26]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/chargen-udp [file=/etc/xinetd.d/chargen-udp] [line=13]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/cups-lpd [file=/etc/xinetd.d/cups-lpd] [line=14]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/daytime [file=/etc/xinetd.d/daytime] [line=11]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/daytime-udp [file=/etc/xinetd.d/daytime-udp] [line=13]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/echo [file=/etc/xinetd.d/echo] [line=14]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/echo-udp [file=/etc/xinetd.d/echo-udp] [line=13]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/fam [file=/etc/xinetd.d/fam] [line=14]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/netstat [file=/etc/xinetd.d/netstat] [line=16]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/rsync [file=/etc/xinetd.d/rsync] [line=16]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/sane-port [file=/etc/xinetd.d/sane-port] [line=12]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/servers [file=/etc/xinetd.d/servers] [line=14]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/services [file=/etc/xinetd.d/services] [line=13]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/systat [file=/etc/xinetd.d/systat] [line=13]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/time [file=/etc/xinetd.d/time] [line=17]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/time-udp [file=/etc/xinetd.d/time-udp] [line=14]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/vnc [file=/etc/xinetd.d/vnc] [line=14]
06/8/11@07:21:48: DEBUG: 6729 {handle_includedir} Reading included configuration file: /etc/xinetd.d/vsftpd [file=/etc/xinetd.d/vsftpd] [line=90]
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing chargen
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing chargen
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing printer
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing daytime
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing daytime
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing echo
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing echo
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing fam
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing netstat
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing rsync
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing sane-port
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing systat
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing time
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing time
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing vnc1
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing vnc2
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing vnc3
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing vnchttpd1
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing vnchttpd2
06/8/11@07:21:48: DEBUG: 6729 {remove_disabled_services} removing vnchttpd3
06/8/11@07:21:48: ERROR: 6729 {builtin_find} No such internal service: servers/stream - DISABLING
06/8/11@07:21:48: ERROR: 6729 {builtin_find} No such internal service: services/stream - DISABLING
Service defaults
Instances = 30
CPS = max conn:50 wait:10
Bind = All addresses.
Only from: All sites
No access: No blocked sites
Logging to file: /var/log/xinetd.log (no limits)
Log_on_success flags = HOST DURATION EXIT
Log_on_failure flags = HOST ATTEMPT

Service configuration: ftp
id = ftp
flags = IPv4
socket_type = stream
Protocol (name,number) = (tcp,6)
port = 21
wait = no
user = 0
Groups = no
PER_SOURCE = -1
Bind = All addresses.
Server = /usr/sbin/vsftpd
Server argv = vsftpd
Only from: All sites
No access: No blocked sites
Logging to common log file
Log_on_success flags = HOST DURATION EXIT
Log_on_failure flags = HOST ATTEMPT

