From owner-wu-ftpd@wugate.wustl.edu Fri Aug 1 03:11:06 1997

From [email protected] Fri Aug 1 03:11:06 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA03475;
Fri, 1 Aug 1997 03:02:21 -0500 (CDT)
Received: from igate.elsag.it (igate.elsag.it [194.243.48.130])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id CAA13925
for <[email protected]>; Fri, 1 Aug 1997 02:57:34 -0500 (CDT)
Received: (from mail@localhost) by igate.elsag.it (8.7/8.7) id JAA00367 for <[email protected]>; Fri, 1 Aug 1997 09:47:52 +0100 (WET DST)
Received: from mailhub.elsag.it(151.89.200.101) by igate.elsag.it via smap (V1.3)
id sma000343; Fri Aug 1 09:47:37 1997
Received: from exchange.elsag.it (exchange.elsag.it [151.89.200.111]) by mailhub.elsag.it (8.7/8.7) with ESMTP id JAA04334 for <[email protected]>; Fri, 1 Aug 1997 09:52:24 +0200 (MET DST)
Received: by exchange.elsag.it with Internet Mail Service (5.0.1458.49)
id <PNH1X8S5>; Fri, 1 Aug 1997 09:53:33 +0200
Message-Id: <0136248C9DC2CF11A50D0020AF6C7E252C2D5E@GSP-SVR1>
Date: Fri, 1 Aug 1997 09:48:46 +0200
Reply-To: [email protected]
Sender: [email protected]
From: Del Pero Alberto <[email protected]>
To: [email protected]
Subject: wu-ftpd interoperability with IBM mainframe client
MIME-Version: 1.0
Content-Type: text/plain
X-Authentication-Warning: igate.elsag.it: mail set sender to <[email protected]> using -f
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1458.49)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

We are considering the possibilty of using WU-FTP beta13 on a DEC
Alpha UNIX (4.0b) platform.
We would like to know whether this version of WU-FTP software has been
tested for interoperability against other RFC 959 conformant client
implementations from various hardware vendors (e.g. DEC, Hp, Sun, IBM,
etc).
If it is so please let us know of any vendor products (and platforms)
where interoperability exists or about any problems you experienced or
you heard about.
Particularly we are interested in interoperability against IBM mainframe
client FTP implementation, which is now available along with IBM TCP/IP
stack for MVS platforms.

Thanks!
Alberto
___________________________________
Ing. Del Pero Alberto
Elsag Bailey - Grandi Sistemi Postali
V. Puccini 2 - 16154 Genova Italy.
Tel +39 10 658 3627 Fax +39 10 658 2865
[email protected]

From [email protected] Fri Aug 1 08:14:55 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA04658;
Fri, 1 Aug 1997 08:07:38 -0500 (CDT)
Received: from pizza.hvu.nl ([email protected] [145.89.234.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA22866
for <[email protected]>; Fri, 1 Aug 1997 08:03:02 -0500 (CDT)
Received: (from koos@localhost) by pizza.hvu.nl (8.8.6/KH19970721 (dbm++)) id PAA20297 for [email protected]; Fri, 1 Aug 1997 15:03:01 +0200 (MET DST)
Message-Id: <[email protected]>
Date: Fri, 1 Aug 1997 15:03:01 +0200 (MET DST)
Reply-To: [email protected]
Sender: [email protected]
From: Koos van den Hout _U nix and we all_ <[email protected]>
To: [email protected]
Subject: Contents of wu-ftpd FAQ
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

* Contents of the FAQ file for wu-ftpd. The complete file can be found at
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
Or, send mail to [email protected] with as subject "send faq"
(without the quotes, body ignored).

THE_URL:file://localhost/home/staff/koos/wu-ftpd-faq/wu-ftpd-faq.contents.html
1. Contents of this FAQ
1. Contents of this FAQ
2. What is this document
3. What is wu-ftpd itself and this mailing list in particular ?
1. How do I subscribe/unsubscribe ?
2. Is this list archived anywhere ?
3. What are related documents ?
4. Where do I get the wu-ftpd ?
1. Where do I get the updated version ?
5. Compiling the wu-ftpd
1. cc complains about strunames, typenames, modenames, ..
being undeclared.
2. wu-ftpd doesn't 'see' that users are in multiple groups.
3. wu-ftpd doesn't use the shadow passwords on my Linux
machine.
4. It doesn't compile at all on newer Linux installs. The
error is :
5. I need to use S/KEY authorisation
6. I need to authenticate real users via AFS
7. The timezone in the xferlog is wrong
8. The timezone in the ls output is wrong
9. Digital Unix doesn't log commands after an anonymous
user logs in
10. install fails with 'install: ..'
11. Digital Unix (The Unix Formerly Known As OSF/1) and
Enhanced C2 security,
12. It doesn't compile at all on Digital Unix, errors about
struct timeval
13. What should I do to be able to use wu-ftpd in a HP-UX
10.01
6. Installing the wu-ftpd
1. Command-line options for wu-ftpd
2. Testing on a different port number then ftp
7. The ftpaccess file
1. Some files (banners, etc) don't get shown to anonymous
users.
2. What is the exact format of the <times> parameter in the
"limit"
8. Programs (ls, gzip, tar) work for real users, not for
anonymous users, giving errors like 425 Can't create data
socket (0.0.0.0,20): Bad file number or simply no output.
1. Solaris
2. Building a statically linked ls for Solaris fails
3. Linux
4. Dec OSF
5. SunOS4.1.x
6. AIX
7. IRIX (6.2)
8. It worked, until I upgraded the operating system.
9. Running wu-ftpd
1. ftpd allways says "221 Server shutting down. Goodbye."
2. Anonymous ftp works fine, but real users are denied
access
3. ftpconversions doesn't work
4. On-the-fly compression works, on-the-fly tarring, but
not both.
5. I want to use zip compression (InfoZip)
6. I want a real user to be able to access the host only
via ftp, not via telnet
7. Somebody uploaded a file with a weird name
8. I want anonymous users to be able to upload files, but
in the most secure manner possible
9. The default umask used when a real user uploads a file
is wrong
10. I heard something about 'SITE EXEC' having a security
hole
11. How do I make reports more readable ?
12. Incoming file transfers fail with SunOS and an NFS
mounted incoming
13. Normal ftp clients work, Netscape ftp's fail. So,
passive mode doesn't work.
14. I want to redirect anonymous users to another machine
10. Other things
1. Where is the FTP protocol documented ?
2. How can I make my ftp-archive accessible by E-mail
(ftpmail) ?
11. Credits

---------------------------------------------------------------------------

From [email protected] Fri Aug 1 10:06:09 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA13778;
Fri, 1 Aug 1997 09:59:37 -0500 (CDT)
Received: from o2.towery.com (ws-30.towery.com [207.15.173.30])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA05944
for <[email protected]>; Fri, 1 Aug 1997 09:54:41 -0500 (CDT)
Received: from o2 (localhost [127.0.0.1]) by o2.towery.com (950413.SGI.8.6.12/950213.SGI.AUTOCF) via SMTP id JAA03978 for <[email protected]>; Fri, 1 Aug 1997 09:48:15 -0500
Message-Id: <[email protected]>
Date: Fri, 01 Aug 1997 09:48:15 -0500
Reply-To: [email protected]
Sender: [email protected]
From: Ernest Mueller <[email protected]>
To: [email protected]
Subject: wu-fptd 2.4.2. beta 13 under IRIX 6.3 Part 2
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 3.01SGoldC-SGI (X11; I; IRIX 6.3 IP32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Just to follow up on my earlier post, I compiled with -DVIRTUAL, set up
an ip alias in /etc/config/ipaliases.options, and rebooted and the
virtual ftp server stuff started working perfectly, as best as I can
determine. So I can happily vouch for the full functionality of this
version of wuftpd under IRIX 6.3 - hasn't been stress tested yet, but
should be soon once I load it to our production box.

Ernest
--
Ernest C. Mueller [email protected]
Webmaster Phone: (901) 251-7000
Towery Publishing http://www.towery.com

From [email protected] Fri Aug 1 10:32:54 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA21826;
Fri, 1 Aug 1997 10:25:32 -0500 (CDT)
Received: from mailer.sagar.gob.mx (mailer.sagar.gob.mx [198.139.10.39])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA21119
for <[email protected]>; Fri, 1 Aug 1997 10:21:43 -0500 (CDT)
Received: from silvia.sagar.gob.mx by mailer.sagar.gob.mx (SMI-8.6/SMI-SVR4)
id KAA15293; Fri, 1 Aug 1997 10:19:36 -0600
Message-Id: <[email protected]>
Date: Fri, 01 Aug 1997 10:24:52 -0600
Reply-To: [email protected]
Sender: [email protected]
From: "Ing. Silvia Beltr�n S." <[email protected]>
To: [email protected]
Subject: users
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.01 [en] (Win95; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Dear Managers,
I want to permit some users access like anonymous-users. I added the
line "cea:x:Ftp
user:4000:103:/services/ftpadm/ftp/./incoming/CEA:/etc/ftponly" in the
/etc/passwd, but when the user come in he can see all the structure!!!
Does somebody know the correct configuration ?

Regards
Silvia.

From [email protected] Fri Aug 1 12:52:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA24293;
Fri, 1 Aug 1997 12:45:01 -0500 (CDT)
Received: from scol.sco.com (scol.london.sco.COM [150.126.1.48])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA28578
for <[email protected]>; Fri, 1 Aug 1997 12:43:48 -0500 (CDT)
Received: from tyne.london.sco.com by scol.sco.COM id aa10425;
1 Aug 97 18:39 BST
Message-Id: <[email protected]>
Date: Fri, 1 Aug 97 18:38:53 BST
Reply-To: [email protected]
Sender: [email protected]
From: Ian Willis <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: Wild card (*) problems under SCO Unixware 2.1
X-Mailer: SCO OpenServer Mail Release 5.0
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I traced the problem you are seeing to readdir() in glob.c, because
of the link line readdir() from /usr/ucblib/libucb.a is being picked
up rather than the one from libc. This causes problems as the SysV
#include files are being used then the binary is being linked against
libucb.

The fix, which I will submit to [email protected] is in
src/makefiles/Makefile.uxw, add -lc before -lucb in the LIBES line.

Ian Willis
SCO Internet Engineering Group, Watford, UK

From [email protected] Fri Aug 1 13:35:08 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA32513;
Fri, 1 Aug 1997 13:28:40 -0500 (CDT)
Received: from mailer.sagar.gob.mx (mailer.sagar.gob.mx [198.139.10.39])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA30470
for <[email protected]>; Fri, 1 Aug 1997 13:27:45 -0500 (CDT)
Received: from silvia.sagar.gob.mx by mailer.sagar.gob.mx (SMI-8.6/SMI-SVR4)
id NAA16404; Fri, 1 Aug 1997 13:24:48 -0600
Message-Id: <[email protected]>
Date: Fri, 01 Aug 1997 13:30:07 -0600
Reply-To: [email protected]
Sender: [email protected]
From: "Ing. Silvia Beltr�n S." <[email protected]>
To: [email protected]
Subject: Summary: users in ftpgroup
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.01 [en] (Win95; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Managers,
I sent you the next summary, thanks for all the nice people that helped
me.
Regards.
Silvia.
***********************************
Problem:
I want to permit some users access like anonymous-users. I added the
line
"cea:x:Ftp:user:4000:103:/services/ftpadm/ftp/./incoming/CEA:/etc/ftponly"
in the
/etc/passwd, but when the user come in he can see all the structure!
Answer:
Add the user "user" to a special "group". Then you've to add the group
to the "ftpaccess" as a guestgroup ("guestgroup group").
From:
Philip Hallstrom <[email protected]>
[email protected] (Stefan Jockusch)

From [email protected] Fri Aug 1 16:33:59 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA07914;
Fri, 1 Aug 1997 16:27:40 -0500 (CDT)
Received: from kcgw1.att.com (kcgw1.att.com [192.128.133.151])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA08267
for <[email protected]>; Fri, 1 Aug 1997 16:19:56 -0500 (CDT)
Received: from lynxhub.lz.att.com by kcig1.att.att.com (SMI-8.6/EMS-1.2 sol2)
id QAA25321; Fri, 1 Aug 1997 16:10:56 -0500
Received: by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA03840; Fri, 1 Aug 1997 17:17:41 -0400
Message-Id: <[email protected]>
Date: Fri, 1 Aug 1997 17:17:41 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected] (ftp archive)
Subject: Beta 13 and Pro*C + Oracle
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Folks,
I have updated both 2.4 and now beta 13 with some Pro*C code that
makes connections to Oracle7.3 for some authentication. 2.4 works
fine. With Beta13 everything compiles fine, but when I try and make
the connection to Oracle the connection fails. The data being passed
look identical in the two releases. I'm running in Irix 6.2. Has
anyone come across compile options, defines etc that may be needed in
Beta 13. Many hours have been spent comparing code and verifying the
connection to oracle with stand alone programs without being able to
figure out whats causing the failure when compiled with Beta 13.

Any help would be greatly appreciated.

Doug C

--
Doug Courtney
[email protected]
(732)576-5572

From [email protected] Fri Aug 1 16:39:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA13342;
Fri, 1 Aug 1997 16:33:29 -0500 (CDT)
Received: from lisa.compulink.on.ca ([email protected] [205.233.4.205])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA16732
for <[email protected]>; Fri, 1 Aug 1997 16:28:10 -0500 (CDT)
Received: (from jolly@localhost) by lisa.compulink.on.ca (8.7.5/8.6.9) id RAA03767; Fri, 1 Aug 1997 17:32:59 -0300
Message-Id: <[email protected]>
Date: Fri, 1 Aug 1997 17:32:58 -0300 (ADT)
Reply-To: [email protected]
Sender: [email protected]
From: Dave Jolly <[email protected]>
To: [email protected]
Subject: Question.
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Question...

Is there any way to setup wu-ftpd to act like it does in
annonymous mode but for regular users?

ie. I don't want my users to go "cd .." from their home directory and
get to the root.

Can I do this? Or will it need code modifications?

Thanx

-=Dave Jolly

From [email protected] Fri Aug 1 16:58:47 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA22237;
Fri, 1 Aug 1997 16:52:06 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA10699
for <[email protected]>; Fri, 1 Aug 1997 16:48:43 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.6/8.8.6) with SMTP id QAA16173;
Fri, 1 Aug 1997 16:48:37 -0500
Message-Id: <[email protected]>
Date: Fri, 1 Aug 1997 16:48:37 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: Dave Jolly <[email protected]>
Cc: [email protected]
Subject: Re: Question.
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Extremely FAQ; guest ftp; see below.

-- Michael

On Fri, 1 Aug 1997, Dave Jolly wrote:

> Is there any way to setup wu-ftpd to act like it does in
> annonymous mode but for regular users?
>
> ie. I don't want my users to go "cd .." from their home directory and
> get to the root.

This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.

ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-13.tar.Z

wu-ftpd FAQ: http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to [email protected]
with a subject line: send faq

guest howto: ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "[email protected]"
(immediate autoresponder; subject does not matter)

wu-ftpd Resource Center: http://www.landfield.com/wu-ftpd/
wu-ftpd list archive: http://www.landfield.com/wu-ftpd/mail-archive/

There are additional security references in the above docs.

From [email protected] Fri Aug 1 20:05:54 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA02399;
Fri, 1 Aug 1997 19:59:33 -0500 (CDT)
Received: from ns.wzrd.com ([email protected] [206.99.165.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA04429
for <[email protected]>; Fri, 1 Aug 1997 19:58:35 -0500 (CDT)
Received: from localhost (potatoe@localhost) by ns.wzrd.com (8.8.5/8.7.3) with SMTP id VAA28834; Fri, 1 Aug 1997 21:04:02 -0400 (EDT)
Message-Id: <[email protected]>
Date: Fri, 1 Aug 1997 21:04:01 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Robert Glover <[email protected]>
To: Wade Anthony Wegner <[email protected]>
Cc: [email protected], [email protected]
Subject: Re: wu-ftpd on linux..
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

all i do is build lnx... wait, i gotta edit the Makefile.lnx and
config.lnx to support shadow passwd support... no probs at all.

-Rob

On Thu, 31 Jul 1997, Wade Anthony Wegner wrote:

> To any and all linux users -
>
> Are there any special setups needed to build wu_ftpd on a linux system?
> Even though there was the ./build lnx option, it didn't seems as if the
> makefiles new where to search for certain librarys, and I wasn't able to
> figure out where certain things were.
>
> If anyone has had problems with setting up wu_ftpd on linux and discovered
> anything, I would really appreciate some input. I'm at a loss as to what
> I should do.
>
> Thanks,
>
> - Wade
>
> --------------------------------------------------------------------------
> Wade Wegner [email protected]
> UNIX Administrator Office Phone: (217) 265-0373
> 321F Talbot Lab Home Phone: (217) 344-5584
> 104 S. Wright Street Fax: (217) 244-0720
> Urbana, IL 61801 http://www2.aae.uiuc.edu/~wwegner
>

From [email protected] Fri Aug 1 20:11:43 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA02573;
Fri, 1 Aug 1997 20:05:33 -0500 (CDT)
Received: from ostra.inf.unitau.br ([200.136.194.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA03724
for <[email protected]>; Fri, 1 Aug 1997 19:59:45 -0500 (CDT)
Received: by ostra.inf.unitau.br (5.65v3.2/1.1.10.5/19May97-1220PM)
id AA04320; Fri, 1 Aug 1997 21:59:35 -0400
Message-Id: <[email protected]>
Date: Fri, 1 Aug 1997 21:59:35 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Antonio Montes <[email protected]>
To: [email protected]
Subject: Trying again: %N doesn't work.
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Content-Md5: OE5QWg5eRLHY0HXxK2LBTw==
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,

Everytime someone ftp to my machine I want it to display a message with the present number of
users logged in (%N) but instead of the actual number it always displays -1 !?!?!?
Any ideas why wu-ftp is it doing this?

Antonio

From [email protected] Fri Aug 1 20:16:29 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA22362;
Fri, 1 Aug 1997 20:10:06 -0500 (CDT)
Received: from ns.wzrd.com ([email protected] [206.99.165.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id UAA00487
for <[email protected]>; Fri, 1 Aug 1997 20:02:04 -0500 (CDT)
Received: from localhost (potatoe@localhost) by ns.wzrd.com (8.8.5/8.7.3) with SMTP id VAA29190 for <[email protected]>; Fri, 1 Aug 1997 21:07:37 -0400 (EDT)
Message-Id: <[email protected]>
Date: Fri, 1 Aug 1997 21:07:37 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Robert Glover <[email protected]>
To: [email protected]
Subject: Alternate log?
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I want to know if I can alter the file wu-ftpd-beta13 logs too. currently,
it spits out all logins, activity, etc etc to /var/log/messages
<syslogd>... I wnt it to just spit out to /var/log/ftplog or something...
is this possible??

-Rob

From [email protected] Sat Aug 2 02:38:41 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA06718;
Sat, 2 Aug 1997 02:31:14 -0500 (CDT)
Received: from pizza.hvu.nl ([email protected] [145.89.234.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id CAA10357
for <[email protected]>; Sat, 2 Aug 1997 02:30:40 -0500 (CDT)
Received: (from koos@localhost) by pizza.hvu.nl (8.8.6/KH19970721 (dbm++)) id JAA23940; Sat, 2 Aug 1997 09:30:30 +0200 (MET DST)
Message-Id: <[email protected]>
Date: Sat, 2 Aug 1997 09:30:30 +0200 (MET DST)
Reply-To: [email protected]
Sender: [email protected]
From: Koos van den Hout _U nix and we all_ <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: Trying again: %N doesn't work.
In-Reply-To: <[email protected]> from Antonio Montes at "Aug 1, 97 09:59:35 pm"
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Zen: Ommmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm
X-Files: the truth is out there
X-I-Am-Not-Simes: undecided
X-Mailer: ELM [version 2.4ME+ PL31H (25)]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Quoting Antonio Montes, who wrote :

> Everytime someone ftp to my machine I want it to display a message with the present number of
> users logged in (%N) but instead of the actual number it always displays -1 !?!?!?
> Any ideas why wu-ftp is it doing this?

Sounds like the path for storing the pid files isn't available. Check the
h files of wu-ftpd for what that path is.

Koos van den Hout

--
Koos van den Hout, Internetter, Unix freak, ISFJ and BBS SysOp at large
[email protected] (Work) <-- finger -l for PGPkey Fax: +31-30-2586290
[email protected] (Home) Workphone: +31-30-2586287
http://www.cetis.hvu.nl/~koos/ Looking for a license plate with "RFC 822"
Microsoft thinks "open systems" means they can leave out security.

From [email protected] Sun Aug 3 16:50:32 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA27417;
Sun, 3 Aug 1997 16:45:06 -0500 (CDT)
Received: from news.IAEhv.nl ([email protected] [194.151.64.4])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA29993
for <[email protected]>; Sun, 3 Aug 1997 16:38:35 -0500 (CDT)
Received: from LOCAL (uucp@localhost)
by news.IAEhv.nl (8.6.13/1.63) with IAEhv.nl; pid 6895
on Sun, 3 Aug 1997 21:38:26 GMT; id VAA06895
efrom: [email protected]; eto: [email protected]
Received: (from news@localhost)
by Garfield.IAEhv.nl (8.8.6/8.8.5) id XAA06540;
Sun, 3 Aug 1997 23:00:14 +0200
Message-Id: <[email protected]>
Date: 3 Aug 1997 21:00:14 GMT
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: Re: Alternate log?
References: <[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 8bit
X-Sender: Perry Rovers <[email protected]>
X-no-archive: yes
X-bofh-archive: yes
X-Newsreader: TIN [UNIX 1.3 unoff BETA 970324; i586 Linux 2.0.28]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Pink elephants with an attitude inspired Robert Glover <[email protected]> to tell garfield.mail.wu-ftpd:
: I want to know if I can alter the file wu-ftpd-beta13 logs too. currently,
: it spits out all logins, activity, etc etc to /var/log/messages
: <syslogd>... I wnt it to just spit out to /var/log/ftplog or something...
: is this possible??

depending on your OS you could put something like
ftp.* /var/log/ftplog
in syslog.conf, but that is quite OS dependent.

--
Perry Rovers ([email protected])

From [email protected] Mon Aug 4 01:06:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id BAA23152;
Mon, 4 Aug 1997 01:00:29 -0500 (CDT)
Received: from owlman.academ.com ([email protected] [198.137.249.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id AAA27586
for <[email protected]>; Mon, 4 Aug 1997 00:53:53 -0500 (CDT)
Received: (from sob@localhost)
by owlman.academ.com (8.8.5/8.8.5) id AAA05173
for [email protected]; Mon, 4 Aug 1997 00:53:42 -0500 (CDT)
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 00:53:42 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Stan Barber)
To: [email protected]
Subject: Latest CLOSED-TICKETS from beta 14 (not here yet)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

CLOSED-TICKETS (BETA 14)

This note contains a summary of all tickets closed before the release of beta
14. Most of these were not bug reports. Some are questions that were
answered in the documentation or the various FAQs. Some were bug reports
about previous beta releases that have already been fixed in the latest
beta (13). A few were complaints about some fundamental design decisions
made when wu-ftpd was created. Some were questions I did answer and have
closed. Some were notes about successful compliations of beta 13 or beta 12
on platforms to which I have not access. Some were offers of patches that
never materialized.

In any case, they are all closed. They are not relevant to beta 14 or any
future release. If you don't see that your ticket number is mentioned here
and it was not mentioned as being a closed ticket or bug fix in the beta 13
distribution, you should assume it is open. Some of these open tickets will
be closed as bug fixes. A few will remain open as they are feature
enhancements. These feature enhancements will be discussed on this list
when I am ready to start outlining the details of release 2.5.

------------------------------------------------------------------------------
Ticket 7 from Fredrik Nyman <[email protected]> concerns problems
making the ftpaccess file work on IRIX 5.3. I can't reproduce this since
I don't have access to IRIX and other who do don't report this as being
a problem. My guess is that there is no "-a" at the end of the /etc/inetd.conf
line for starting ftpd. [I should have closed this sooner, but didn't.]
------------------------------------------------------------------------------
Ticket 9 from Frank Jacquette <[email protected]> reports a problem
compiling 2.4.2 on AIX. This problem is known to have been addressed on or
before beta 13 so this ticket is closed.
------------------------------------------------------------------------------
Ticket 39 from Nathan Neulinger <[email protected]> concerns a problem
with signal 10 aborts on HP/UX. I believe this problem was fixed in beta 13.
I am closing this ticket since I can't reproduce his problem without access
to HP/UX.
------------------------------------------------------------------------------
Ticket 48 from Scott Mulligan <[email protected]> was a request to
talk to me about something. We never made contact. He didn't acknowledge
my followup message. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 68 from <[email protected]> was not a bug report but a request for
more assistance in understanding how virtual ftp support works on wu-ftpd.
This ticket is closed since it is not a bug report.
------------------------------------------------------------------------------
Ticket 99 from Becki Kain <[email protected]> offered some
suggeestions for the configuration of wu-ftpd on Digital Unix. These changes
were already included in beta 13. This ticket is closed.
------------------------------------------------------------------------------
Ticket 101 from Ian Willis <[email protected]> askes about the use of "user@" and
"user@host" conventions for anonymous ftp. This is not a bug report.
------------------------------------------------------------------------------
Ticket 116 from James Ford <[email protected]> offers to compile wu-ftpd
on some AIX machines. This is not a bug report. However, I would welcome
any reports concerning AIX compliations.
------------------------------------------------------------------------------
Tickets 127, 171 & 240 from Becki Kain <[email protected]> offers to
compile wu-ftpd on Digital Unix 4.0. This is not a bug report. However, I
would welcome any reports concerning Digital Unix compliations. So, Becki,
go ahead and compile away. Send me a report after you do it.
------------------------------------------------------------------------------
Ticket 128 from Bernhard Rosenkraenzer <[email protected]> reports
that ftpaccess is not being seen on Linux. However, he does not provide
any information concerning the /etc/inetd.conf line for starting ftpd.
Since I can't reproduce this bug on Linux, this ticket is closed.
------------------------------------------------------------------------------
Ticket 144 from Andrew Ford <[email protected]> reported a bug in
beta-11 that I can't produce in beta 13. It concerned the use of the dirs
and nodirs option in different upload commands in the ftpaccess file. He
said that they interfered with each other. Since I can't produce it in
beta 13, this ticket is closed.
------------------------------------------------------------------------------
Ticket 148 from Ian Willis <[email protected]> suggested a modification for Beta 12
that was already added, but I apparently didn't notice his ticket until this
go round. Since this issue has been addressed, the ticket is closed. [The
change was specific for SCO 5 and concerned defining SIGURG as SIGUSR1.]
------------------------------------------------------------------------------
Ticket 150 from [email protected] offers to compile wu-ftpd
on some AIX machines. This is not a bug report. However, I would welcome
any reports concerning AIX compliations.
------------------------------------------------------------------------------
Ticket 151 from [email protected] (Marek Michalkiewicz)
reported a bug in Virtual Root processing that has been fixed prior to beta
14 release. The bug in attempting to reuse space allocated to pw->pw-dir
instead of freeing and resizing it to a size that can hold the virtual root
directory. This ticket is closed.
------------------------------------------------------------------------------
Ticket 176 from Danielle Hopkins <[email protected]> report that
compiling beta 12 on Digital Unix 3.2 with enhanced security is not working.
I believe this issue was resolved in beta 13.
------------------------------------------------------------------------------
Ticket 198 from Ian Willis <[email protected]> suggested a modification for Beta 12
concering the form of the ps command used in ftpwho and ftpcount. Since I
reversed the change in beta-13, the problem that this addresses no longer
exists. This ticket is closed.
------------------------------------------------------------------------------
Ticket 199 from Roman Gnatenko <[email protected]> reported that "cd ~" did not
work in version 2.4. It does work fine in beta-13, so this ticket is closed.
------------------------------------------------------------------------------
Ticket 200 from Alvaro Fdez Lago <[email protected]> reports
success building beta-12 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 202 from Andrew Maltsev <[email protected]> reported the duplicate printf
selector when a bad shell reply was going to be made. This was fixed before
beta-14 and is now closed.
------------------------------------------------------------------------------
Ticket 213 from Randall J. Wormser <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 224 from Michael Eisele <[email protected]> and 293 from
Gary Mills <[email protected]> reported a problem with an extra %s in a
printf that was in beta 12 but fixed in beta 13. This ticket is closed.
------------------------------------------------------------------------------
Ticket 230 from Jon Madison <[email protected]> reports successful compilation
of beta 12 on IRIX 6.2 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 245 from Kevin Hoffer <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 258 from Michael E Quan <[email protected]> appears to be another
person who didn't read the NOTES file concerning the use of "-a" in
/etc/inetd.conf in order to get ftpd to use the ftpaccess file and the
various enhancements.
------------------------------------------------------------------------------
Ticket 259 from <[email protected]> appears to be another person who didn't
read the NOTES file concerning the use of "-a" in /etc/inetd.conf in order
to get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 261 from Jon Madison <[email protected]> reports successful complilation
of beta 13 on IRIX 6.2 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 268 from Andrew R. Orndorff <[email protected]>
offered some patches for AIX, but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 273 from Usuario-Moisis <[email protected]> wants to know how
to use BISON in place of YACC on AIX. I don't know. I have to close this
ticket. Maybe someone else can help him.
------------------------------------------------------------------------------
Ticket 278 from Ignacio de Cordoba <[email protected]> is having problems
getting "ls" and "dir" to work, which is a common problem that usually
involves properly setting up the environment. It is not a wu-ftpd problem.
------------------------------------------------------------------------------
Ticket 280 from Hannu Laurila <[email protected]> illustrates a common
misconception about the use of a dash as the first character in a password.
This is a feature to turn off extended messages. If the user has a dash as the
first character of his/her password, then that dash must be preceeded with
another dash as an "escape" character to insure that the password is correctly
understood. This ticket is closed.
------------------------------------------------------------------------------
Ticket 291 from Sergio Javier Klarreich <[email protected]> appeared to
just be a pleasant greeting. It does not appear to report a bug report.
------------------------------------------------------------------------------
Ticket 296 from Jim Easton <[email protected]> bet a month's salary that
there was an alias on my development platforms for cc. He was wrong, but
I asked him to give the money to charity. I don't know if he did.
------------------------------------------------------------------------------
Ticket 318 from John R. Long <[email protected]> illustrates a common
misconception about the use of a dash as the first character in a password.
This is a feature to turn off extended messages. If the user has a dash as the
first character of his/her password, then that dash must be preceeded with
another dash as an "escape" character to insure that the password is correctly
understood. This ticket is closed.
------------------------------------------------------------------------------
Ticket 321 from Are Bryne <[email protected]> asked a variety of questions
about the upload directive in ftpaccess. I have answered him in private mail.
This ticket is closed.
------------------------------------------------------------------------------
Ticket 324 from Johannes Ruscheinski <[email protected]> offered
some patches for Linux, but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 331 from Emil Isberg <[email protected]> noted that he was having
no problems with beta-13 on Solaris 2.5 or 2.5.1.This is not a bug report, but
I do appreciate getting these types of messages. Also, beta-14 is the first
release of the server to be tested by me on Solaris 2.5.1, so it will be
the first one for which I can accept bug reports with any hopes of reproducing
it.
------------------------------------------------------------------------------
Ticket 351 from <[email protected]> is trying to setup "guestgroup"
and has apparently failed to do so. I have directed him to the FAQ and have
heard nothing more from him. So, I am closing this ticket.
------------------------------------------------------------------------------
Tickets 352 & 353 from Frank Winkler <[email protected]> is trying to setup
the server on Solaris, but apparently does not have all the devices and
shared libaries in place to make it possible for "ls" to work. I suggested
some things for him to investigate, but have heard nothing further. I am
closing this ticket.
------------------------------------------------------------------------------
Ticket 363 from Gary Mills <[email protected]> is complaining about
about the use of a dash as the first character in a password being used to
turn off extended messages. Since this feature has been part of the server
long before I took over maintenance, I am not going to change the behavior
in this release. That's just the way it has to be. If the folks on the
mailing list can come up with a better solution that we can implement in
a future release, I am willing to consider it, but not for release 2.4.2
or 2.4.3. This ticket is closed.
------------------------------------------------------------------------------
Ticket 366 from Paul Whittenburg <[email protected]> offers some documentation
fixes for the ftpaccess page but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 367 from Jun-ichiro Itoh <[email protected]> reported a problem with
an extra %s in a printf that was in beta 12 but fixed in beta 13. This ticket
is closed.
------------------------------------------------------------------------------

From [email protected] Mon Aug 4 03:45:00 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA00396;
Mon, 4 Aug 1997 03:38:28 -0500 (CDT)
Received: from gate.teledata.co.uk ([email protected] [194.152.83.193])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id DAA06570
for <[email protected]>; Mon, 4 Aug 1997 03:33:24 -0500 (CDT)
Received: from defcon1.prestel.net(really [193.114.49.208]) by gate.teledata.co.uk
via rsmtp with esmtp
id <[email protected]>
for <[email protected]>; Mon, 4 Aug 97 09:34:14 +0100 (BST)
(/\##/\ Smail3.1.30.13 #30.13 built 31-aug-95)
Message-Id: <[email protected]>
Date: Mon, 04 Aug 1997 09:28:49 +0100
Reply-To: [email protected]
Sender: [email protected]
From: webadmin <[email protected]>
To: [email protected]
Subject: login prob.
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.0 [en] (Win95; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi

I have a number of users on my Irix 6.2 machine. They can login fine.

However I have one user who is using ws_ftp to login.

His log looks like this

connecting to 195.92.18.11 ...
Connected to 195.92.18.11 port 21
220 prestel2.prestel.co.uk FTP server (Version wu-2.4(6) Sun Oct 15
10:01:09 BST 1995) ready.
USER mcmillan
331 Password required for mcmillan.
PASS (hidden)
rl-recv: Blocking call cancelled

logon failure, so quitting

Does anyone know what the error is. I haven't seen it before.

Iqbal
Please email me at [email protected] with suggestions, or if this on
the wrong list let me know

From [email protected] Mon Aug 4 04:02:13 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA03464;
Mon, 4 Aug 1997 03:57:19 -0500 (CDT)
Received: from teclix.fie.us.es (teclix.fie.us.es [150.214.141.89])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id DAA03509
for <[email protected]>; Mon, 4 Aug 1997 03:52:23 -0500 (CDT)
Received: from localhost (benjumea@localhost) by teclix.fie.us.es (8.8.5/8.8.0) with SMTP id KAA14628 for <[email protected]>; Mon, 4 Aug 1997 10:54:17 +0200
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 10:54:16 +0200 (MET DST)
Reply-To: [email protected]
Sender: [email protected]
From: Benjumea Mondejar Jaime <[email protected]>
To: [email protected]
Subject: Please Help.
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I need help. I wish to unsubscribe from this list and I know
where to send the e-mail ( [email protected]) but I dont know
the name of the list ( it is not wu-ftpd, wuftpd ). Please, anybody knows
the name of this list?

---------------------------------------------------------------------------
Jaime Benjumea Facultad de Informatica y Estadistica
[email protected] Universidad de Sevilla (Spain)
:-) :-) :-) :-) :-) :-) :-) :-) :-) :-) :-) :-) :-) :-) :-) :-) :-) :-)

From [email protected] Mon Aug 4 04:08:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA26759;
Mon, 4 Aug 1997 04:03:37 -0500 (CDT)
Received: from god.pabl.ru (PABL-28.8K.RUN.Net [194.85.165.6])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id DAA02306
for <[email protected]>; Mon, 4 Aug 1997 03:58:15 -0500 (CDT)
Received: from shine.pabl.ru (shine.pabl.ru [195.209.232.2])
by god.pabl.ru (8.8.5/8.8.5) with SMTP id MAA23129
for <[email protected]>; Mon, 4 Aug 1997 12:58:14 +0400 (MSD)
Message-Id: <[email protected]>
Date: Mon, 04 Aug 97 12:58:06 +0400
Reply-To: "Dmitry Maximovich" <[email protected]>
Sender: [email protected]
From: "Dmitry Maximovich" <[email protected]>
To: "[email protected]" <[email protected]>
Subject: Re: HELP
MIME-Version: 1.0
Content-Type: text/plain; charset="koi8-r"
Content-Transfer-Encoding: 7bit
X-Mailer: PMMail 1.92 For OS/2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hello!

I have the following problem with wu-ftpd (Version wu-2.4.2-academ[BETA-13]) on FreeBSD 2.2.2.
I want that anonymous users may access my ftp-server only some time
a day (SaSu|Any1800-0930) and "real" users may access ftp-server in any time a day.
I wrote following ftpaccess file:

#############################################
bash-2.00$ cat /usr/local/etc/ftpaccess
class friends real *
class visitors guest,anonymous *

limit friends 5 Any /etc/toomany.msg
limit visitors 5 SaSu|Any1800-0930 /etc/toomany.msg
limit visitors 0 Any /etc/toomany.msg

readme README* login
readme README* cwd=*

message /etc/welcome.msg login
message .message cwd=*

compress yes local remote
tar yes local remote

noretrieve /etc/passwd core

deny !nameserved /etc/nodns.msg

log commands real
log transfers anonymous,real inbound,outbound

shutdown /etc/ftpshut.msg

email [email protected]
#############################################

After it all looks fine:

bash-2.00$ ftpwho
Service class friends:
- 0 users ( 5 maximum)

Service class visitors:
- 0 users ( 0 maximum)

But something strange happens: anonymous users still _can_ access
to ftp-server in this time. It looks like this:

bash-2.00$ ftpwho
Service class friends:
- 0 users ( 5 maximum)

Service class visitors:
10427 ?? Ss 0:00.19 ftpd: shine.pabl.ru: anonymous/[email protected]: IDLE
- 1 users ( 0 maximum)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ??????????????????????

1 users (0 maximum) (!!!!!!!!!!) I don't know what's wrong in my configuration.

Regards,

Dmitriy N. Maximovich
Senior Programmer.
PABL Investment Co.
Email: [email protected]
phone: +7-(812)-325-8772

From [email protected] Mon Aug 4 04:55:09 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA30782;
Mon, 4 Aug 1997 04:48:00 -0500 (CDT)
Received: from blinx.lizard.org (blinx.wms.co.uk [194.159.247.13])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA31288
for <[email protected]>; Mon, 4 Aug 1997 04:42:50 -0500 (CDT)
Received: (from tonym@localhost) by blinx.lizard.org (8.8.5/8.7.3) id KAA04290; Mon, 4 Aug 1997 10:53:37 +0100 (BST)
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 10:53:37 +0100 (BST)
Reply-To: [email protected]
Sender: [email protected]
From: tonym <[email protected]>
To: [email protected]
Subject: ls output
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I have recently noticed that "ls" behaves strangely under ncftp for anonymous
users. I have copied the passwd and group files to <ftpdroot>/etc, and
eventhough the group is displayed correctly, the username isn'n. The
following is what I get for anonymous users.

ftp> ls
200 PORT command successful.
150 Opening ASCII mode data connection for /bin/ls.
total 12
drwxr-xr-x 2 0 wheel 512 Jul 9 04:12 bin
drwxr-xr-x 3 0 wheel 512 Jul 9 04:19 etc
drwxr-xr-x 7 301 nobody 512 Jul 28 20:04 pub
226 Transfer complete.

Any ideas ?

Tony Michalakopoulos
--
Lizard Internet

From [email protected] Mon Aug 4 09:18:30 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA05948;
Mon, 4 Aug 1997 09:13:23 -0500 (CDT)
Received: from opale (opale.cvf.fr [194.250.196.33])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA05258
for <[email protected]>; Mon, 4 Aug 1997 09:09:09 -0500 (CDT)
Received: from javier.online.fr by opale (SMI-8.6/SMI-SVR4)
id QAA28564; Mon, 4 Aug 1997 16:03:59 +0200
Received: by javier.online.fr with Microsoft Mail
id <[email protected]>; Mon, 4 Aug 1997 16:05:32 +-200
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 16:05:30 +-200
Reply-To: [email protected]
Sender: [email protected]
From: Philippe Guyot <[email protected]>
To: "'[email protected]'" <[email protected]>
Subject: AIX & timestamp
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id JAA13734
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Thanks to everybody for help.

Notice this, happy AIX-users ;-)
The final answer is : set SPT_TYPE to SPT_NONE before building under AIX. The explanation complete is in Koos van den Hout's last FAQ, point 7.

Philippe Guyot
CVF
Bordeaux (France).

From [email protected] Mon Aug 4 09:31:20 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA19468;
Mon, 4 Aug 1997 09:25:55 -0500 (CDT)
Received: from seera.pl.hn.cp (usr2-dialup43.LosAngeles.mci.net [204.189.209.107])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA11628
for <[email protected]>; Mon, 4 Aug 1997 09:23:12 -0500 (CDT)
Received: from seera.pl.hn.cp (localhost.pl.hn.cp [127.0.0.1])
by seera.pl.hn.cp (8.8.6/8.8.6) with ESMTP id HAA02154;
Mon, 4 Aug 1997 07:22:51 -0700 (PDT)
Message-Id: <[email protected]>
Date: Mon, 04 Aug 1997 14:22:51 +0000
Reply-To: [email protected]
Sender: [email protected]
From: Minsung Kim <[email protected]>
To: [email protected]
Cc: wu-ftpd Mailing List <[email protected]>
Subject: Re: ls output
References: <[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 4.01b6C [en] (X11; I; FreeBSD 3.0-CURRENT i386)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

tonym wrote:
>
> I have recently noticed that "ls" behaves strangely under ncftp for anonymous
> users. I have copied the passwd and group files to <ftpdroot>/etc, and
> eventhough the group is displayed correctly, the username isn'n. The
> following is what I get for anonymous users.
>
> ftp> ls
> 200 PORT command successful.
> 150 Opening ASCII mode data connection for /bin/ls.
> total 12
> drwxr-xr-x 2 0 wheel 512 Jul 9 04:12 bin
> drwxr-xr-x 3 0 wheel 512 Jul 9 04:19 etc
> drwxr-xr-x 7 301 nobody 512 Jul 28 20:04 pub
> 226 Transfer complete.
>
> Any ideas ?
>
> Tony Michalakopoulos
> --
> Lizard Internet

If your system has seperate DB files on which the contents of passwd file is
stored, then ls (or any other passwd-accessing programs) doesn't look at it,
instead of /etc/passwd.