06/8/11@07:21:48: ERROR: 6729 {activate_normal} bind failed (Address already in use (errno = 98)). service = ftp
06/8/11@07:21:48: ERROR: 6729 {cnf_start_services} Service ftp failed to start and is deactivated.
06/8/11@07:21:48: DEBUG: 6729 {cnf_start_services} mask_max = 0, services_started = 0
06/8/11@07:21:48: CRITICAL: 6729 {init_services} no services. Exiting...
linux:/etc # xinetd -d>/home/buli/xine.txt
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/chargen [file=/etc/xinetd.conf] [line=26]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/chargen-udp [file=/etc/xinetd.d/chargen-udp] [line=13]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/cups-lpd [file=/etc/xinetd.d/cups-lpd] [line=14]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/daytime [file=/etc/xinetd.d/daytime] [line=11]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/daytime-udp [file=/etc/xinetd.d/daytime-udp] [line=13]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/echo [file=/etc/xinetd.d/echo] [line=14]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/echo-udp [file=/etc/xinetd.d/echo-udp] [line=13]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/fam [file=/etc/xinetd.d/fam] [line=14]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/netstat [file=/etc/xinetd.d/netstat] [line=16]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/rsync [file=/etc/xinetd.d/rsync] [line=16]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/sane-port [file=/etc/xinetd.d/sane-port] [line=12]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/servers [file=/etc/xinetd.d/servers] [line=14]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/services [file=/etc/xinetd.d/services] [line=13]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/systat [file=/etc/xinetd.d/systat] [line=13]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/time [file=/etc/xinetd.d/time] [line=17]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/time-udp [file=/etc/xinetd.d/time-udp] [line=14]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/vnc [file=/etc/xinetd.d/vnc] [line=14]
06/8/11@07:22:29: DEBUG: 6750 {handle_includedir} Reading included configuration file: /etc/xinetd.d/vsftpd [file=/etc/xinetd.d/vsftpd] [line=90]
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing chargen
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing chargen
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing printer
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing daytime
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing daytime
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing echo
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing echo
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing fam
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing netstat
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing rsync
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing sane-port
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing systat
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing time
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing time
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing vnc1
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing vnc2
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing vnc3
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing vnchttpd1
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing vnchttpd2
06/8/11@07:22:29: DEBUG: 6750 {remove_disabled_services} removing vnchttpd3
06/8/11@07:22:29: ERROR: 6750 {builtin_find} No such internal service: servers/stream - DISABLING
06/8/11@07:22:29: ERROR: 6750 {builtin_find} No such internal service: services/stream - DISABLING
Service defaults
Instances = 30
CPS = max conn:50 wait:10
Bind = All addresses.
Only from: All sites
No access: No blocked sites
Logging to file: /var/log/xinetd.log (no limits)
Log_on_success flags = HOST DURATION EXIT
Log_on_failure flags = HOST ATTEMPT

Service configuration: ftp
id = ftp
flags = IPv4
socket_type = stream
Protocol (name,number) = (tcp,6)
port = 21
wait = no
user = 0
Groups = no
PER_SOURCE = -1
Bind = All addresses.
Server = /usr/sbin/vsftpd
Server argv = vsftpd
Only from: All sites
No access: No blocked sites
Logging to common log file
Log_on_success flags = HOST DURATION EXIT
Log_on_failure flags = HOST ATTEMPT

06/8/11@07:22:29: ERROR: 6750 {activate_normal} bind failed (Address already in use (errno = 98)). service = ftp
06/8/11@07:22:29: ERROR: 6750 {cnf_start_services} Service ftp failed to start and is deactivated.
06/8/11@07:22:29: DEBUG: 6750 {cnf_start_services} mask_max = 0, services_started = 0
06/8/11@07:22:29: CRITICAL: 6750 {init_services} no services. Exiting...

Schneidy · 11 Aug. 2006

Hi,
könnte es daran liegen, dass du

Code:

pam_service_name

eingeschaltet hast?
Wenn mich nicht alles täuscht, brauchst du denn ja nicht wenn du dich mit localen Benutzern anmelden willst.

ich hab bei mir auch vsftpd laufen (nur auf einem Debian).
Hab as ganze mit Virtuellen Usern gemacht. (Da kannst jeden User einzeln konfigurieren)
Als HOWTO hab ich das da verwendet.

http://www.debiansec.com/linux/services/ftp.html

Hab die Konfiguration teils einfach stumpf umkopiert (ich weiß, ist nicht die beste art und weise) :wink:

Läuft aber einwandfrei!

Wenn es dann läuft, kann man „Feintuning“ machen..

Wie oc2pus meinte „mit kleinen Anpassungen, läuft der HOWTO auch unter Suse“..

cero · 11 Aug. 2006

Wenn du vsftpd über xinetd startest, solltest du

Code:

listen=NO

setzen.

buli · 12 Aug. 2006

listen=NO war ne gute Idee!

Thema erledigt, Server läuft!

Thx![/b]

vsftpd-prob

buli

Newbie

cero

Guru

buli

Newbie

cero

Guru

buli

Newbie

cero

Guru

buli

Newbie

cero

Guru

buli

Newbie

Schneidy

Newbie

cero

Guru

buli

Newbie