Copy /etc/master.passwd, /etc/spwd.db, and /etc/pwd.db into ~ftp/etc, if there
is any of these at all.

I hope this helped.

Regards,
--
Stair

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Minsung Kim (Stair in Cyberland) <mailto:[email protected]>

From [email protected] Mon Aug 4 11:05:49 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA26782;
Mon, 4 Aug 1997 10:56:01 -0500 (CDT)
Received: from socks1.raleigh.ibm.com (socks1.raleigh.ibm.com [204.146.167.124])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA26325
for <[email protected]>; Mon, 4 Aug 1997 10:53:48 -0500 (CDT)
Received: from rtpmail02.raleigh.ibm.com by socks1.raleigh.ibm.com (AIX 4.1/UCB 5.64/RTP-FW1.0)
id AA24862; Mon, 4 Aug 1997 11:13:19 -0400
Received: from houns01.houston.ibm.com (houns01.houston.ibm.com [9.35.40.2])
by rtpmail02.raleigh.ibm.com (8.8.5/8.8.5/RTP-ral-1.1) with SMTP id LAA23476
for <[email protected]>; Mon, 4 Aug 1997 11:13:17 -0400
Received: by houns01.houston.ibm.com(Lotus SMTP MTA v1.1 (385.6 5-6-1997)) id 862564E9.00539830 ; Mon, 4 Aug 1997 10:13:04 -0500
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 10:12:59 -0500
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: fopen on /dev/null failed error
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
X-Lotus-Fromdomain: HPSI
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I'm seeing one particular message in my syslog for every login (anonymous &
guest ids) entry. My syslog.conf has one line:
*.debug /var/adm/syslog

Here's a sample of my /var/adm/syslog:
Aug 4 09:16:08 ftp ftpd[6996]: ftp FTP server (Version wu-2.4(7)
Tue Jul 29 09:54:53 CDT 1997) ready.
Aug 4 09:16:10 ftp ftpd[6996]: command: USER guestid^M
Aug 4 09:16:13 ftp ftpd[6996]: command: PASS password^M
Aug 4 09:16:13 ftp ftpd[6996]: syslog: fopen on /dev/null
failed, errno 2

Does anybody know what this is all about and how to clean it up? I'm
running wu-2.4 on AIX 4.2.0

Thanks, Thuy

From [email protected] Mon Aug 4 11:54:58 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA28569;
Mon, 4 Aug 1997 11:51:16 -0500 (CDT)
Received: from rhed.co.cr (root@[206.153.32.50])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA18376
for <[email protected]>; Mon, 4 Aug 1997 11:45:54 -0500 (CDT)
Received: from caribdis (galileo5-a22.racsa.co.cr [200.9.55.139])
by rhed.co.cr (8.8.4/8.8.4) with SMTP
id EAA00385 for <[email protected]>; Mon, 4 Aug 1997 04:53:49 -0600
Message-Id: <[email protected]>
Date: Mon, 04 Aug 1997 10:50:59 -0600
Reply-To: [email protected]
Sender: [email protected]
From: "Luis Diego Fallas A." <[email protected]>
To: [email protected]
Subject: Non-IP virtual FTP
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 3.0Gold (Win95; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,
I'm working in Linux with non-IP virtual hosts. I use the solution
from "Apache non-IP virtual hosts" . I'm using my web site with few
virtual hosts, but now I want to add anonymous virtual FTP for these
virtual domains without using a separate IP address for each virtual
host, how can I do that? Is it posible?

Thanks.

From [email protected] Mon Aug 4 13:36:35 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA21555;
Mon, 4 Aug 1997 13:32:16 -0500 (CDT)
Received: from rintintin.sierra.com (rintintin.sierra.com [207.82.195.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA05089
for <[email protected]>; Mon, 4 Aug 1997 13:29:14 -0500 (CDT)
Received: from localhost (philip@localhost) by rintintin.sierra.com (8.7.6/8.7.3-jmm-p) with SMTP id LAA14669 for <[email protected]>; Mon, 4 Aug 1997 11:28:35 -0700 (PDT)
Message-Id: <Pine.GSO.3.96.970804112736.5610V-100000@rintintin>
Date: Mon, 4 Aug 1997 11:28:34 -0700 (PDT)
Reply-To: [email protected]
Sender: [email protected]
From: Philip Hallstrom <[email protected]>
To: [email protected]
Subject: guestserver - automatically redirect?
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: philip@rintintin
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,
I've read through the faq and the mail archives and couldn't find
any info about this...

I like the guestserver flag, butit simply returns "Please try machine
xxx". Is there anyway to make it redirect them automatically to the other
machine?

--
Philip Hallstrom Sierra On-Line, Inc.
[email protected] http://www.sierra.com/

From [email protected] Mon Aug 4 14:01:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA05765;
Mon, 4 Aug 1997 13:57:13 -0500 (CDT)
Received: from dawn.EUnet.pt ([email protected] [193.126.1.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA04481
for <[email protected]>; Mon, 4 Aug 1997 13:51:11 -0500 (CDT)
Received: from dawn.EUnet.pt (localhost [127.0.0.1])
by dawn.EUnet.pt (8.8.5/8.8.5) with ESMTP id SAA22807
for <[email protected]>; Mon, 4 Aug 1997 18:39:35 +0100
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 18:39:32 +0100 (WET DST)
Reply-To: [email protected]
Sender: [email protected]
From: Carlos Canau <[email protected]>
To: [email protected]
Subject: not your standard 0.0.0.0,20 error
MIME-Version: 1.0
Content-Type: TEXT/plain; CHARSET=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi!

I'm having a problem. Hope that someone can help.

System is Solaris 2.5.1 with a couple of patches applied (mostly
security). I'm using wu-ftpd-2.4.2-beta-13 and I've stumble into
the 0.0.0.0,20 error (the list archive is full with people
saying /dev/tcp should be 0666 :( No help, of course). The ftpd
server can't open /dev/tcp, not just ls (static and dynamic) but any
get and put. The truss output for the open failure:

open("/dev/tcp", O_RDWR) Err#6 ENXIO

Now if I do a chroot ~ftp /bin/ls.static it works but if I do a:

truss -f chroot ~ftp /bin/ls.dynamic 2>&1 | less

I get:

execve("bin/ls.dynamic", 0xEFFFFC5C, 0xEFFFFC64) argc = 1
open("/dev/zero", O_RDONLY) Err#6 ENXIO
open("/dev/zero", O_RDONLY) Err#6 ENXIO
...repeat until segmentation violation...

ENXIO from the open(2):

ENXIO The named file is a character special or
block special file, and the device asso-
ciated with this special file does not
exist.

O_NDELAY or O_NONBLOCK is set, the named
file is a FIFO, O_WRONLY is set, and no
process has the file open for reading.

A STREAMS module or driver open routine
failed.

/dev/tcp exists on ~ftp:

$ ls -lL ~ftp/dev/
crw-rw-rw- 1 root sys 13, 2 Aug 4 12:51 null
crw-rw-rw- 1 root other 11, 42 Aug 4 16:38 tcp
crw-rw-rw- 1 root other 105, 1 Aug 4 16:38 ticotsord
crw-rw-rw- 1 root other 11, 41 Aug 4 16:38 udp
crw-rw-rw- 1 root other 13, 12 Aug 4 16:38 zero

And, yes, I've run the script to build up ~ftp/etc (with
netconfig et al.), and /usr, and...

So my bet is for a STREAMS module or driver failure...

Does anyone have a clue that can help ??

</canau

From [email protected] Mon Aug 4 14:07:31 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA09173;
Mon, 4 Aug 1997 14:03:28 -0500 (CDT)
Received: from prawn.fishy.net (flounder.fishy.net [206.156.56.34])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA09727
for <[email protected]>; Mon, 4 Aug 1997 13:59:06 -0500 (CDT)
Received: from sturgeon.fishy.net (sturgeon.fishy.net [172.16.1.3]) by prawn.fishy.net (8.8.5/8.7.3) with ESMTP id OAA45388; Mon, 4 Aug 1997 14:58:57 -0400
Received: (from ben@localhost) by sturgeon.fishy.net (8.8.5/8.7.3) id OAA88526; Mon, 4 Aug 1997 14:58:56 -0400
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 14:58:54 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Ben Mehlman <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: fopen on /dev/null failed error
In-Reply-To: <[email protected]> from "[email protected]" at Aug 4, 97 10:12:59 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

> I'm seeing one particular message in my syslog for every login (anonymous &
> guest ids) entry. My syslog.conf has one line:
> *.debug /var/adm/syslog
>
> Here's a sample of my /var/adm/syslog:
> Aug 4 09:16:08 ftp ftpd[6996]: ftp FTP server (Version wu-2.4(7)
> Tue Jul 29 09:54:53 CDT 1997) ready.
> Aug 4 09:16:10 ftp ftpd[6996]: command: USER guestid^M
> Aug 4 09:16:13 ftp ftpd[6996]: command: PASS password^M
> Aug 4 09:16:13 ftp ftpd[6996]: syslog: fopen on /dev/null
> failed, errno 2
>
> Does anybody know what this is all about and how to clean it up? I'm
> running wu-2.4 on AIX 4.2.0
>

Yes. For some reason, the syslog() function in AIX (or some function it
calls) wants to open /dev/null. If the ftp user is anonymous or a guest
user, they are chrooted at that point and the device can't be opened. The
solution is to make sure the syslog function that's included in the wu-ftpd
support library is linked into your executable.

-Ben

----------------------------------------------------------------------------
Ben Mehlman The reasonable man adapts himself to the world; the
Prodigy Services Corp unreasonable one persists in trying to adapt the
[email protected] world to himself. Therefore all progress depends on
the unreasonable man. -George Bernard Shaw

From [email protected] Mon Aug 4 14:59:27 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA00558;
Mon, 4 Aug 1997 14:54:27 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA08153
for <[email protected]>; Mon, 4 Aug 1997 14:51:15 -0500 (CDT)
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 14:51:43 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Kent Landfield <[email protected]>
To: [email protected]
Cc: [email protected], [email protected]
Subject: Re: fopen on /dev/null failed error
In-Reply-To: <[email protected]> from "Ben Mehlman" at Aug 4, 97 02:58:54 pm
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

#
# > I'm seeing one particular message in my syslog for every login (anonymous &
# > guest ids) entry. My syslog.conf has one line:
# > *.debug /var/adm/syslog
# >
# > Here's a sample of my /var/adm/syslog:
# > Aug 4 09:16:08 ftp ftpd[6996]: ftp FTP server (Version wu-2.4(7)
# > Tue Jul 29 09:54:53 CDT 1997) ready.
# > Aug 4 09:16:10 ftp ftpd[6996]: command: USER guestid^M
# > Aug 4 09:16:13 ftp ftpd[6996]: command: PASS password^M
# > Aug 4 09:16:13 ftp ftpd[6996]: syslog: fopen on /dev/null
# > failed, errno 2
# >
# > Does anybody know what this is all about and how to clean it up? I'm
# > running wu-2.4 on AIX 4.2.0
# >
#
# Yes. For some reason, the syslog() function in AIX (or some function it
# calls) wants to open /dev/null. If the ftp user is anonymous or a guest
# user, they are chrooted at that point and the device can't be opened. The
# solution is to make sure the syslog function that's included in the wu-ftpd
# support library is linked into your executable.

Doesn't simply creating the /dev/null in the chroot area solve the problem ?

--
Kent Landfield Phone: 1-817-545-2502
The Landfield Group FAX: 1-817-545-7650
Email: [email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to [email protected].
Search the Usenet Hypertext FAQ Archive at http://www.faqs.org/faqs/

From [email protected] Mon Aug 4 16:38:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA21314;
Mon, 4 Aug 1997 16:34:36 -0500 (CDT)
Received: from bcx01.boco.co.gov ([email protected] [161.98.128.4])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA07914
for <[email protected]>; Mon, 4 Aug 1997 16:31:46 -0500 (CDT)
Received: from localhost (swcxt@localhost)
by bcx01.boco.co.gov (8.6.11/8.6.11) with SMTP id PAA52349
for <[email protected]>; Mon, 4 Aug 1997 15:31:45 -0600
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 15:31:44 -0600 (MDT)
Reply-To: Shane Castle <[email protected]>
Sender: [email protected]
From: Shane Castle <[email protected]>
To: [email protected]
Subject: Re: fopen on /dev/null failed error
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Mon, 4 Aug 1997, Kent Landfield wrote:

># > I'm seeing one particular message in my syslog for every login (anonymous &
># > guest ids) entry.
># >
># > Here's a sample of my /var/adm/syslog:
># > Aug 4 09:16:13 ftp ftpd[6996]: syslog: fopen on /dev/null
># > failed, errno 2
># >
># > Does anybody know what this is all about and how to clean it up? I'm
># > running wu-2.4 on AIX 4.2.0
>#
># Yes. For some reason, the syslog() function in AIX (or some function it
># calls) wants to open /dev/null. If the ftp user is anonymous or a guest
># user, they are chrooted at that point and the device can't be opened. The
># solution is to make sure the syslog function that's included in the wu-ftpd
># support library is linked into your executable.
>
>Doesn't simply creating the /dev/null in the chroot area solve the problem ?

Absolutely. Here's how:

mknod <chrooted-dir>/dev/null c 2 2

BTW, Kent, you should keep all attribution lines. We have no idea who
you were quoting above.

Shane Castle | "Perfection, then, is finally achieved, not
Boulder County Info Svcs | when there is nothing left to add, but when
Boulder CO USA | there is nothing left to take away."
| - Antoine de Saint-Exupery

From [email protected] Mon Aug 4 16:53:02 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA20295;
Mon, 4 Aug 1997 16:48:51 -0500 (CDT)
Received: from news.IAEhv.nl ([email protected] [194.151.64.4])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA19472
for <[email protected]>; Mon, 4 Aug 1997 16:44:26 -0500 (CDT)
Received: from LOCAL (uucp@localhost)
by news.IAEhv.nl (8.6.13/1.63) with IAEhv.nl; pid 14971
on Mon, 4 Aug 1997 21:44:22 GMT; id VAA14971
efrom: [email protected]; eto: [email protected]
Received: (from news@localhost)
by Garfield.IAEhv.nl (8.8.6/8.8.5) id SAA01930;
Mon, 4 Aug 1997 18:24:41 +0200
Message-Id: <[email protected]>
Date: 4 Aug 1997 16:24:41 GMT
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: Re: ls output
References: <[email protected]>
X-Sender: Perry Rovers <[email protected]>
X-no-archive: yes
X-bofh-archive: yes
X-Newsreader: TIN [UNIX 1.3 unoff BETA 970324; i586 Linux 2.0.28]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Pink elephants with an attitude inspired Minsung Kim <[email protected]> to tell garfield.mail.wu-ftpd:
: If your system has seperate DB files on which the contents of passwd file is
: stored, then ls (or any other passwd-accessing programs) doesn't look at it,
: instead of /etc/passwd.

: Copy /etc/master.passwd, /etc/spwd.db, and /etc/pwd.db into ~ftp/etc, if there
: is any of these at all.

Considering that these files store encrypted passwords most of the time this
doesn't sound like very good advice? Joe R. Hacker could get those files,
run crack on them at her leisure and presto.. gone is your system.

Normally you limit the info in the ~ftp/etc files to a minimum and
definitely do not store anything with real passwords there.

noretrieve passwd group in ftpaccess is also a precaution though not very
effective if you use and don't include stuff like shadow, master.passwd etc.
(but you shouldn't have those files in ~ftp/etc anyway)

--
Perry Rovers ([email protected])

From [email protected] Mon Aug 4 16:54:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA13268;
Mon, 4 Aug 1997 16:50:41 -0500 (CDT)
Received: from news.IAEhv.nl ([email protected] [194.151.64.4])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA06218
for <[email protected]>; Mon, 4 Aug 1997 16:44:26 -0500 (CDT)
Received: from LOCAL (uucp@localhost)
by news.IAEhv.nl (8.6.13/1.63) with IAEhv.nl; pid 14973
on Mon, 4 Aug 1997 21:44:23 GMT; id VAA14973
efrom: [email protected]; eto: UNKNOWN
Received: (from news@localhost)
by Garfield.IAEhv.nl (8.8.6/8.8.5) id SAA02167;
Mon, 4 Aug 1997 18:33:22 +0200
Message-Id: <[email protected]>
Date: 4 Aug 1997 16:33:22 GMT
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Cc: [email protected]
Subject: Re: Latest CLOSED-TICKETS from beta 14 (not here yet)
References: <[email protected]>
X-Sender: Perry Rovers <[email protected]>
X-no-archive: yes
X-bofh-archive: yes
X-Newsreader: TIN [UNIX 1.3 unoff BETA 970324; i586 Linux 2.0.28]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Pink elephants with an attitude inspired Stan Barber <[email protected]> to tell garfield.mail.wu-ftpd:
: CLOSED-TICKETS (BETA 14)

I haven't seen anything on #394 (the cd ~ behaviour with guestgroups) and
my subsequent patch for the manpages so I'll just wait and see if that gets
in.

: ------------------------------------------------------------------------------
: Ticket 273 from Usuario-Moisis <[email protected]> wants to know how
: to use BISON in place of YACC on AIX. I don't know. I have to close this
: ticket. Maybe someone else can help him.
: ------------------------------------------------------------------------------
>From the bison manpage:
-y
--yacc
--fixed-output-files
Equivalent to -o y.tab.c; the parser output file is
called y.tab.c, and the other outputs are called
y.output and y.tab.h. The purpose of this switch
is to imitate yacc's output file name conventions.
Thus, the following shell script can substitute for
yacc:

bison -y $*

This is for GNU Bison version 1.25 which can be found at gnu.prep.ai.mit.edu
and loads of mirrors around the world.

--
Perry Rovers ([email protected])

From [email protected] Mon Aug 4 16:57:32 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA21403;
Mon, 4 Aug 1997 16:53:25 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA21162
for <[email protected]>; Mon, 4 Aug 1997 16:50:36 -0500 (CDT)
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 16:51:09 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Kent Landfield <[email protected]>
To: [email protected]
Subject: Re: fopen on /dev/null failed error
In-Reply-To: <[email protected]> from "Shane Castle" at Aug 4, 97 03:31:44 pm
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Shane Castle ([email protected]) writes:

# BTW, Kent, you should keep all attribution lines. We have no idea who
# you were quoting above.

:-) I intentionally delete attribution lines in the event that things
can make someone look not-quite-up-to-speed and when I think the topic
should be the focus, not the submitters. I also do it in the event that
the participants may themselves be controversial. (This was not the case
here.)

But your point is well taken. ;)

--
Kent Landfield Phone: 1-817-545-2502
The Landfield Group FAX: 1-817-545-7650
Email: [email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to [email protected].
Search the Usenet Hypertext FAQ Archive at http://www.faqs.org/faqs/

From [email protected] Mon Aug 4 17:28:24 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA12558;
Mon, 4 Aug 1997 17:24:51 -0500 (CDT)
Received: from crash.raid.com (crash.raid.com [208.206.97.10])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA22425
for <[email protected]>; Mon, 4 Aug 1997 17:19:13 -0500 (CDT)
Received: (from bandy@localhost)
by crash.raid.com (8.8.6/8.8.6) id RAA10025;
Mon, 4 Aug 1997 17:19:09 -0500 (CDT)
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 17:19:09 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Tim Bandy <[email protected]>
To: Shane Castle <[email protected]>
Cc: [email protected]
Subject: Re: fopen on /dev/null failed error
In-Reply-To: <[email protected]>
References: <[email protected]>
<[email protected]>
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Shane Castle writes:
!: On Mon, 4 Aug 1997, Kent Landfield wrote:
!: >
!: >Doesn't simply creating the /dev/null in the chroot area solve the problem ?
!:
!: Absolutely. Here's how:
!:
!: mknod <chrooted-dir>/dev/null c 2 2

I believe that /dev/null's major and minor device numbers are os
dependent. You should check the real /dev/null for its major and
minor before you create the device. Then, the syntax is:
# mknod <chrooted-dir>/dev/null c <real major> <real minor>

--
Tim Bandy <[email protected]>
GeneSys, LLC

From [email protected] Mon Aug 4 19:28:24 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA01461;
Mon, 4 Aug 1997 19:24:43 -0500 (CDT)
Received: from blinx.lizard.org (blinx.wms.co.uk [194.159.247.13])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA29649
for <[email protected]>; Mon, 4 Aug 1997 19:18:05 -0500 (CDT)
Received: (from tonym@localhost) by blinx.lizard.org (8.8.5/8.7.3) id BAA08334; Tue, 5 Aug 1997 01:29:11 +0100 (BST)
Message-Id: <[email protected]>
Date: Tue, 5 Aug 1997 01:29:11 +0100 (BST)
Reply-To: [email protected]
Sender: [email protected]
From: tonym <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: ls output
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On 4 Aug 1997 [email protected] wrote:

> Pink elephants with an attitude inspired Minsung Kim <[email protected]> to tell garfield.mail.wu-ftpd:
> : If your system has seperate DB files on which the contents of passwd file is
> : stored, then ls (or any other passwd-accessing programs) doesn't look at it,
> : instead of /etc/passwd.
>
> : Copy /etc/master.passwd, /etc/spwd.db, and /etc/pwd.db into ~ftp/etc, if there
> : is any of these at all.
>
> Considering that these files store encrypted passwords most of the time this
> doesn't sound like very good advice? Joe R. Hacker could get those files,
> run crack on them at her leisure and presto.. gone is your system.
>
> Normally you limit the info in the ~ftp/etc files to a minimum and
> definitely do not store anything with real passwords there.
>
> noretrieve passwd group in ftpaccess is also a precaution though not very
> effective if you use and don't include stuff like shadow, master.passwd etc.
> (but you shouldn't have those files in ~ftp/etc anyway)
>

If you copy those files to ~ftp/etc, isn't "noretrieve (all above files)"
suficient to protect your machine from Joe Hacker ?

Is there any way for anonymous users to get "noretrieve" files ?

PS I've fould that only pwd.db is required underFreeBSD. Is it save to
copy that to ~ftp/etc ?
--
Tony Michalakopoulos
Lizard Internet

From [email protected] Mon Aug 4 20:58:23 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA01842;
Mon, 4 Aug 1997 20:53:03 -0500 (CDT)
Received: from ipro.com (farad.ipro.com [204.179.121.96])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id UAA31745
for <[email protected]>; Mon, 4 Aug 1997 20:51:28 -0500 (CDT)
Received: by ipro.com (8.8.5/SMI-SVR4)
id SAA05945; Mon, 4 Aug 1997 18:50:54 -0700 (PDT)
Message-Id: <[email protected]>
Date: Mon, 4 Aug 1997 18:50:54 -0700 (PDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Samuel Ha)
To: [email protected]
Subject: Limiting Multiple connections
X-Sun-Charset: US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,

Is there a way to limit multiple connections for any users???
I am running b13 on a Sun 2.5.

Thanks for your help,

Sam

From [email protected] Mon Aug 4 21:17:41 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA06488;
Mon, 4 Aug 1997 21:11:55 -0500 (CDT)
Received: from ftp.loxinfo.co.th ([email protected] [203.146.0.25])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA31502
for <[email protected]>; Mon, 4 Aug 1997 21:05:13 -0500 (CDT)
Received: from localhost (den@localhost)
by ftp.loxinfo.co.th (8.8.6/8.8.5) with SMTP id JAA02175;
Tue, 5 Aug 1997 09:03:22 +0700
Message-Id: <[email protected]>
Date: Tue, 5 Aug 1997 09:03:22 +0700 (ICT)
Reply-To: [email protected]
Sender: [email protected]
From: "Densin Roy." <[email protected]>
To: "Luis Diego Fallas A." <[email protected]>
Cc: [email protected]
Subject: Re: Non-IP virtual FTP
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

amm should rearrange ftp protocal for this case. HTTP1.1 suppose
that web browser will tell wanted url.So apache can sent correct
page to it. If you use old browser "non-IP virtual hosts" will not
work. Can we extend header of ftp protocal?
densin Roy

On Mon, 4 Aug 1997, Luis Diego Fallas A. wrote:

> Hi,
> I'm working in Linux with non-IP virtual hosts. I use the solution
> from "Apache non-IP virtual hosts" . I'm using my web site with few
> virtual hosts, but now I want to add anonymous virtual FTP for these
> virtual domains without using a separate IP address for each virtual
> host, how can I do that? Is it posible?
>
> Thanks.
>

From [email protected] Mon Aug 4 22:39:25 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id WAA18603;
Mon, 4 Aug 1997 22:33:45 -0500 (CDT)
Received: from news.IAEhv.nl ([email protected] [194.151.64.4])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id WAA10697
for <[email protected]>; Mon, 4 Aug 1997 22:31:10 -0500 (CDT)
Received: from LOCAL (uucp@localhost)
by news.IAEhv.nl (8.6.13/1.63) with IAEhv.nl; pid 5270
on Tue, 5 Aug 1997 03:31:08 GMT; id DAA05270
efrom: [email protected]; eto: [email protected]
Received: (from news@localhost)
by Garfield.IAEhv.nl (8.8.6/8.8.5) id AAA11126;
Tue, 5 Aug 1997 00:05:04 +0200
Message-Id: <[email protected]>
Date: 4 Aug 1997 22:05:02 GMT
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: Re: guestserver - automatically redirect?
References: <Pine.GSO.3.96.970804112736.5610V-100000@rintintin>
X-Sender: Perry Rovers <[email protected]>
X-no-archive: yes
X-bofh-archive: yes
X-Newsreader: TIN [UNIX 1.3 unoff BETA 970324; i586 Linux 2.0.28]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Pink elephants with an attitude inspired Philip Hallstrom <[email protected]> to tell garfield.mail.wu-ftpd:
: I like the guestserver flag, butit simply returns "Please try machine
: xxx". Is there anyway to make it redirect them automatically to the other
: machine?

You could use something like tcprelay for that.. waits for a connection on a
port and throws it to some other host at the same port. Or a simple CNAME in
the DNS could do the trick as well, but may not be possible at times.

--
Perry Rovers ([email protected])

From [email protected] Mon Aug 4 22:40:35 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id WAA07664;
Mon, 4 Aug 1997 22:35:29 -0500 (CDT)
Received: from fionn.es.net (fionn.es.net [198.128.1.30])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id WAA28338
for <[email protected]>; Mon, 4 Aug 1997 22:31:37 -0500 (CDT)
Received: from fionn.es.net (localhost [127.0.0.1])
by fionn.es.net (LBNLMWH11/LBNLMWH09/ESOCF2) with ESMTP id UAA23071
for <[email protected]>; Mon, 4 Aug 1997 20:31:35 -0700 (PDT)
Message-Id: <[email protected]>
Date: Mon, 04 Aug 1997 20:31:35 -0700
Reply-To: [email protected]
Sender: [email protected]
From: Michael Helm <[email protected]>
To: [email protected]
Subject: wu-ftpd won't log
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I'm running wu-2.4.2-academ[BETA-12] on OSF1 V2.0.

Yes, I know these are archaic (dangerously so). But political
problems and priorities prevent me from changing this.

Someone put beta12 on this machine because of the security
issues 6 mos back or so. But it doesn't log, & things have happened
that make us wish it did. What's wrong? It used to log, pre beta-12.

The binary has a reference to /usr/local/logs/xferlog in it.
But nothing ever gets written to that. It never seems to write
anything to facility daemon in syslog, either. Where's all the
stuff going? I don't have much of a programming environment on
this old machine so i haven't been able to grab a running binary
to find out what it's doing. It's started with options -l -L -i -o.
ftpaccess has
log commands real,anonymous,guest
log transfers anonymous,real,guest inbound,outbound

What else can I do or fix?

Thanks, ==mwh
Michael Helm
ESnet/LBNL

From [email protected] Mon Aug 4 23:03:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id WAA12577;
Mon, 4 Aug 1997 22:58:21 -0500 (CDT)
Received: from fionn.es.net (fionn.es.net [198.128.1.30])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id WAA22110
for <[email protected]>; Mon, 4 Aug 1997 22:57:15 -0500 (CDT)
Received: from fionn.es.net (localhost [127.0.0.1])
by fionn.es.net (LBNLMWH11/LBNLMWH09/ESOCF2) with ESMTP id UAA23379
for <[email protected]>; Mon, 4 Aug 1997 20:57:13 -0700 (PDT)
Message-Id: <[email protected]>
Date: Mon, 04 Aug 1997 20:57:13 -0700
Reply-To: [email protected]
Sender: [email protected]
From: Michael Helm <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: wu-ftpd won't log
In-Reply-To: Your message of "Mon, 04 Aug 1997 20:31:35 PDT."
<[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Michael Helm writes:
> I'm running wu-2.4.2-academ[BETA-12] on OSF1 V2.0.

I neglected to mention that the recommendations in the faq
(about syslog on osf/1) have been followed. We think.

From [email protected] Tue Aug 5 00:30:09 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id AAA20644;
Tue, 5 Aug 1997 00:26:32 -0500 (CDT)
Received: from fionn.es.net (fionn.es.net [198.128.1.30])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id AAA04683
for <[email protected]>; Tue, 5 Aug 1997 00:20:37 -0500 (CDT)
Received: from fionn.es.net (localhost [127.0.0.1])
by fionn.es.net (LBNLMWH11/LBNLMWH09/ESOCF2) with ESMTP id WAA24456
for <[email protected]>; Mon, 4 Aug 1997 22:20:36 -0700 (PDT)
Message-Id: <[email protected]>
Date: Mon, 04 Aug 1997 22:20:36 -0700
Reply-To: [email protected]
Sender: [email protected]
From: Michael Helm <[email protected]>
To: [email protected]
Subject: Re: wu-ftpd won't log
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

[Sorry for the duplicate, Matthew!]

> Make sure you're running it with -a on the command line, otherwise your
> ftpaccess won't get parsed (and used.)

Hey, that does help a little. Still no xferlog, but now I get
gibberish like this in the daemon.log syslog file:

Aug 4 22:08:35 foo ftpd[20717]: -i 0,-o 0,xferlog /usr/local/logs/xferlog: 0

What does this mean?

It looks like it must be this bit in ftpd.c:

#ifdef DEBUG
/* I had a lot of trouble getting xferlog working, because of two factors:
acl_setfunctions making stupid assumptions, and sprintf LOSING. _H*/
/*
* Actually, sprintf was not losing, but the rules changed... next release
* this will be fixed the correct way, but right now, it works well enough
* -- sob
*/
syslog (LOG_INFO, "-i %d,-o %d,xferlog %s: %d",
log_incoming_xfers, log_outbound_xfers, logfile, xferlog);
#endif
enable_signaling(); /* we can allow signals once again: kinch */

(about line #1486 in this version)

This seems to be the only thing that ever gets logged for any connection
at any time. Everything's "0". I know I've done some transfers &
that something should be tallied.

Why am I not seeing any thing else at all in log files, no login, no
other commands? Why, when I remove the file xferlogs, does it not
complain? Just more -i 0,-o 0,xferlog /usr/local/logs/xferlog: 0
for every connection.

From [email protected] Tue Aug 5 03:09:46 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA28897;
Tue, 5 Aug 1997 03:04:32 -0500 (CDT)
Received: from owlman.academ.com ([email protected] [198.137.249.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id CAA16241
for <[email protected]>; Tue, 5 Aug 1997 02:58:41 -0500 (CDT)
Received: (from sob@localhost)
by owlman.academ.com (8.8.7/8.8.5) id CAA07565
for [email protected]; Tue, 5 Aug 1997 02:58:34 -0500 (CDT)
Message-Id: <[email protected]>
Date: Tue, 5 Aug 1997 02:58:34 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Stan Barber)
To: [email protected]
Subject: Most current CLOSED-TICKETS-14 (not quite soup yet)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

CLOSED-TICKETS (BETA 14)

This note contains a summary of all tickets closed before the release of beta
14. Most of these were not bug reports. Some are questions that were
answered in the documentation or the various FAQs. Some were bug reports
about previous beta releases that have already been fixed in the latest
beta (13). A few were complaints about some fundamental design decisions
made when wu-ftpd was created. Some were questions I did answer and have
closed. Some were notes about successful compliations of beta 13 or beta 12
on platforms to which I have not access. Some were offers of patches that
never materialized.

In any case, they are all closed. They are not relevant to beta 14 or any
future release. If you don't see that your ticket number is mentioned here
and it was not mentioned as being a closed ticket or bug fix in the beta 13
distribution, you should assume it is open. Some of these open tickets will
be closed as bug fixes. A few will remain open as they are feature
enhancements. These feature enhancements will be discussed on this list
when I am ready to start outlining the details of release 2.5.

------------------------------------------------------------------------------
Ticket 7 from Fredrik Nyman <[email protected]> concerns problems
making the ftpaccess file work on IRIX 5.3. I can't reproduce this since
I don't have access to IRIX and other who do don't report this as being
a problem. My guess is that there is no "-a" at the end of the /etc/inetd.conf
line for starting ftpd. [I should have closed this sooner, but didn't.]
------------------------------------------------------------------------------
Ticket 9 from Frank Jacquette <[email protected]> reports a problem
compiling 2.4.2 on AIX. This problem is known to have been addressed on or
before beta 13 so this ticket is closed.
------------------------------------------------------------------------------
Ticket 39 from Nathan Neulinger <[email protected]> concerns a problem
with signal 10 aborts on HP/UX. I believe this problem was fixed in beta 13.
I am closing this ticket since I can't reproduce his problem without access
to HP/UX.
------------------------------------------------------------------------------
Ticket 48 from Scott Mulligan <[email protected]> was a request to
talk to me about something. We never made contact. He didn't acknowledge
my followup message. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 68 from <[email protected]> was not a bug report but a request for
more assistance in understanding how virtual ftp support works on wu-ftpd.
This ticket is closed since it is not a bug report.
------------------------------------------------------------------------------
Ticket 99 from Becki Kain <[email protected]> offered some
suggeestions for the configuration of wu-ftpd on Digital Unix. These changes
were already included in beta 13. This ticket is closed.
------------------------------------------------------------------------------
Ticket 101 from Ian Willis <[email protected]> askes about the use of "user@" and
"user@host" conventions for anonymous ftp. This is not a bug report.
------------------------------------------------------------------------------
Ticket 116 from James Ford <[email protected]> offers to compile wu-ftpd
on some AIX machines. This is not a bug report. However, I would welcome
any reports concerning AIX compliations.
------------------------------------------------------------------------------
Tickets 127, 171 & 240 from Becki Kain <[email protected]> offers to
compile wu-ftpd on Digital Unix 4.0. This is not a bug report. However, I
would welcome any reports concerning Digital Unix compliations. So, Becki,
go ahead and compile away. Send me a report after you do it.
------------------------------------------------------------------------------
Ticket 128 from Bernhard Rosenkraenzer <[email protected]> reports
that ftpaccess is not being seen on Linux. However, he does not provide
any information concerning the /etc/inetd.conf line for starting ftpd.
Since I can't reproduce this bug on Linux, this ticket is closed.
------------------------------------------------------------------------------
Ticket 144 from Andrew Ford <[email protected]> reported a bug in
beta-11 that I can't produce in beta 13. It concerned the use of the dirs
and nodirs option in different upload commands in the ftpaccess file. He
said that they interfered with each other. Since I can't produce it in
beta 13, this ticket is closed.
------------------------------------------------------------------------------
Ticket 148 from Ian Willis <[email protected]> suggested a modification for Beta 12
that was already added, but I apparently didn't notice his ticket until this
go round. Since this issue has been addressed, the ticket is closed. [The
change was specific for SCO 5 and concerned defining SIGURG as SIGUSR1.]
------------------------------------------------------------------------------
Ticket 150 from [email protected] offers to compile wu-ftpd
on some AIX machines. This is not a bug report. However, I would welcome
any reports concerning AIX compliations.
------------------------------------------------------------------------------
Ticket 151 from [email protected] (Marek Michalkiewicz)
reported a bug in Virtual Root processing that has been fixed prior to beta
14 release. The bug in attempting to reuse space allocated to pw->pw-dir
instead of freeing and resizing it to a size that can hold the virtual root
directory. This ticket is closed.
------------------------------------------------------------------------------
Ticket 176 from Danielle Hopkins <[email protected]> report that
compiling beta 12 on Digital Unix 3.2 with enhanced security is not working.
I believe this issue was resolved in beta 13.
------------------------------------------------------------------------------
Ticket 198 from Ian Willis <[email protected]> suggested a modification for Beta 12
concering the form of the ps command used in ftpwho and ftpcount. Since I
reversed the change in beta-13, the problem that this addresses no longer
exists. This ticket is closed.
------------------------------------------------------------------------------
Ticket 199 from Roman Gnatenko <[email protected]> reported that "cd ~" did not
work in version 2.4. It does work fine in beta-13, so this ticket is closed.
------------------------------------------------------------------------------
Ticket 200 from Alvaro Fdez Lago <[email protected]> reports
success building beta-12 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 202 from Andrew Maltsev <[email protected]> reported the duplicate printf
selector when a bad shell reply was going to be made. This was fixed before
beta-14 and is now closed.
------------------------------------------------------------------------------
Ticket 213 from Randall J. Wormser <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 224 from Michael Eisele <[email protected]> and 293 from
Gary Mills <[email protected]> reported a problem with an extra %s in a
printf that was in beta 12 but fixed in beta 13. This ticket is closed.
------------------------------------------------------------------------------
Ticket 230 from Jon Madison <[email protected]> reports successful compilation
of beta 12 on IRIX 6.2 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 245 from Kevin Hoffer <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 251 from Neuromancer <[email protected]> reported that
some form of shadow passwords don't work correctly with beta-13 under Linux.
I could not reproduce this on RedHat 4.0. So, I have closed this ticket.
------------------------------------------------------------------------------
Ticket 258 from Michael E Quan <[email protected]> appears to be another
person who didn't read the NOTES file concerning the use of "-a" in
/etc/inetd.conf in order to get ftpd to use the ftpaccess file and the
various enhancements.
------------------------------------------------------------------------------
Ticket 259 from <[email protected]> appears to be another person who didn't
read the NOTES file concerning the use of "-a" in /etc/inetd.conf in order
to get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 261 from Jon Madison <[email protected]> reports successful complilation
of beta 13 on IRIX 6.2 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 268 from Andrew R. Orndorff <[email protected]>
offered some patches for AIX, but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 273 from Usuario-Moisis <[email protected]> wants to know how
to use BISON in place of YACC on AIX. I don't know. I have to close this
ticket. Maybe someone else can help him.
------------------------------------------------------------------------------
Ticket 278 from Ignacio de Cordoba <[email protected]> is having problems
getting "ls" and "dir" to work, which is a common problem that usually
involves properly setting up the environment. It is not a wu-ftpd problem.
------------------------------------------------------------------------------
Ticket 280 from Hannu Laurila <[email protected]> illustrates a common
misconception about the use of a dash as the first character in a password.
This is a feature to turn off extended messages. If the user has a dash as the
first character of his/her password, then that dash must be preceeded with
another dash as an "escape" character to insure that the password is correctly
understood. This ticket is closed.
------------------------------------------------------------------------------
Ticket 291 from Sergio Javier Klarreich <[email protected]> appeared to
just be a pleasant greeting. It does not appear to report a bug report.
------------------------------------------------------------------------------
Ticket 296 from Jim Easton <[email protected]> bet a month's salary that
there was an alias on my development platforms for cc. He was wrong, but
I asked him to give the money to charity. I don't know if he did.
------------------------------------------------------------------------------
Ticket 318 from John R. Long <[email protected]> illustrates a common
misconception about the use of a dash as the first character in a password.
This is a feature to turn off extended messages. If the user has a dash as the
first character of his/her password, then that dash must be preceeded with
another dash as an "escape" character to insure that the password is correctly
understood. This ticket is closed.
------------------------------------------------------------------------------
Ticket 321 from Are Bryne <[email protected]> asked a variety of questions
about the upload directive in ftpaccess. I have answered him in private mail.
This ticket is closed.
------------------------------------------------------------------------------
Ticket 324 from Johannes Ruscheinski <[email protected]> offered
some patches for Linux, but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 331 from Emil Isberg <[email protected]> noted that he was having
no problems with beta-13 on Solaris 2.5 or 2.5.1.This is not a bug report, but
I do appreciate getting these types of messages. Also, beta-14 is the first
release of the server to be tested by me on Solaris 2.5.1, so it will be
the first one for which I can accept bug reports with any hopes of reproducing
it.
------------------------------------------------------------------------------
Ticket 351 from <[email protected]> is trying to setup "guestgroup"
and has apparently failed to do so. I have directed him to the FAQ and have
heard nothing more from him. So, I am closing this ticket.
------------------------------------------------------------------------------
Tickets 352 & 353 from Frank Winkler <[email protected]> is trying to setup
the server on Solaris, but apparently does not have all the devices and
shared libaries in place to make it possible for "ls" to work. I suggested
some things for him to investigate, but have heard nothing further. I am
closing this ticket.
------------------------------------------------------------------------------
Ticket 363 from Gary Mills <[email protected]> is complaining about
about the use of a dash as the first character in a password being used to
turn off extended messages. Since this feature has been part of the server
long before I took over maintenance, I am not going to change the behavior
in this release. That's just the way it has to be. If the folks on the
mailing list can come up with a better solution that we can implement in
a future release, I am willing to consider it, but not for release 2.4.2
or 2.4.3. This ticket is closed.
------------------------------------------------------------------------------
Ticket 366 from Paul Whittenburg <[email protected]> offers some documentation
fixes for the ftpaccess page but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 367 from Jun-ichiro Itoh <[email protected]> reported a problem with
an extra %s in a printf that was in beta 12 but fixed in beta 13. This ticket
is closed.
------------------------------------------------------------------------------
Ticket 374 from Ryan Rawson <[email protected]> claimed that virutal hosting
didn't work on Linux 2.0.29 and 2.0.30. This may be true. I could not
reproduce the problem on RedHat 4.0, so I can fix it. I think he is right
about it being a kernel or library problem. This ticket is closed.
-----------------------------------------------------------------------------

From [email protected] Tue Aug 5 05:16:20 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA02278;
Tue, 5 Aug 1997 05:10:46 -0500 (CDT)
Received: from news.IAEhv.nl ([email protected] [194.151.64.4])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA17580
for <[email protected]>; Tue, 5 Aug 1997 05:06:01 -0500 (CDT)
Received: from LOCAL (uucp@localhost)
by news.IAEhv.nl (8.6.13/1.63) with IAEhv.nl; pid 28424
on Tue, 5 Aug 1997 10:05:58 GMT; id KAA28424
efrom: [email protected]; eto: [email protected]
Received: (from news@localhost)
by Garfield.IAEhv.nl (8.8.6/8.8.5) id KAA26897;
Tue, 5 Aug 1997 10:01:35 +0200
Message-Id: <[email protected]>
Date: 5 Aug 1997 08:01:35 GMT
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: Re: ls output
References: <[email protected]>
X-Sender: Perry Rovers <[email protected]>
X-no-archive: yes
X-bofh-archive: yes
X-Newsreader: TIN [UNIX 1.3 unoff BETA 970324; i586 Linux 2.0.28]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Pink elephants with an attitude inspired tonym <[email protected]> to tell garfield.mail.wu-ftpd:
: If you copy those files to ~ftp/etc, isn't "noretrieve (all above files)"
: suficient to protect your machine from Joe Hacker ?
Maybe..

: Is there any way for anonymous users to get "noretrieve" files ?
I don't intend to find out by having my system hacked. I've tried this a
couple of times here and it didn't work.. but I'm not a dedicated hacker.

: PS I've fould that only pwd.db is required underFreeBSD. Is it save to
: copy that to ~ftp/etc ?
As long as you make sure there are no encrypted passwords in there it may be
ok. You still give out a list of users to outsiders which can only help
them in hacking but the risk is 'somewhat' less than having your passwd file
up for grabs.

--
Perry Rovers ([email protected])

From [email protected] Tue Aug 5 10:15:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA19588;
Tue, 5 Aug 1997 10:07:26 -0500 (CDT)
Received: from ns1.tu-graz.ac.at (ns1.tu-graz.ac.at [129.27.2.3])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA19827
for <[email protected]>; Tue, 5 Aug 1997 10:04:11 -0500 (CDT)
Received: from bzs.tu-graz.ac.at by ns1.tu-graz.ac.at with SMTP id AA17031
(5.67c/IDA-1.5t for <[email protected]>); Tue, 5 Aug 1997 17:04:03 +0200
Received: from BZS/SpoolDir by bzs.tu-graz.ac.at (Mercury 1.31);
5 Aug 97 17:04:07 +0200
Received: from SpoolDir by BZS (Mercury 1.31); 5 Aug 97 17:03:38 +0200
Message-Id: <[email protected]>
Date: Tue, 5 Aug 1997 17:03:31 +0200
Reply-To: [email protected]
Sender: [email protected]
From: "Peter Seitz" <[email protected]>
To: [email protected]
Subject: Different Logfiles for anonymous and real users possible?
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7BIT
X-Mailer: Pegasus Mail v3.40 (NDS)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Dear Listmembers,

I've installed wu-2.4.2-academ [beta 13] and I youd like to have
seperate logfiles for real users and for anonymous users.

But from the documentation, I could not find out if this is possible.
So maybe someone on the list can give me a hint or this feature can
be implemented in a future release.

Please send me a cc of your answer, since I am not subscribed to this
high volume list.

TIA
Peter

With best compliments

Peter Seitz
(Faculty for civil engineering)
-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-
Verkehrswesenzeichensaal (VZS) The better drawing site :-)

University of Technology Graz, Technikerstr. 4/II, A-8010-Graz, Austria
e-mail: mailto:[email protected] (Internet) 2:316/5.18 (FidoNet)
-+-+-+-+-+-+-+-+- http://wwwbzs.tu-graz.ac.at/~seitz/ +-+-+-+-+-+-+-+-+-

From [email protected] Tue Aug 5 13:48:29 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA21599;
Tue, 5 Aug 1997 13:41:43 -0500 (CDT)
Received: from cc.gettysburg.edu (facmail.gettysburg.edu [138.234.4.150])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA04177
for <[email protected]>; Tue, 5 Aug 1997 13:35:26 -0500 (CDT)
Received: from eyurick-760ed.admin.gettysburg.edu (dhcp-198-191.admin.gettysburg.edu [138.234.198.191])
by cc.gettysburg.edu (8.8.6/8.8.4) with SMTP
id OAA24680 for <[email protected]>; Tue, 5 Aug 1997 14:34:53 -0400 (EDT)
Message-Id: <3.0.3.32.19970805143433.007d0100@popserver.facmail.gettysburg.edu>
Date: Tue, 05 Aug 1997 14:34:33 -0400
Reply-To: [email protected]
Sender: [email protected]
From: "Eric J. Yurick" <[email protected]>
To: [email protected]
Subject: Solaris 2.5.1 configuration for real users and wu-ftp
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender: [email protected]
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Anonymous users work well, but the real users are immediately logged out,
what's wrong?

Connected to io.cc.gettysburg.edu.
220 io FTP server (Version wu-2.4(3) Thu May 15 15:58:33 EDT 1997) ready.
Name (io:eyurick):
530 User eyurick access denied...
Login failed.
ftp>

Here is the ftpaccess file:

loginfails 3

class local real,guest,anonymous *
class remote real,guest,anonymous *

limit local 20 Any /etc/msg.toomany
limit remote 15 SaSu|Any1800-0600 /etc/msg.toomany
limit remote 20 Any /etc/msg.toomany

readme README* login
readme README* cwd=*

message /etc/welcome.cleaftp login
message .message cwd=*

compress yes local remote
tar yes local remote

# allow use of private file for SITE GROUP and SITE GPASS?
private yes

# passwd-check <none|trivial|rfc822> [<enforce|warn>]
passwd-check rfc822 warn

log commands real
log transfers anonymous,real inbound,outbound
shutdown /etc/shutmsg

# all the following default to "yes" for everybody
delete no guest,anonymous # delete permission?
overwrite no guest,anonymous # overwrite permission?
rename no guest,anonymous #
rename
permission?
chmod no anonymous # chmod permission?
umask no anonymous # umask permission?

# specify the upload directory information
#upload /var/ftp * no
#upload /var/ftp /incoming yes root daemon 0600 dirs
#upload /var/ftp /bin no
#upload /var/ftp /etc no

# directory aliases... [note, the ":" is not required]
alias inc: /incoming

# cdpath
#cdpath /incoming
cdpath /pub
cdpath /

# path-filter...
path-filter anonymous /etc/pathmsg ^[-A-Za-z0-9_\.]*$ ^\. ^-
path-filter guest /etc/pathmsg ^[-A-Za-z0-9_\.]*$ ^\. ^-

# specify which group of users will be treated as "guests".
guestgroup ftponly

email [email protected]

------------------------------
Eric J. Yurick
Information Resources - Delivery Team
email: [email protected]
voice: (717) 337-6888
page : (717) 337-5737
"Any sufficiently advanced technology is indistinguishable from magic."
-- Arthur C. Clarke

From [email protected] Wed Aug 6 03:05:59 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA16509;
Wed, 6 Aug 1997 02:58:01 -0500 (CDT)
Received: from owlman.academ.com ([email protected] [198.137.249.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id CAA13115
for <[email protected]>; Wed, 6 Aug 1997 02:48:14 -0500 (CDT)
Received: (from sob@localhost)
by owlman.academ.com (8.8.7/8.8.5) id CAA09786
for [email protected]; Wed, 6 Aug 1997 02:48:12 -0500 (CDT)
Message-Id: <[email protected]>
Date: Wed, 6 Aug 1997 02:48:12 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Stan Barber)
To: [email protected]
Subject: Yet another release of CLOSED-TICKETS-14
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

From [email protected] Wed Aug 6 03:14:43 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA31694;
Wed, 6 Aug 1997 03:06:43 -0500 (CDT)
Received: from owlman.academ.com ([email protected] [198.137.249.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id CAA25518
for <[email protected]>; Wed, 6 Aug 1997 02:48:34 -0500 (CDT)
Received: (from sob@localhost)
by owlman.academ.com (8.8.7/8.8.5) id CAA09792
for [email protected]; Wed, 6 Aug 1997 02:48:33 -0500 (CDT)
Message-Id: <[email protected]>
Date: Wed, 6 Aug 1997 02:48:33 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Stan Barber)
To: [email protected]
Subject: Yet another release of CLOSED-TICKETS-14
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

CLOSED-TICKETS (BETA 14)

This note contains a summary of all tickets closed before the release of beta
14. Most of these were not bug reports. Some are questions that were
answered in the documentation or the various FAQs. Some were bug reports
about previous beta releases that have already been fixed in the latest
beta (13). A few were complaints about some fundamental design decisions
made when wu-ftpd was created. Some were questions I did answer and have
closed. Some were notes about successful compliations of beta 13 or beta 12
on platforms to which I have not access. Some were offers of patches that
never materialized.

In any case, they are all closed. They are not relevant to beta 14 or any
future release. If you don't see that your ticket number is mentioned here
and it was not mentioned as being a closed ticket or bug fix in the beta 13
distribution, you should assume it is open. Some of these open tickets will
be closed as bug fixes. A few will remain open as they are feature
enhancements. These feature enhancements will be discussed on this list
when I am ready to start outlining the details of release 2.5.

------------------------------------------------------------------------------
Ticket 7 from Fredrik Nyman <[email protected]> concerns problems
making the ftpaccess file work on IRIX 5.3. I can't reproduce this since
I don't have access to IRIX and other who do don't report this as being
a problem. My guess is that there is no "-a" at the end of the /etc/inetd.conf
line for starting ftpd. [I should have closed this sooner, but didn't.]
------------------------------------------------------------------------------
Ticket 9 from Frank Jacquette <[email protected]> reports a problem
compiling 2.4.2 on AIX. This problem is known to have been addressed on or
before beta 13 so this ticket is closed.
------------------------------------------------------------------------------
Ticket 34 from Jan Prikryl <[email protected]> offered to send
some changes relevant to IRIX 6.2, but never sent them. I have closed this
ticket. However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 39 from Nathan Neulinger <[email protected]> concerns a problem
with signal 10 aborts on HP/UX. I believe this problem was fixed in beta 13.
I am closing this ticket since I can't reproduce his problem without access
to HP/UX.
------------------------------------------------------------------------------
Ticket 48 from Scott Mulligan <[email protected]> was a request to
talk to me about something. We never made contact. He didn't acknowledge
my followup message. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 53 from Steve Doty <[email protected]> claimed to have problems
using the betas and the guestgroup function. His message was not clear on
exactly what the problem was, but never answered my request for more
information. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 68 from <[email protected]> was not a bug report but a request for
more assistance in understanding how virtual ftp support works on wu-ftpd.
This ticket is closed since it is not a bug report.
------------------------------------------------------------------------------
Ticket 78 from Stephen Cliffe <[email protected]> reported a
problem using "ls" under wu-ftpd on Solaris 2.5. I can't reproduce this
under Solaris 2.4 or Solaris 2.5.1, so I am closing this ticket.
------------------------------------------------------------------------------
Tickets 89 and 91 from Sam Hulick <[email protected]> reported a problem using
"ls -l" with wu-ftpd but did not identify the platform. He did not respond
to my requests for more information, so I am closing this ticket.
------------------------------------------------------------------------------
Ticket 93 from Ricardo Malta <[email protected]> reported a problem
using ls on beta 10 under AIX. Others have reported success doing this, but
unfortunately, I have no AIX to work with so I can reproduce this. I have
closed this ticket.
------------------------------------------------------------------------------
Ticket 99 from Becki Kain <[email protected]> offered some
suggeestions for the configuration of wu-ftpd on Digital Unix. These changes
were already included in beta 13. This ticket is closed.
------------------------------------------------------------------------------
Ticket 101 from Ian Willis <[email protected]> askes about the use of "user@" and
"user@host" conventions for anonymous ftp. This is not a bug report.
------------------------------------------------------------------------------
Ticket 116 from James Ford <[email protected]> offers to compile wu-ftpd
on some AIX machines. This is not a bug report. However, I would welcome
any reports concerning AIX compliations.
------------------------------------------------------------------------------
Tickets 127, 171 & 240 from Becki Kain <[email protected]> offers to
compile wu-ftpd on Digital Unix 4.0. This is not a bug report. However, I
would welcome any reports concerning Digital Unix compliations. So, Becki,
go ahead and compile away. Send me a report after you do it.
------------------------------------------------------------------------------
Ticket 128 from Bernhard Rosenkraenzer <[email protected]> reports
that ftpaccess is not being seen on Linux. However, he does not provide
any information concerning the /etc/inetd.conf line for starting ftpd.
Since I can't reproduce this bug on Linux, this ticket is closed.
------------------------------------------------------------------------------
Ticket 144 from Andrew Ford <[email protected]> reported a bug in
beta-11 that I can't produce in beta 13. It concerned the use of the dirs
and nodirs option in different upload commands in the ftpaccess file. He
said that they interfered with each other. Since I can't produce it in
beta 13, this ticket is closed.
------------------------------------------------------------------------------
Ticket 148 from Ian Willis <[email protected]> suggested a modification for Beta 12
that was already added, but I apparently didn't notice his ticket until this
go round. Since this issue has been addressed, the ticket is closed. [The
change was specific for SCO 5 and concerned defining SIGURG as SIGUSR1.]
------------------------------------------------------------------------------
Ticket 150 from [email protected] offers to compile wu-ftpd
on some AIX machines. This is not a bug report. However, I would welcome
any reports concerning AIX compliations.
------------------------------------------------------------------------------
Ticket 151 from [email protected] (Marek Michalkiewicz)
reported a bug in Virtual Root processing that has been fixed prior to beta
14 release. The bug in attempting to reuse space allocated to pw->pw-dir
instead of freeing and resizing it to a size that can hold the virtual root
directory. This ticket is closed.
------------------------------------------------------------------------------
Ticket 176 from Danielle Hopkins <[email protected]> report that
compiling beta 12 on Digital Unix 3.2 with enhanced security is not working.
I believe this issue was resolved in beta 13.
------------------------------------------------------------------------------
Ticket 198 from Ian Willis <[email protected]> suggested a modification for Beta 12
concering the form of the ps command used in ftpwho and ftpcount. Since I
reversed the change in beta-13, the problem that this addresses no longer
exists. This ticket is closed.
------------------------------------------------------------------------------
Ticket 199 from Roman Gnatenko <[email protected]> reported that "cd ~" did not
work in version 2.4. It does work fine in beta-13, so this ticket is closed.
------------------------------------------------------------------------------
Ticket 200 from Alvaro Fdez Lago <[email protected]> reports
success building beta-12 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 202 from Andrew Maltsev <[email protected]> reported the duplicate printf
selector when a bad shell reply was going to be made. This was fixed before
beta-14 and is now closed.
------------------------------------------------------------------------------
Ticket 213 from Randall J. Wormser <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 224 from Michael Eisele <[email protected]> and 293 from
Gary Mills <[email protected]> reported a problem with an extra %s in a
printf that was in beta 12 but fixed in beta 13. This ticket is closed.
------------------------------------------------------------------------------
Ticket 230 from Jon Madison <[email protected]> reports successful compilation
of beta 12 on IRIX 6.2 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 245 from Kevin Hoffer <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 251 from Neuromancer <[email protected]> reported that
some form of shadow passwords don't work correctly with beta-13 under Linux.
I could not reproduce this on RedHat 4.0. So, I have closed this ticket.
------------------------------------------------------------------------------
Ticket 258 from Michael E Quan <[email protected]> appears to be another
person who didn't read the NOTES file concerning the use of "-a" in
/etc/inetd.conf in order to get ftpd to use the ftpaccess file and the
various enhancements.
------------------------------------------------------------------------------
Ticket 259 from <[email protected]> appears to be another person who didn't
read the NOTES file concerning the use of "-a" in /etc/inetd.conf in order
to get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 261 from Jon Madison <[email protected]> reports successful complilation
of beta 13 on IRIX 6.2 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 268 from Andrew R. Orndorff <[email protected]>
offered some patches for AIX, but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 273 from Usuario-Moisis <[email protected]> wants to know how
to use BISON in place of YACC on AIX. I don't know. I have to close this
ticket. Maybe someone else can help him.
------------------------------------------------------------------------------
Ticket 278 from Ignacio de Cordoba <[email protected]> is having problems
getting "ls" and "dir" to work, which is a common problem that usually
involves properly setting up the environment. It is not a wu-ftpd problem.
------------------------------------------------------------------------------
Ticket 280 from Hannu Laurila <[email protected]> illustrates a common
misconception about the use of a dash as the first character in a password.
This is a feature to turn off extended messages. If the user has a dash as the
first character of his/her password, then that dash must be preceeded with
another dash as an "escape" character to insure that the password is correctly
understood. This ticket is closed.
------------------------------------------------------------------------------
Ticket 291 from Sergio Javier Klarreich <[email protected]> appeared to
just be a pleasant greeting. It does not appear to report a bug report.
------------------------------------------------------------------------------
Ticket 296 from Jim Easton <[email protected]> bet a month's salary that
there was an alias on my development platforms for cc. He was wrong, but
I asked him to give the money to charity. I don't know if he did.
------------------------------------------------------------------------------
Ticket 318 from John R. Long <[email protected]> illustrates a common
misconception about the use of a dash as the first character in a password.
This is a feature to turn off extended messages. If the user has a dash as the
first character of his/her password, then that dash must be preceeded with
another dash as an "escape" character to insure that the password is correctly
understood. This ticket is closed.
------------------------------------------------------------------------------
Ticket 321 from Are Bryne <[email protected]> asked a variety of questions
about the upload directive in ftpaccess. I have answered him in private mail.
This ticket is closed.
------------------------------------------------------------------------------
Ticket 324 from Johannes Ruscheinski <[email protected]> offered
some patches for Linux, but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 331 from Emil Isberg <[email protected]> noted that he was having
no problems with beta-13 on Solaris 2.5 or 2.5.1.This is not a bug report, but
I do appreciate getting these types of messages. Also, beta-14 is the first
release of the server to be tested by me on Solaris 2.5.1, so it will be
the first one for which I can accept bug reports with any hopes of reproducing
it.
------------------------------------------------------------------------------
Ticket 351 from <[email protected]> is trying to setup "guestgroup"
and has apparently failed to do so. I have directed him to the FAQ and have
heard nothing more from him. So, I am closing this ticket.
------------------------------------------------------------------------------
Tickets 352 & 353 from Frank Winkler <[email protected]> is trying to setup
the server on Solaris, but apparently does not have all the devices and
shared libaries in place to make it possible for "ls" to work. I suggested
some things for him to investigate, but have heard nothing further. I am
closing this ticket.
------------------------------------------------------------------------------
Ticket 363 from Gary Mills <[email protected]> is complaining about
about the use of a dash as the first character in a password being used to
turn off extended messages. Since this feature has been part of the server
long before I took over maintenance, I am not going to change the behavior
in this release. That's just the way it has to be. If the folks on the
mailing list can come up with a better solution that we can implement in
a future release, I am willing to consider it, but not for release 2.4.2
or 2.4.3. This ticket is closed.
------------------------------------------------------------------------------
Ticket 366 from Paul Whittenburg <[email protected]> offers some documentation
fixes for the ftpaccess page but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 367 from Jun-ichiro Itoh <[email protected]> reported a problem with
an extra %s in a printf that was in beta 12 but fixed in beta 13. This ticket
is closed.
------------------------------------------------------------------------------
Ticket 369 from Mark Bergman <[email protected]> said that he
could not get beta 13 to compile on Solaris 2.5 becuase of a number of
missing files. I believe he had a bad copy of the distribution since
I could not reproduce this problem on Solaris 2.5.1 or 2.4. I am closing
this ticket.
------------------------------------------------------------------------------
Ticket 374 from Ryan Rawson <[email protected]> claimed that virutal hosting
didn't work on Linux 2.0.29 and 2.0.30. This may be true. I could not
reproduce the problem on RedHat 4.0, so I can fix it. I think he is right
about it being a kernel or library problem. This ticket is closed.
-----------------------------------------------------------------------------

From [email protected] Wed Aug 6 12:15:42 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA21595;
Wed, 6 Aug 1997 12:05:11 -0500 (CDT)
Received: from socks1.raleigh.ibm.com (socks1.raleigh.ibm.com [204.146.167.124])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA01054
for <[email protected]>; Wed, 6 Aug 1997 12:01:08 -0500 (CDT)
Received: from rtpmail02.raleigh.ibm.com by socks1.raleigh.ibm.com (AIX 4.1/UCB 5.64/RTP-FW1.0)
id AA23310; Wed, 6 Aug 1997 13:00:58 -0400
Received: from houns01.houston.ibm.com (houns01.houston.ibm.com [9.35.40.2])
by rtpmail02.raleigh.ibm.com (8.8.5/8.8.5/RTP-ral-1.1) with SMTP id NAA23010
for <[email protected]>; Wed, 6 Aug 1997 13:01:00 -0400
Received: by houns01.houston.ibm.com(Lotus SMTP MTA v1.1 (385.6 5-6-1997)) id 862564EB.005D7690 ; Wed, 6 Aug 1997 12:00:52 -0500
Message-Id: <[email protected]>
Date: Wed, 6 Aug 1997 12:00:50 -0500
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
X-Lotus-Fromdomain: HPSI
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Thank you all for the suggestions. I did a 'mknod /chrooteddir/dev/null c
2 2' but still see the same fopen on /dev/null errors.

Thuy
---------------------- Forwarded by Thuy Tran/HPSI/US on 08/06/97 11:53 AM
---------------------------

#
# > I'm seeing one particular message in my syslog for every login
(anonymous &
# > guest ids) entry. My syslog.conf has one line:
# > *.debug /var/adm/syslog
# >
# > Here's a sample of my /var/adm/syslog:
# > Aug 4 09:16:08 ftp ftpd[6996]: ftp FTP server (Version
wu-2.4(7)
# > Tue Jul 29 09:54:53 CDT 1997) ready.
# > Aug 4 09:16:10 ftp ftpd[6996]: command: USER guestid^M
# > Aug 4 09:16:13 ftp ftpd[6996]: command: PASS password^M
# > Aug 4 09:16:13 ftp ftpd[6996]: syslog: fopen on /dev/null
# > failed, errno 2
# >
# > Does anybody know what this is all about and how to clean it up? I'm
# > running wu-2.4 on AIX 4.2.0
# >
#
# Yes. For some reason, the syslog() function in AIX (or some function it
# calls) wants to open /dev/null. If the ftp user is anonymous or a guest
# user, they are chrooted at that point and the device can't be opened.
The
# solution is to make sure the syslog function that's included in the
wu-ftpd
# support library is linked into your executable.
Doesn't simply creating the /dev/null in the chroot area solve the problem
?
--
Kent Landfield Phone: 1-817-545-2502
The Landfield Group FAX: 1-817-545-7650
Email: [email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to [email protected].
Search the Usenet Hypertext FAQ Archive at http://www.faqs.org/faqs/

From [email protected] Wed Aug 6 15:28:11 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA12484;
Wed, 6 Aug 1997 15:20:49 -0500 (CDT)
Received: from socks1.raleigh.ibm.com (socks1.raleigh.ibm.com [204.146.167.124])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA10014
for <[email protected]>; Wed, 6 Aug 1997 15:15:24 -0500 (CDT)
Received: from rtpmail02.raleigh.ibm.com by socks1.raleigh.ibm.com (AIX 4.1/UCB 5.64/RTP-FW1.0)
id AA28874; Wed, 6 Aug 1997 16:15:18 -0400
Received: from houns01.houston.ibm.com (houns01.houston.ibm.com [9.35.40.2])
by rtpmail02.raleigh.ibm.com (8.8.5/8.8.5/RTP-ral-1.1) with SMTP id QAA15522
for <[email protected]>; Wed, 6 Aug 1997 16:15:20 -0400
Received: by houns01.houston.ibm.com(Lotus SMTP MTA v1.1 (385.6 5-6-1997)) id 862564EB.006F4084 ; Wed, 6 Aug 1997 15:15:10 -0500
Message-Id: <[email protected]>
Date: Wed, 6 Aug 1997 15:15:03 -0500
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: fopen error on /dev/null
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
X-Lotus-Fromdomain: HPSI
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I forgot to set the right permissions on my new /dev/null special file but
once I did that, I no longer see the fopen errors on /dev/null messages in
my syslog. Thank you again for everyone's input!

Thuy
---------------------- Forwarded by Thuy Tran/HPSI/US on 08/06/97 03:10 PM
---------------------------

Thuy Tran
08/06/97 12:00 PM

To: [email protected]
cc:
Subject:

Thank you all for the suggestions. I did a 'mknod /chrooteddir/dev/null c
2 2' but still see the same fopen on /dev/null errors.

Thuy
---------------------- Forwarded by Thuy Tran/HPSI/US on 08/06/97 11:53 AM
---------------------------

#
# > I'm seeing one particular message in my syslog for every login
(anonymous &
# > guest ids) entry. My syslog.conf has one line:
# > *.debug /var/adm/syslog
# >
# > Here's a sample of my /var/adm/syslog:
# > Aug 4 09:16:08 ftp ftpd[6996]: ftp FTP server (Version
wu-2.4(7)
# > Tue Jul 29 09:54:53 CDT 1997) ready.
# > Aug 4 09:16:10 ftp ftpd[6996]: command: USER guestid^M
# > Aug 4 09:16:13 ftp ftpd[6996]: command: PASS password^M
# > Aug 4 09:16:13 ftp ftpd[6996]: syslog: fopen on /dev/null
# > failed, errno 2
# >
# > Does anybody know what this is all about and how to clean it up? I'm
# > running wu-2.4 on AIX 4.2.0
# >
#
# Yes. For some reason, the syslog() function in AIX (or some function it
# calls) wants to open /dev/null. If the ftp user is anonymous or a guest
# user, they are chrooted at that point and the device can't be opened.
The
# solution is to make sure the syslog function that's included in the
wu-ftpd
# support library is linked into your executable.
Doesn't simply creating the /dev/null in the chroot area solve the problem
?
--
Kent Landfield Phone: 1-817-545-2502
The Landfield Group FAX: 1-817-545-7650
Email: [email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to [email protected].
Search the Usenet Hypertext FAQ Archive at http://www.faqs.org/faqs/

From [email protected] Thu Aug 7 11:59:08 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA21027;
Thu, 7 Aug 1997 11:48:22 -0500 (CDT)
Received: from rintintin.sierra.com (rintintin.sierra.com [207.82.195.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA20077
for <[email protected]>; Thu, 7 Aug 1997 11:40:07 -0500 (CDT)
Received: from localhost (philip@localhost) by rintintin.sierra.com (8.7.6/8.7.3-jmm-p) with SMTP id JAA04330 for <[email protected]>; Thu, 7 Aug 1997 09:40:03 -0700 (PDT)
Message-Id: <Pine.GSO.3.96.970807093653.567K-100000@rintintin>
Date: Thu, 7 Aug 1997 09:40:03 -0700 (PDT)
Reply-To: [email protected]
Sender: [email protected]
From: Philip Hallstrom <[email protected]>
To: [email protected]
Subject: ftpshut works, but does not display my message :(
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: philip@rintintin
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi all,
I've looked all over and can't find anything about this.

I've got "shutdown /etc/ftp/msgs/shutdown" in my ftpaccess file and I used
the following command to create that file:

# ftpshut now "The staging server will be down for about an hour for
maintanence. Sorry for the inconvenience."

And the file looks like (no ---):

---------------------------
1997 07 07 09 39 0010 0005
The staging server will be down for about an hour for maintanence.
Sorry for the inconvenience.
---------------------------

Upon ftp'ing to the machine I get:

---------------------------
philip@astro:/sierra/src/wu-ftpd-2.4/bin% ftp astro
Connected to astro.
500 astro FTP server shut down -- please try again later.
ftp> qui
---------------------------

So it works, but it's not seeing my message. Any ideas why?

--
Philip Hallstrom Sierra On-Line, Inc.
[email protected] http://www.sierra.com/

From [email protected] Thu Aug 7 12:22:28 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA25498;
Thu, 7 Aug 1997 12:15:51 -0500 (CDT)
Received: from ts.southcom.net ([email protected] [207.69.189.145])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA25143
for <[email protected]>; Thu, 7 Aug 1997 12:14:51 -0500 (CDT)
Received: from NS1.southcom.net (ws1.southcom.net [207.69.189.147])
by ts.southcom.net (8.8.5/8.8.5) with SMTP id MAA29701
for <[email protected]>; Thu, 7 Aug 1997 12:29:31 -0400
Message-Id: <[email protected]>
Date: Thu, 07 Aug 1997 13:01:09 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Jeff Myers <[email protected]>
To: [email protected]
Subject: Virtual domains resolve to Parent...
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender: [email protected]
X-Mailer: Windows Eudora Pro Version 3.0 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

We have virtual web domains and while we haven't setup
virtual ftp (yet) whenever someone ftp's to say

www.virtual.com it resolves to the virtual serve which in
our case has an ftp server running.

Is there a way to limit ftpd to respond only to one IP?

Thanks...Jeff

From [email protected] Thu Aug 7 15:17:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA10484;
Thu, 7 Aug 1997 15:11:45 -0500 (CDT)
Received: from unixfe.rl.ac.uk ([130.246.12.16])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA10209
for <[email protected]>; Thu, 7 Aug 1997 15:04:56 -0500 (CDT)
Received: from localhost (mwe@localhost) by unixfe.rl.ac.uk (8.7.3/8.7.3) with SMTP
id VAA23800 for <[email protected]>; Thu, 7 Aug 1997 21:04:08 +0100
Message-Id: <[email protected]>
Date: Thu, 7 Aug 1997 21:04:08 +0100 (BST)
Reply-To: [email protected]
Sender: [email protected]
From: Mike Ellwood <[email protected]>
To: wuftpd mailing list <[email protected]>
Subject: ftp users access denied ((Version wu-2.4(1)) - non-Beta on AIX)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I have found that certain users are getting

"access denied", and they are not in /usr/local/etc/ftpusers.

It would seem to be all users after a certain point in /etc/passwd.

User fred access denied...
FTP LOGIN REFUSED (bad shell) FROM ...etc

There is nothing odd about their shell entry in /etc/passwd.

It seems to be the 548th user and everyone after that (out of 588).
I thought I might be hitting some limit somewhere, but
I was able to remove a user from before the 1st problem one, and
it did not help.

IS this a known problem with the pre-Beta version?

Thanks,

--
[email protected]

From [email protected] Fri Aug 8 16:19:24 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA31935;
Fri, 8 Aug 1997 16:12:24 -0500 (CDT)
Received: from PHRI.NYU.EDU ([email protected] [128.122.136.35])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA31549
for <[email protected]>; Fri, 8 Aug 1997 16:06:09 -0500 (CDT)
Received: from phri (572@LOCALHOST [127.0.0.1])
by PHRI.NYU.EDU (8.8.5/8.8.5) with ESMTP id RAA00053
for <[email protected]>; Fri, 8 Aug 1997 17:06:04 -0400 (EDT)
Message-Id: <[email protected]>
Date: Fri, 08 Aug 1997 17:06:00 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Mark Bergman <[email protected]>
To: [email protected]
Subject: problem with S/KEY (Solaris 2.5, wu 2.4.2-B13)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I'm unable to get wu-ftpd (wu-2.4.2-academ[BETA-13](1)) to work
correctly with the S/KEY mods on my Solaris 2.5 system. I removed the
"#undef SKEY" from config.h, and edited the src/Makefile, adding -DSKEY
and -lskey, and the package compiled cleanly, with only the warning:

cc -g -I.. -I../support -L../support -DSKEY -c ftpd.c
ftpd.c: In function `user':
ftpd.c:1255: warning: passing arg 1 of `skeyaccess' from incompatible pointer type

I'm using gcc 2.6.3.

Other programs (telnet, Wietse Venema's ftpd) that rely upon skey work
correctly.

Anonymous ftp works fine, but when real users (with entries in /etc/skey.*
or not) attempt to connect, they get:

421 Service not available, remote server has closed connection
Login failed.

The log file records:

Aug 8 16:13:29 FTPHOST.PHRI.NYU.EDU ftpd[24327]: <--- 220
Aug 8 16:13:29 FTPHOST.PHRI.NYU.EDU ftpd[24327]: hercules FTP server (Version
wu-2.4.2-academ[BETA-13](1) Fri Aug 8 11:54:36 EDT 1997) ready.
Aug 8 16:13:30 FTPHOST.PHRI.NYU.EDU ftpd[24327]: command: USER johndoe
Aug 8 16:13:30 FTPHOST.PHRI.NYU.EDU ftpd[24327]: exiting on signal 11

If I compile the package without the -DSKEY/-lskey changes, real
users are able to login fine, and anonymous ftp continues to work
fine.

I looked through the wu-ftpd mailing list archives and the sun-managers
list archives, but didn't see any solutions to this problem.
----
Mark Bergman [email protected]
System and Network Administrator 212-578-0822
Public Health Research Institute Rm. 1074, 455 1st Ave, NY NY, 10016

From [email protected] Sat Aug 9 11:33:03 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA00005;
Sat, 9 Aug 1997 11:27:45 -0500 (CDT)
Received: from air.porte.com (air.porte.com [207.152.79.25])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA32361
for <[email protected]>; Sat, 9 Aug 1997 11:24:58 -0500 (CDT)
Received: from air.porte.com (localhost [127.0.0.1]) by air.porte.com (8.7.6/8.7.3) with SMTP id LAA07126 for <[email protected]>; Sat, 9 Aug 1997 11:24:25 -0500
Message-Id: <[email protected]>
Date: Sat, 09 Aug 1997 11:24:24 -0500
Reply-To: [email protected]
Sender: [email protected]
From: Brian Clare <[email protected]>
To: [email protected]
Subject: guest login question
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; Linux 2.0.27 i586)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

To the List:

I've tried to follow Michael Brennen's excellent outline for setting up
guest accounts, but am having problems logging in via ftp. I've set the
password for the account in /etc/passwd. Do I need the same password in
~/etc/passwd as well, or should it be left "*"? I'm also using the
ftponly script (/bin/ftponly) as the shell on the account, and it's
listed in /etc/shells.

I'd appreciate any pointers.
--
Regards...

Brian Clare

From [email protected] Sat Aug 9 15:40:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA12980;
Sat, 9 Aug 1997 15:32:33 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA12242
for <[email protected]>; Sat, 9 Aug 1997 15:28:26 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id PAA20060;
Sat, 9 Aug 1997 15:28:19 -0500
Message-Id: <[email protected]>
Date: Sat, 9 Aug 1997 15:28:19 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: Brian Clare <[email protected]>
Cc: [email protected]
Subject: Re: guest login question
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Sat, 9 Aug 1997, Brian Clare wrote:

> guest accounts, but am having problems logging in via ftp. I've set the
> password for the account in /etc/passwd. Do I need the same password in
> ~/etc/passwd as well, or should it be left "*"?

It is not needed in ~/etc/passwd.

> I'm also using the
> ftponly script (/bin/ftponly) as the shell on the account, and it's
> listed in /etc/shells.

Are you using shadow passwords? If so you may have to do a little
customization, depending on the version (at least I did).

What are the specific failure messages? You might take the failure
numbers and run them down in the source to see what causes the failure.

Go over the details of the guest howto very carefully; it only takes one
missed one to goof it up.

-- Michael

From [email protected] Sun Aug 10 04:27:47 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA24822;
Sun, 10 Aug 1997 04:20:34 -0500 (CDT)
Received: from owlman.academ.com ([email protected] [198.137.249.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA25014
for <[email protected]>; Sun, 10 Aug 1997 04:12:41 -0500 (CDT)
Received: (from sob@localhost)
by owlman.academ.com (8.8.7/8.8.5) id EAA02300
for [email protected]; Sun, 10 Aug 1997 04:12:38 -0500 (CDT)
Message-Id: <[email protected]>
Date: Sun, 10 Aug 1997 04:12:38 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Stan Barber)
To: [email protected]
Subject: Latest CLOSED-TICKETS-14 (getting really close now!)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

CLOSED-TICKETS (BETA 14)

This note contains a summary of all tickets closed before the release of beta
14. Most of these were not bug reports. Some are questions that were
answered in the documentation or the various FAQs. Some were bug reports
about previous beta releases that have already been fixed in the latest
beta (13). A few were complaints about some fundamental design decisions
made when wu-ftpd was created. Some were questions I did answer and have
closed. Some were notes about successful compliations of beta 13 or beta 12
on platforms to which I have not access. Some were offers of patches that
never materialized.

In any case, they are all closed. They are not relevant to beta 14 or any
future release. If you don't see that your ticket number is mentioned here
and it was not mentioned as being a closed ticket or bug fix in the beta 13
distribution, you should assume it is open. Some of these open tickets will
be closed as bug fixes. A few will remain open as they are feature
enhancements. These feature enhancements will be discussed on this list
when I am ready to start outlining the details of release 2.5.

------------------------------------------------------------------------------
Ticket 7 from Fredrik Nyman <[email protected]> concerns problems
making the ftpaccess file work on IRIX 5.3. I can't reproduce this since
I don't have access to IRIX and other who do don't report this as being
a problem. My guess is that there is no "-a" at the end of the /etc/inetd.conf
line for starting ftpd. [I should have closed this sooner, but didn't.]
------------------------------------------------------------------------------
Ticket 9 from Frank Jacquette <[email protected]> reports a problem
compiling 2.4.2 on AIX. This problem is known to have been addressed on or
before beta 13 so this ticket is closed.
------------------------------------------------------------------------------
Ticket 34 from Jan Prikryl <[email protected]> offered to send
some changes relevant to IRIX 6.2, but never sent them. I have closed this
ticket. However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 39 from Nathan Neulinger <[email protected]> concerns a problem
with signal 10 aborts on HP/UX. I believe this problem was fixed in beta 13.
I am closing this ticket since I can't reproduce his problem without access
to HP/UX.
------------------------------------------------------------------------------
Ticket 48 from Scott Mulligan <[email protected]> was a request to
talk to me about something. We never made contact. He didn't acknowledge
my followup message. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 53 from Steve Doty <[email protected]> claimed to have problems
using the betas and the guestgroup function. His message was not clear on
exactly what the problem was, but never answered my request for more
information. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 68 from <[email protected]> was not a bug report but a request for
more assistance in understanding how virtual ftp support works on wu-ftpd.
This ticket is closed since it is not a bug report.
------------------------------------------------------------------------------
Ticket 78 from Stephen Cliffe <[email protected]> reported a
problem using "ls" under wu-ftpd on Solaris 2.5. I can't reproduce this
under Solaris 2.4 or Solaris 2.5.1, so I am closing this ticket.
------------------------------------------------------------------------------
Tickets 89 and 91 from Sam Hulick <[email protected]> reported a problem using
"ls -l" with wu-ftpd but did not identify the platform. He did not respond
to my requests for more information, so I am closing this ticket.
------------------------------------------------------------------------------
Ticket 93 from Ricardo Malta <[email protected]> reported a problem
using ls on beta 10 under AIX. Others have reported success doing this, but
unfortunately, I have no AIX to work with so I can reproduce this. I have
closed this ticket.
------------------------------------------------------------------------------
Ticket 99 from Becki Kain <[email protected]> offered some
suggeestions for the configuration of wu-ftpd on Digital Unix. These changes
were already included in beta 13. This ticket is closed.
------------------------------------------------------------------------------
Ticket 101 from Ian Willis <[email protected]> askes about the use of "user@" and
"user@host" conventions for anonymous ftp. This is not a bug report.
-----------------------------------------------------------------------------
Ticket 104 from Tim Hogard <[email protected]> suggested that using
a default salt of "xx" might possibly be exploited when attempting to login
via the server. I don't know of a senario given the logic in the software
in which this might be true. Perhaps someone can provide one. In the meantime,
I am closing this ticket.
------------------------------------------------------------------------------
Ticket 116 from James Ford <[email protected]> offers to compile wu-ftpd
on some AIX machines. This is not a bug report. However, I would welcome
any reports concerning AIX compliations.
------------------------------------------------------------------------------
Tickets 127, 171 & 240 from Becki Kain <[email protected]> offers to
compile wu-ftpd on Digital Unix 4.0. This is not a bug report. However, I
would welcome any reports concerning Digital Unix compliations. So, Becki,
go ahead and compile away. Send me a report after you do it.
------------------------------------------------------------------------------
Ticket 128 from Bernhard Rosenkraenzer <[email protected]> reports
that ftpaccess is not being seen on Linux. However, he does not provide
any information concerning the /etc/inetd.conf line for starting ftpd.
Since I can't reproduce this bug on Linux, this ticket is closed.
------------------------------------------------------------------------------
Ticket 144 from Andrew Ford <[email protected]> reported a bug in
beta-11 that I can't produce in beta 13. It concerned the use of the dirs
and nodirs option in different upload commands in the ftpaccess file. He
said that they interfered with each other. Since I can't produce it in
beta 13, this ticket is closed.
------------------------------------------------------------------------------
Ticket 148 from Ian Willis <[email protected]> suggested a modification for Beta 12
that was already added, but I apparently didn't notice his ticket until this
go round. Since this issue has been addressed, the ticket is closed. [The
change was specific for SCO 5 and concerned defining SIGURG as SIGUSR1.]
------------------------------------------------------------------------------
Ticket 150 from [email protected] offers to compile wu-ftpd
on some AIX machines. This is not a bug report. However, I would welcome
any reports concerning AIX compliations.
------------------------------------------------------------------------------
Ticket 151 from [email protected] (Marek Michalkiewicz)
reported a bug in Virtual Root processing that has been fixed prior to beta
14 release. The bug in attempting to reuse space allocated to pw->pw-dir
instead of freeing and resizing it to a size that can hold the virtual root
directory. This ticket is closed.
------------------------------------------------------------------------------
Ticket 176 from Danielle Hopkins <[email protected]> report that
compiling beta 12 on Digital Unix 3.2 with enhanced security is not working.
I believe this issue was resolved in beta 13.
------------------------------------------------------------------------------
Ticket 198 from Ian Willis <[email protected]> suggested a modification for Beta 12
concering the form of the ps command used in ftpwho and ftpcount. Since I
reversed the change in beta-13, the problem that this addresses no longer
exists. This ticket is closed.
------------------------------------------------------------------------------
Ticket 199 from Roman Gnatenko <[email protected]> reported that "cd ~" did not
work in version 2.4. It does work fine in beta-13, so this ticket is closed.
------------------------------------------------------------------------------
Ticket 200 from Alvaro Fdez Lago <[email protected]> reports
success building beta-12 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 202 from Andrew Maltsev <[email protected]> reported the duplicate printf
selector when a bad shell reply was going to be made. This was fixed before
beta-14 and is now closed.
------------------------------------------------------------------------------
Ticket 213 from Randall J. Wormser <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 224 from Michael Eisele <[email protected]> and 293 from
Gary Mills <[email protected]> reported a problem with an extra %s in a
printf that was in beta 12 but fixed in beta 13. This ticket is closed.
------------------------------------------------------------------------------
Ticket 230 from Jon Madison <[email protected]> reports successful compilation
of beta 12 on IRIX 6.2 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 245 from Kevin Hoffer <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 251 from Neuromancer <[email protected]> reported that
some form of shadow passwords don't work correctly with beta-13 under Linux.
I could not reproduce this on RedHat 4.0. So, I have closed this ticket.
------------------------------------------------------------------------------
Ticket 258 from Michael E Quan <[email protected]> appears to be another
person who didn't read the NOTES file concerning the use of "-a" in
/etc/inetd.conf in order to get ftpd to use the ftpaccess file and the
various enhancements.
------------------------------------------------------------------------------
Ticket 259 from <[email protected]> appears to be another person who didn't
read the NOTES file concerning the use of "-a" in /etc/inetd.conf in order
to get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 261 from Jon Madison <[email protected]> reports successful complilation
of beta 13 on IRIX 6.2 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 268 from Andrew R. Orndorff <[email protected]>
offered some patches for AIX, but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 273 from Usuario-Moisis <[email protected]> wants to know how
to use BISON in place of YACC on AIX. I don't know. I have to close this
ticket. Maybe someone else can help him.
------------------------------------------------------------------------------
Ticket 278 from Ignacio de Cordoba <[email protected]> is having problems
getting "ls" and "dir" to work, which is a common problem that usually
involves properly setting up the environment. It is not a wu-ftpd problem.
------------------------------------------------------------------------------
Ticket 280 from Hannu Laurila <[email protected]> illustrates a common
misconception about the use of a dash as the first character in a password.
This is a feature to turn off extended messages. If the user has a dash as the
first character of his/her password, then that dash must be preceeded with
another dash as an "escape" character to insure that the password is correctly
understood. This ticket is closed.
------------------------------------------------------------------------------
Ticket 291 from Sergio Javier Klarreich <[email protected]> appeared to
just be a pleasant greeting. It does not appear to report a bug report.
------------------------------------------------------------------------------
Ticket 296 from Jim Easton <[email protected]> bet a month's salary that
there was an alias on my development platforms for cc. He was wrong, but
I asked him to give the money to charity. I don't know if he did.
------------------------------------------------------------------------------
Ticket 316 from Paul Wouters <[email protected]> claimed that he could not
overwrite files or delete existing files when logged in as a real user.
I can't reproduce this. Perhaps it is a configuration issue. Anyway,
I can reproduce it, so I am closing the ticket.
------------------------------------------------------------------------------
Ticket 318 from John R. Long <[email protected]> illustrates a common
misconception about the use of a dash as the first character in a password.
This is a feature to turn off extended messages. If the user has a dash as the
first character of his/her password, then that dash must be preceeded with
another dash as an "escape" character to insure that the password is correctly
understood. This ticket is closed.
------------------------------------------------------------------------------
Ticket 321 from Are Bryne <[email protected]> asked a variety of questions
about the upload directive in ftpaccess. I have answered him in private mail.
This ticket is closed.
------------------------------------------------------------------------------
Ticket 324 from Johannes Ruscheinski <[email protected]> offered
some patches for Linux, but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 331 from Emil Isberg <[email protected]> noted that he was having
no problems with beta-13 on Solaris 2.5 or 2.5.1.This is not a bug report, but
I do appreciate getting these types of messages. Also, beta-14 is the first
release of the server to be tested by me on Solaris 2.5.1, so it will be
the first one for which I can accept bug reports with any hopes of reproducing
it.
------------------------------------------------------------------------------
Ticket 336 from Mark Cain <[email protected]> was trying to get beta-13
to work on a Solaris 2.4 sparc marchine with Sparc C, which is a configuration
I run. I can't reproduce his problem (it appears that /etc/inted is passing
the second option on the command line to ftpd, but not the first), so I have
to close this ticket.
------------------------------------------------------------------------------
Ticket 346 from Eric Meyers <[email protected]> needed
some information on using beta-13 on HPUX. I offered what help I could
and pointed him at the mailing list. This ticket is closed.
------------------------------------------------------------------------------
Ticket 348 from Peter deFriesse <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 351 from <[email protected]> is trying to setup "guestgroup"
and has apparently failed to do so. I have directed him to the FAQ and have
heard nothing more from him. So, I am closing this ticket.
------------------------------------------------------------------------------
Tickets 352 & 353 from Frank Winkler <[email protected]> is trying to setup
the server on Solaris, but apparently does not have all the devices and
shared libaries in place to make it possible for "ls" to work. I suggested
some things for him to investigate, but have heard nothing further. I am
closing this ticket.
------------------------------------------------------------------------------
Ticket 363 from Gary Mills <[email protected]> is complaining about
about the use of a dash as the first character in a password being used to
turn off extended messages. Since this feature has been part of the server
long before I took over maintenance, I am not going to change the behavior
in this release. That's just the way it has to be. If the folks on the
mailing list can come up with a better solution that we can implement in
a future release, I am willing to consider it, but not for release 2.4.2
or 2.4.3. This ticket is closed.
------------------------------------------------------------------------------
Ticket 366 from Paul Whittenburg <[email protected]> offers some documentation
fixes for the ftpaccess page but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 367 from Jun-ichiro Itoh <[email protected]> reported a problem with
an extra %s in a printf that was in beta 12 but fixed in beta 13. This ticket
is closed.
------------------------------------------------------------------------------
Ticket 369 from Mark Bergman <[email protected]> said that he
could not get beta 13 to compile on Solaris 2.5 becuase of a number of
missing files. I believe he had a bad copy of the distribution since
I could not reproduce this problem on Solaris 2.5.1 or 2.4. I am closing
this ticket.
------------------------------------------------------------------------------
Ticket 374 from Ryan Rawson <[email protected]> claimed that virutal hosting
didn't work on Linux 2.0.29 and 2.0.30. This may be true. I could not
reproduce the problem on RedHat 4.0, so I can fix it. I think he is right
about it being a kernel or library problem. This ticket is closed.
-----------------------------------------------------------------------------
Ticket 382 from Roger Burroughes <[email protected]> noted that the
Sun problem with file locking covered in NOTES file is still a problem.
I agree, but it is really Sun's problem to fix. This ticket is closed.
-----------------------------------------------------------------------------
Ticket 383 from Chang_L <[email protected]> appears to be another person who
didn't read the NOTES file concerning the use of "-a" in /etc/inetd.conf in
order to get ftpd to use the ftpaccess file and the various enhancements.
-----------------------------------------------------------------------------
Ticket 401 from Philippe Guyot <[email protected]> sent a ticket in that had no
information in it. I have closed it.
------------------------------------------------------------------------------
Ticket 402 from Greg Smith <[email protected]> could not discover the
details CERT Advisory CA-97.16 from the announcement itself, and so attempted
to query me for them. I have responded to his request. This ticket is closed.
------------------------------------------------------------------------------
Ticket 405 from Earl Wallace <[email protected]> suggests that there
is some problem in the server that is actually caused by the ftp client.
This ticket is closed.
------------------------------------------------------------------------------
Ticket 406 from Earl Wallace <[email protected]> says that he didn' see
this problem later. This ticket is also closed.
------------------------------------------------------------------------------

From [email protected] Mon Aug 11 05:23:54 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA10045;
Mon, 11 Aug 1997 05:17:03 -0500 (CDT)
Received: from owlman.academ.com ([email protected] [198.137.249.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id FAA09256
for <[email protected]>; Mon, 11 Aug 1997 05:04:22 -0500 (CDT)
Received: (from sob@localhost)
by owlman.academ.com (8.8.7/8.8.5) id FAA08894
for [email protected]; Mon, 11 Aug 1997 05:04:21 -0500 (CDT)
Message-Id: <[email protected]>
Date: Mon, 11 Aug 1997 05:04:21 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Stan Barber)
To: [email protected]
Subject: Status of Beta-14
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I am delighted to announce that this is the last delay announcement I am
sending about BETA-14 before its long awaited release. It shall release
on or before August 15. I have spent alot of time trying to go through
all the relevant tickets. I have closed all those that I could
not reproduce or looked to be pilot error on behalf of the submittor.

I have addressed those that are bug fixes. There are around 65 bug fixes
in this release to date. I have a few more tickets to check out that
have to do with Solaris 2.5.1 (to which I now have access) and then I will
be able to release the softare.

I have cached those that are feature enhancement suggestions. Those will
appear on a new web page that will be for release 2.5. I will need the
user community to review these suggestions and prioritize the ones I don't
have strong feelings about for me. This will set the stage for the first
release of 2.5.

Here is the penultimate version of CLOSED-TICKETS-14.

-----
CLOSED-TICKETS (BETA 14)

This note contains a summary of all tickets closed before the release of beta
14. Most of these were not bug reports. Some are questions that were
answered in the documentation or the various FAQs. Some were bug reports
about previous beta releases that have already been fixed in the latest
beta (13). A few were complaints about some fundamental design decisions
made when wu-ftpd was created. Some were questions I did answer and have
closed. Some were notes about successful compliations of beta 13 or beta 12
on platforms to which I have not access. Some were offers of patches that
never materialized.

In any case, they are all closed. They are not relevant to beta 14 or any
future release. If you don't see that your ticket number is mentioned here
and it was not mentioned as being a closed ticket or bug fix in the beta 13
distribution, you should assume it is open. Some of these open tickets will
be closed as bug fixes. A few will remain open as they are feature
enhancements. These feature enhancements will be discussed on this list
when I am ready to start outlining the details of release 2.5.

------------------------------------------------------------------------------
Ticket 7 from Fredrik Nyman <[email protected]> concerns problems
making the ftpaccess file work on IRIX 5.3. I can't reproduce this since
I don't have access to IRIX and other who do don't report this as being
a problem. My guess is that there is no "-a" at the end of the /etc/inetd.conf
line for starting ftpd. [I should have closed this sooner, but didn't.]
------------------------------------------------------------------------------
Ticket 9 from Frank Jacquette <[email protected]> reports a problem
compiling 2.4.2 on AIX. This problem is known to have been addressed on or
before beta 13 so this ticket is closed.
------------------------------------------------------------------------------
Ticket 25 from Craig Rodrigues <[email protected]> asks if beta-11 supports
C2. The answer is probably, but I don't have anyway to know if it works for
sure. This ticket is closed.
------------------------------------------------------------------------------
Ticket 34 from Jan Prikryl <[email protected]> offered to send
some changes relevant to IRIX 6.2, but never sent them. I have closed this
ticket. However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 39 from Nathan Neulinger <[email protected]> concerns a problem
with signal 10 aborts on HP/UX. I believe this problem was fixed in beta 13.
I am closing this ticket since I can't reproduce his problem without access
to HP/UX.
------------------------------------------------------------------------------
Ticket 44 from Gildas Perrot <[email protected]>reports a problem with
beta-11 involving HP/UX 10.10. I don't have access to this, so I can't
diagnose it. This ticket is closed.
------------------------------------------------------------------------------
Ticket 48 from Scott Mulligan <[email protected]> was a request to
talk to me about something. We never made contact. He didn't acknowledge
my followup message. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 53 from Steve Doty <[email protected]> claimed to have problems
using the betas and the guestgroup function. His message was not clear on
exactly what the problem was, but never answered my request for more
information. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 63 from Gildas Perrot <[email protected]> suggests that the fields
from ftpwho should be documented on the man page. While this is a resonable
suggestion, it can't be done for all architectures since the output of ftpwho
is just an excerpt of the ps command. This ticket is closed.
------------------------------------------------------------------------------
Ticket 64 from Gildas Perrot <[email protected]> reports a bug with the
"site chmod" command in beta-11. I can't reproduce it in beta-13, so I
am closing this ticket.
------------------------------------------------------------------------------
Ticket 68 from <[email protected]> was not a bug report but a request for
more assistance in understanding how virtual ftp support works on wu-ftpd.
This ticket is closed since it is not a bug report.
------------------------------------------------------------------------------
Ticket 78 from Stephen Cliffe <[email protected]> reported a
problem using "ls" under wu-ftpd on Solaris 2.5. I can't reproduce this
under Solaris 2.4 or Solaris 2.5.1, so I am closing this ticket.
------------------------------------------------------------------------------
Tickets 89 and 91 from Sam Hulick <[email protected]> reported a problem using
"ls -l" with wu-ftpd but did not identify the platform. He did not respond
to my requests for more information, so I am closing this ticket.
------------------------------------------------------------------------------
Ticket 93 from Ricardo Malta <[email protected]> reported a problem
using ls on beta 10 under AIX. Others have reported success doing this, but
unfortunately, I have no AIX to work with so I can reproduce this. I have
closed this ticket.
------------------------------------------------------------------------------
Ticket 99 from Becki Kain <[email protected]> offered some
suggeestions for the configuration of wu-ftpd on Digital Unix. These changes
were already included in beta 13. This ticket is closed.
------------------------------------------------------------------------------
Ticket 101 from Ian Willis <[email protected]> askes about the use of "user@" and
"user@host" conventions for anonymous ftp. This is not a bug report.
-----------------------------------------------------------------------------
Ticket 104 from Tim Hogard <[email protected]> suggested that using
a default salt of "xx" might possibly be exploited when attempting to login
via the server. I don't know of a senario given the logic in the software
in which this might be true. Perhaps someone can provide one. In the meantime,
I am closing this ticket.
------------------------------------------------------------------------------
Ticket 116 from James Ford <[email protected]> offers to compile wu-ftpd
on some AIX machines. This is not a bug report. However, I would welcome
any reports concerning AIX compliations.
------------------------------------------------------------------------------
Tickets 127, 171 & 240 from Becki Kain <[email protected]> offers to
compile wu-ftpd on Digital Unix 4.0. This is not a bug report. However, I
would welcome any reports concerning Digital Unix compliations. So, Becki,
go ahead and compile away. Send me a report after you do it.
------------------------------------------------------------------------------
Ticket 128 from Bernhard Rosenkraenzer <[email protected]> reports
that ftpaccess is not being seen on Linux. However, he does not provide
any information concerning the /etc/inetd.conf line for starting ftpd.
Since I can't reproduce this bug on Linux, this ticket is closed.
------------------------------------------------------------------------------
Ticket 142 from Furio Ercolessi <[email protected]> reported a problem under
HPUX with user accounts that have passwords less than 8 characters in length.
I don't have access to HPUX, so I can't check this, but I could not
reproduce it on other operating systems I do have access to. So, I am
closing this ticket. If someone can help this guy out, I would appreciate
a copy of the message concerning the resolution.
------------------------------------------------------------------------------
Ticket 144 from Andrew Ford <[email protected]> reported a bug in
beta-11 that I can't produce in beta 13. It concerned the use of the dirs
and nodirs option in different upload commands in the ftpaccess file. He
said that they interfered with each other. Since I can't produce it in
beta 13, this ticket is closed.
------------------------------------------------------------------------------
Tickets 147 and 154 from Alan Halachmi <[email protected]> reported
that in beta-11 there was a problem with guestgroups, chroot and virtual ftp
servers. He claimed that chroot didn't work when connecting via virtual ftp.
I can't reproduce this with beta-13, so I am closing these tickets.
------------------------------------------------------------------------------
Ticket 148 from Ian Willis <[email protected]> suggested a modification for Beta 12
that was already added, but I apparently didn't notice his ticket until this
go round. Since this issue has been addressed, the ticket is closed. [The
change was specific for SCO 5 and concerned defining SIGURG as SIGUSR1.]
------------------------------------------------------------------------------
Ticket 149 from Jon Lewis <[email protected]> reported a problem with
beta-11 and virtual FTP configured that caused it to abort. I could not
reproduce this with beta-13.
------------------------------------------------------------------------------
Ticket 150 from [email protected] offers to compile wu-ftpd
on some AIX machines. This is not a bug report. However, I would welcome
any reports concerning AIX compliations.
------------------------------------------------------------------------------
Ticket 151 from [email protected] (Marek Michalkiewicz)
reported a bug in Virtual Root processing that has been fixed prior to beta
14 release. The bug in attempting to reuse space allocated to pw->pw-dir
instead of freeing and resizing it to a size that can hold the virtual root
directory. This ticket is closed.
------------------------------------------------------------------------------
Ticket 153 from Perry Rovers <[email protected]> suggested that it
was a bad idea to install the example files. He said that the FreeBSD install
did this, but under beta-13, it did not, so I am closing this ticket.
------------------------------------------------------------------------------
Ticket 158 from Peter Bivesand <[email protected]> and ticket 223 from Raewyn
Brundell <[email protected]> reported a problem with beta-12 on OSF/1.
This problem is known to be fixed in beta-13. These tickets have been closed.
------------------------------------------------------------------------------
Ticket 172 from Thomas Cornwell <[email protected]> reported
problems building a version of wu-ftpd on HPUX 10.2. As I don't have access
to HP-UX, I can't debug this problem, so I am closing this ticket.
------------------------------------------------------------------------------
Ticket 174 from Jay Schudter <[email protected]> noted that beta 12 compiled fine
on AIX 4.1.5. This is not really a bug report, but I do appreciate hearing
from folks who are able to get it to work on systems I have no access to.
------------------------------------------------------------------------------
Ticket 176 from Danielle Hopkins <[email protected]> report that
compiling beta 12 on Digital Unix 3.2 with enhanced security is not working.
I believe this issue was resolved in beta 13.
------------------------------------------------------------------------------
Ticket 177 from Paul Reece <[email protected]> and 195 from Gregory
Youngblood <[email protected]> claims that beta-12 would not correctly do
guest users, logging them instead as standard users. I can't produce this on
beta-13 so, I am closing these tickets.
------------------------------------------------------------------------------
Ticket 198 from Ian Willis <[email protected]> suggested a modification for Beta 12
concering the form of the ps command used in ftpwho and ftpcount. Since I
reversed the change in beta-13, the problem that this addresses no longer
exists. This ticket is closed.
------------------------------------------------------------------------------
Ticket 199 from Roman Gnatenko <[email protected]> reported that "cd ~" did not
work in version 2.4. It does work fine in beta-13, so this ticket is closed.
------------------------------------------------------------------------------
Ticket 200 from Alvaro Fdez Lago <[email protected]> reports
success building beta-12 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 202 from Andrew Maltsev <[email protected]> reported the duplicate printf
selector when a bad shell reply was going to be made. This was fixed before
beta-14 and is now closed.
------------------------------------------------------------------------------
Ticket 213 from Randall J. Wormser <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 214 from Michael Marxmeier <[email protected]> noted a number of
problems with beta 12 with HP-UX 9.04. Those problems that are note
specific to HP-UX were fixed in beta-13.
------------------------------------------------------------------------------
Ticket 224 from Michael Eisele <[email protected]> and 293 from
Gary Mills <[email protected]> reported a problem with an extra %s in a
printf that was in beta 12 but fixed in beta 13. This ticket is closed.
------------------------------------------------------------------------------
Ticket 226 from Alan Wyskowski <[email protected]> reports a problem using
beta-12 on a HPUX machines. I don't have one of those, so I can't help
him debug it.
------------------------------------------------------------------------------
Ticket 230 from Jon Madison <[email protected]> reports successful compilation
of beta 12 on IRIX 6.2 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 234 from Emil Isberg <[email protected]> reported that he was able
to compile beta-13 on Solaris 2.5/Sparc with the SunC compiler with no
problems. This is not a bug report, but I do appreciate getting these
types of messages.
------------------------------------------------------------------------------
Ticket 236 from Steve Beikman <[email protected]> reporting having
problem getting wu-ftpd-2.4.2-beta-13 compiling under Digital Unix 4.X with
C2. I told that I didn't have this stuff and therefore could not really
help him debug his problem. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 242 from Terry Cox <[email protected]> is trying compile
wu-ftpd 2.4 on Linux. I have suggested that he try 2.4.2-beta-13 instead.
I am closing this ticket.
------------------------------------------------------------------------------
Ticket 245 from Kevin Hoffer <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 251 from Neuromancer <[email protected]> reported that
some form of shadow passwords don't work correctly with beta-13 under Linux.
I could not reproduce this on RedHat 4.0. So, I have closed this ticket.
------------------------------------------------------------------------------
Ticket 253 from Steven G Smith <[email protected]> offered some
insights into geting beta-12 to compile on IRIX 5.3 using an SGI compiler.
I requested that he try on beta-13 and get back to me. As far as I can tell,
he hasn't. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 258 from Michael E Quan <[email protected]> appears to be another
person who didn't read the NOTES file concerning the use of "-a" in
/etc/inetd.conf in order to get ftpd to use the ftpaccess file and the
various enhancements.
------------------------------------------------------------------------------
Ticket 259 from <[email protected]> appears to be another person who didn't
read the NOTES file concerning the use of "-a" in /etc/inetd.conf in order
to get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 260 from Scot Needy <[email protected]> was reporting that
alot of ftpd's are lingering around on his OSF/1 version 3.2 system. Since
I don't have one of those, I can diagnose his problem. So, I am closing
this ticket.
------------------------------------------------------------------------------
Ticket 261 from Jon Madison <[email protected]> reports successful complilation
of beta 13 on IRIX 6.2 without changes. This is not a bug report, but
I do appreciate getting these types of messages.
------------------------------------------------------------------------------
Ticket 262 from Myrna Watt <[email protected]> was reporting a problem with
HP-UX on beta-12. I asked her to try beta-13, but have not heard from her
concerning it since I made the request. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 268 from Andrew R. Orndorff <[email protected]>
offered some patches for AIX, but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 272 from Jon Snyder <[email protected]> appears to be
another person who didn't read the NOTES file concerning the use of "-a" in
/etc/inetd.conf in order to get ftpd to use the ftpaccess file and the various
enhancements.
------------------------------------------------------------------------------
Ticket 273 from Usuario-Moisis <[email protected]> wants to know how
to use BISON in place of YACC on AIX. I don't know. I have to close this
ticket. Maybe someone else can help him.
------------------------------------------------------------------------------
Ticket 274 from David R. Heffelfinger <[email protected]> reported that
he could not get non-anonymous ftp to work under his release of Linux. I asked
for more information about his configuration and have never received a reply.
I am closing the ticket.
------------------------------------------------------------------------------
Ticket 275 from Blank James <[email protected]> reported that
guestgroups was not working properly. He said that timestamps were in GMT.
I asked for more information (like what operating system he was using), but
never got a response. I am closing this ticket.
------------------------------------------------------------------------------
Ticket 278 from Ignacio de Cordoba <[email protected]> is having problems
getting "ls" and "dir" to work, which is a common problem that usually
involves properly setting up the environment. It is not a wu-ftpd problem.
------------------------------------------------------------------------------
Ticket 280 from Hannu Laurila <[email protected]> illustrates a common
misconception about the use of a dash as the first character in a password.
This is a feature to turn off extended messages. If the user has a dash as the
first character of his/her password, then that dash must be preceeded with
another dash as an "escape" character to insure that the password is correctly
understood. This ticket is closed.
------------------------------------------------------------------------------
Ticket 287 from Sandrokan <[email protected]> reported that he was having
problems getting the guestgroup feature to work on Slakware 96. I asked if
he had the "-a" turned on on his /etc/inetd.conf line. He has never responded.
I am closing this ticket.
------------------------------------------------------------------------------
Ticket 291 from Sergio Javier Klarreich <[email protected]> appeared to
just be a pleasant greeting. It does not appear to report a bug report.
------------------------------------------------------------------------------
Ticket 296 from Jim Easton <[email protected]> bet a month's salary that
there was an alias on my development platforms for cc. He was wrong, but
I asked him to give the money to charity. I don't know if he did.
------------------------------------------------------------------------------
Ticket 306 from Philippe Langlois <[email protected]> suggested
that <sys/time.h> be included in ftpd.c for use by OSF/1. This is already
done in the config.h for osf/1. It should not need to be included twice.
This ticket is closed.
------------------------------------------------------------------------------
Ticket 316 from Paul Wouters <[email protected]> claimed that he could not
overwrite files or delete existing files when logged in as a real user.
I can't reproduce this. Perhaps it is a configuration issue. Anyway,
I can reproduce it, so I am closing the ticket.
------------------------------------------------------------------------------
Ticket 318 from John R. Long <[email protected]> illustrates a common
misconception about the use of a dash as the first character in a password.
This is a feature to turn off extended messages. If the user has a dash as the
first character of his/her password, then that dash must be preceeded with
another dash as an "escape" character to insure that the password is correctly
understood. This ticket is closed.
------------------------------------------------------------------------------
Ticket 321 from Are Bryne <[email protected]> asked a variety of questions
about the upload directive in ftpaccess. I have answered him in private mail.
This ticket is closed.
------------------------------------------------------------------------------
Ticket 324 from Johannes Ruscheinski <[email protected]> offered
some patches for Linux, but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 331 from Emil Isberg <[email protected]> noted that he was having
no problems with beta-13 on Solaris 2.5 or 2.5.1.This is not a bug report, but
I do appreciate getting these types of messages. Also, beta-14 is the first
release of the server to be tested by me on Solaris 2.5.1, so it will be
the first one for which I can accept bug reports with any hopes of reproducing
it.
------------------------------------------------------------------------------
Ticket 336 from Mark Cain <[email protected]> was trying to get beta-13
to work on a Solaris 2.4 sparc marchine with Sparc C, which is a configuration
I run. I can't reproduce his problem (it appears that /etc/inted is passing
the second option on the command line to ftpd, but not the first), so I have
to close this ticket.
------------------------------------------------------------------------------
Ticket 337 from Scott Stubbs <[email protected]> is unable to get the
software to work with Solaris 2.5.1. He is having a problem similar to
Ticket 339. I can't reproduce it.
------------------------------------------------------------------------------
Ticket 339 from Chris Kern <[email protected]> is unable to get the software to
follow his directives in the ftpaccess file. He claims to have the "-a" on
the end of the /etc/inetd.conf line and has had to resort to altering the
source code claiming that their must be something wrong with the wu-ftpd
software. He insists that it's not a problem with his Solaris 2.5.1 platform.
I have confirmed that I can't reproduce this problem on Solaris 2.5.1, so I
am closing this ticket. I have no idea why he can't get it to work, but I
can't fix things I can't reproduce.
------------------------------------------------------------------------------
Ticket 346 from Eric Meyers <[email protected]> needed
some information on using beta-13 on HPUX. I offered what help I could
and pointed him at the mailing list. This ticket is closed.
------------------------------------------------------------------------------
Ticket 348 from Peter deFriesse <[email protected]> didn't read
the NOTES file concerning the use of "-a" in /etc/inetd.conf in order to
get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------
Ticket 351 from <[email protected]> is trying to setup "guestgroup"
and has apparently failed to do so. I have directed him to the FAQ and have
heard nothing more from him. So, I am closing this ticket.
------------------------------------------------------------------------------
Tickets 352 & 353 from Frank Winkler <[email protected]> is trying to setup
the server on Solaris, but apparently does not have all the devices and
shared libaries in place to make it possible for "ls" to work. I suggested
some things for him to investigate, but have heard nothing further. I am
closing this ticket.
------------------------------------------------------------------------------
Ticket 363 from Gary Mills <[email protected]> is complaining about
about the use of a dash as the first character in a password being used to
turn off extended messages. Since this feature has been part of the server
long before I took over maintenance, I am not going to change the behavior
in this release. That's just the way it has to be. If the folks on the
mailing list can come up with a better solution that we can implement in
a future release, I am willing to consider it, but not for release 2.4.2
or 2.4.3. This ticket is closed.
------------------------------------------------------------------------------
Ticket 366 from Paul Whittenburg <[email protected]> offers some documentation
fixes for the ftpaccess page but never sent them. I have closed this ticket.
However, I do hope he will send the patches along.
------------------------------------------------------------------------------
Ticket 367 from Jun-ichiro Itoh <[email protected]> reported a problem with
an extra %s in a printf that was in beta 12 but fixed in beta 13. This ticket
is closed.
------------------------------------------------------------------------------
Ticket 369 from Mark Bergman <[email protected]> said that he
could not get beta 13 to compile on Solaris 2.5 becuase of a number of
missing files. I believe he had a bad copy of the distribution since
I could not reproduce this problem on Solaris 2.5.1 or 2.4. I am closing
this ticket.
------------------------------------------------------------------------------
Ticket 374 from Ryan Rawson <[email protected]> claimed that virutal hosting
didn't work on Linux 2.0.29 and 2.0.30. This may be true. I could not
reproduce the problem on RedHat 4.0, so I can fix it. I think he is right
about it being a kernel or library problem. This ticket is closed.
-----------------------------------------------------------------------------
Ticket 382 from Roger Burroughes <[email protected]> noted that the
Sun problem with file locking covered in NOTES file is still a problem.
I agree, but it is really Sun's problem to fix. This ticket is closed.
-----------------------------------------------------------------------------
Ticket 383 from Chang_L <[email protected]> appears to be another person who
didn't read the NOTES file concerning the use of "-a" in /etc/inetd.conf in
order to get ftpd to use the ftpaccess file and the various enhancements.
-----------------------------------------------------------------------------
Ticket 390 from David Macdonald <[email protected]> is reporting that
under Solaris he was not getting the local time when he did a dir after an
anonymous login. He had symlinked to the /etc/default/init and /etc/TIMEZONE
files from his chrooted directories. That won't work. They must be copied
to the chrooted directory locations. I have let him know about this. I am
closing this ticket.
-----------------------------------------------------------------------------
Ticket 401 from Philippe Guyot <[email protected]> sent a ticket in that had no
information in it. I have closed it.
------------------------------------------------------------------------------
Ticket 402 from Greg Smith <[email protected]> could not discover the
details CERT Advisory CA-97.16 from the announcement itself, and so attempted
to query me for them. I have responded to his request. This ticket is closed.
------------------------------------------------------------------------------
Ticket 405 from Earl Wallace <[email protected]> suggests that there
is some problem in the server that is actually caused by the ftp client.
This ticket is closed.
------------------------------------------------------------------------------
Ticket 406 from Earl Wallace <[email protected]> says that he didn' see
this problem later. This ticket is also closed.
------------------------------------------------------------------------------
Ticket 412 from Nick Matyushenko <[email protected]> appears to be another person
who didn't read the NOTES file concerning the use of "-a" in /etc/inetd.conf
in order to get ftpd to use the ftpaccess file and the various enhancements.
------------------------------------------------------------------------------

From [email protected] Mon Aug 11 12:56:13 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA11299;
Mon, 11 Aug 1997 12:48:39 -0500 (CDT)
Received: from kcgw1.att.com (kcgw1.att.com [192.128.133.151])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA10817
for <[email protected]>; Mon, 11 Aug 1997 12:43:34 -0500 (CDT)
Received: from lynxhub.lz.att.com by kcig1.att.att.com (SMI-8.6/EMS-1.2 sol2)
id MAA13797; Mon, 11 Aug 1997 12:34:17 -0500
Received: by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA11121; Mon, 11 Aug 1997 13:41:09 -0400
Message-Id: <[email protected]>
Date: Mon, 11 Aug 1997 13:41:08 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected] (ftp archive)
Subject: access to environment vars
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Folks,
Was there a change between 2.4 and Beta 13 that allowed the wuftp
process access to local shell environment variables. In my 2.4
version environment variables were set. In beta 13 my local variables
are not set.

Any help would be appreciated.

Doug

--
Doug Courtney
[email protected]
(732)576-5572

From [email protected] Mon Aug 11 15:08:49 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA21917;
Mon, 11 Aug 1997 15:00:07 -0500 (CDT)
Received: from augnet.augusta.net (www.augusta.net [204.116.88.40])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA06405
for <[email protected]>; Mon, 11 Aug 1997 14:53:36 -0500 (CDT)
Received: from dns2 ([206.74.229.9]) by augnet.augusta.net
(post.office MTA v2.0 0813 ID# 0-18256) with SMTP id AAA10414
for <[email protected]>; Mon, 11 Aug 1997 15:59:03 -0400
Message-Id: <[email protected]>
Date: Mon, 11 Aug 1997 15:57:17 +0000
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: REAL user restricting access there home dir
MIME-Version: 1.0
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
X-mailer: Pegasus Mail for Win32 (v2.52)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

How can wuftpd be setup to restrict access for a real user to there home directory.
Instead of the /export/home/username the real user would see /, like anonymous ftp is setup.

Any help would be appreciated.

Kevin Billings
Augusta.Net, Inc.

From [email protected] Mon Aug 11 15:58:07 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA25920;
Mon, 11 Aug 1997 15:50:32 -0500 (CDT)
Received: from cagw2.att.com (cagw2.att.com [192.128.52.90])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA16315
for <[email protected]>; Mon, 11 Aug 1997 15:47:57 -0500 (CDT)
Received: from lynxhub.lz.att.com by caig2.att.att.com (SMI-8.6/EMS-1.2 sol2)
id QAA11156; Mon, 11 Aug 1997 16:05:17 -0400
Received: by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA16797; Mon, 11 Aug 1997 15:53:24 -0400
Message-Id: <[email protected]>
Date: Mon, 11 Aug 1997 15:53:23 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected] (ftp archive)
Subject: env vars on SGI 6.2
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Folks,
To followup my earlier post about losing environment variables in
beta 13. What I found was that for SGI 6.2 I had undef SETPROCTITLE
to take care of the TZ stuff. In beta 13 I had to set SPT_TYPE to
SPT_NONE. It was originally set to SPT_REUSEARGV and was clobbering
my locally set environment variables. I'm not sure if this should go
as a trouble ticket. Let me know if it should.

Thanks

Doug

--
Doug Courtney
[email protected]
(732)576-5572

From [email protected] Tue Aug 12 18:25:02 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA11262;
Tue, 12 Aug 1997 18:17:03 -0500 (CDT)
Received: from light.lightlink.com ([email protected] [205.232.34.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA04555
for <[email protected]>; Tue, 12 Aug 1997 18:10:38 -0500 (CDT)
Received: from localhost (homer@localhost)
by light.lightlink.com (8.8.6/8.8.6) with SMTP id TAA12632
for <[email protected]>; Tue, 12 Aug 1997 19:10:35 -0400 (EDT)
Message-Id: <[email protected]>
Date: Tue, 12 Aug 1997 19:10:35 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: "Homer W. Smith" <[email protected]>
To: FTP MAILING LIST <[email protected]>
Subject: Re: security hole in mget (in ftp client) (fwd)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

This make any sense to anyone?

------------------------------------------------------------------------
Homer Wilson Smith News, Web, Telnet Art Matrix - Lightlink
(607) 277-0959 E-mail, FTP, Shell Internet Access, Ithaca NY
[email protected] [email protected] http://www.lightlink.com

---------- Forwarded message ----------
Date: Tue, 12 Aug 1997 16:56:34 -0400 (EDT)
From: Max Parke <[email protected]>
To: System Group <[email protected]>
Subject: Re: security hole in mget (in ftp client) (fwd)

This is an evil one... Don't know if it affects ncftp, Kim.

The moral of the story is don't use mget, or if you do, run the ftp client
from a non-privileged account, definitely not root...

Max

---------- Forwarded message ----------
Date: Tue, 12 Aug 1997 09:17:04 -0700
From: Jim Hutchins <[email protected]>
To: [email protected]
Subject: Re: security hole in mget (in ftp client)

der Mouse wrote:

>> On most Unix platforms, when an ftp client processes an mget command,
>> it does not check [...for evilness like:] In particular, a malicious
>> ftp server's NLST response might include lines such as "../.forward",
>
>> Perhaps the easiest solution is to fix the ftp client to ignore lines
>> in an NLST response that include a '/' character.
>
>I rather dislike this. It's too useful to "mget */*.??" and the like.
>
>I'd rather see it refuse, or at least confirm, paths beginning with
>"../" or including "/../". One could argue the client should accept a
>leading ../ when the user specified a leading ../, but that's probably
>getting a little too frilly. (Of course, this should all be
>configurable off, but it also should default on.)

The problem is a bit worse than just including files in the NLST with
a leading '..' or '/'. If the server sends a list which includes a
filename that starts with the pipe symbol, the UNIX client will happily
start the specified program and execute it, feeding the "data" to the
program as stdin. How about a file, imbedded in a large directory with
a lot of small files, called "|sh"? And there are one or two other special
characters to FTP, so it looks like even more filename checking is
necessary.

Jim Hutchins
Sandia National Labs, California

From [email protected] Tue Aug 12 18:46:09 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA12451;
Tue, 12 Aug 1997 18:39:30 -0500 (CDT)
Received: from tiamat.ncifcrf.gov (tiamat.NCIFCRF.GOV [129.43.1.67])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA10114
for <[email protected]>; Tue, 12 Aug 1997 18:35:51 -0500 (CDT)
Received: (from poole@localhost)
by tiamat.ncifcrf.gov (8.8.5/8.8.5) id TAA06836
for [email protected]; Tue, 12 Aug 1997 19:34:37 -0400 (EDT)
Message-Id: <[email protected]>
Date: Tue, 12 Aug 1997 19:34:36 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Phil Poole <[email protected]>
To: [email protected] (WU Ftp Archive)
Subject: Count is off...
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4ME+ PL31H (25)]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Howdy all,

Wu-ftp 2.4.2 Beta 13 is AWESOME.

Much better functionality then earlier versions.

One thing I did notice. The count is off by one on my
welcome message.

But, ftpwho is reporting the correct number of users.

I have something like this as my /etc/ftp.banner and the count is
off by 1.

Welcome to the Frederick Biomedical Supercomputing Center
FTP archive, running on %L.

Information about your login and any transfers you do are
logged on this host. If you do not like that, please
disconnect now.

Please contact %E with any technical problems you may have
accessing this archive.

You are currently user %N our of a maximum of %M users.

The current time in Frederick Maryland, USA is %T

If the SAME message is my ~ftp/welcome.msg then the count is
correct.

So, I guess that message is really only supposed to go
as the WELCOME after login and I should have the unathorized
use message BEFORE the login prompt. 'ie /etc/ftp.banner file'

Is there a way I can get the number of connections displayed
in the ftp.banner correctly ?

Thanks

--
Phil Poole | Unix Systems Administrator
[email protected] | Frederick Biomedical SuperComputing Center
(301) 846-5721 | Frederick MD, 21702

From [email protected] Tue Aug 12 18:48:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA12857;
Tue, 12 Aug 1997 18:40:52 -0500 (CDT)
Received: from Bahamut.dragonfire.net (Bahamut.dragonfire.net [209.70.16.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA12717
for <[email protected]>; Tue, 12 Aug 1997 18:38:43 -0500 (CDT)
Received: (from achurch@localhost) by Bahamut.dragonfire.net (8.8.5/8.7.5) id TAA07264; Tue, 12 Aug 1997 19:38:38 -0400
Message-Id: <[email protected]>
Date: Tue, 12 Aug 1997 19:38:37 EDT
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Andy Church)
To: [email protected]
Subject: Re: security hole in mget (in ftp client) (fwd)
X-Mailer: MMail v4.62
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

> This make any sense to anyone?

[bugtraq forward deleted]

Well, as the subject says, it's a client issue, not a server one.
You'd need a much-hacked server to do some of the things suggested, like
including a ../file in an arbitrary NLST, though the ability to create a
file with a name like |sh renders that moot. There's not much you could do
from the server side, except perhaps not list filenames beginning with
characters like | which are special to FTP clients, and that might not be a
good thing anyway. (For the record, ncftp, at least version 1.9.4, also
handles files like |sh with pipes. It was probably originally intended as
a feature, but it's too easily exploitable in my opinion.)

--Andy Church | If Bell Atlantic really is the heart
[email protected] | of communication, then it desperately
www.dragonfire.net/~achurch/ | needs a quadruple bypass.

From [email protected] Wed Aug 13 16:59:33 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA25800;
Wed, 13 Aug 1997 16:51:11 -0500 (CDT)
Received: from sun.3rivers.net (sun.3rivers.net [208.136.177.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA26555
for <[email protected]>; Wed, 13 Aug 1997 16:45:22 -0500 (CDT)
Received: from Pdemo2.3rivers.net (pm1-149.ttc-cmc.net [208.136.183.149]) by sun.3rivers.net (8.8.5/8.8.2) with SMTP id PAA11904 for <[email protected]>; Wed, 13 Aug 1997 15:45:19 -0600 (MDT)
Message-Id: <[email protected]>
Date: Wed, 13 Aug 1997 15:45:18 -0600
Reply-To: [email protected]
Sender: [email protected]
From: "Tim Hodges, Triangle Telephone Cooperative Assoc." <[email protected]>
To: [email protected]
Subject: Linux won't accept incoming ftp sessions
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender: [email protected]
X-Mailer: Windows Eudora Light Version 3.0.1 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I recently upgraded to Slackware 3.2 which includes wu-ftpd.
Now ftpd won't accept incoming connections. Here is what happens:

It says '530 login incorrect'. This happens even when I know I have
used a good username/password.

The failure generates a syslog entry of:
Aug 8 13:26:45 ttc_ws ftpd[8716]: open of pid file failed: No such file
or directory

The /etc/shells is in place and seems correct. I have tried it both
with and without -a switch.

If anyone has any ideas, I would really appreciate them.

Tim Hodges
[email protected]

From [email protected] Wed Aug 13 17:22:27 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA29058;
Wed, 13 Aug 1997 17:08:59 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA28291
for <[email protected]>; Wed, 13 Aug 1997 17:03:21 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id RAA22241;
Wed, 13 Aug 1997 17:03:23 -0500
Message-Id: <[email protected]>
Date: Wed, 13 Aug 1997 17:03:23 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: "Tim Hodges, Triangle Telephone Cooperative Assoc." <[email protected]>
Cc: [email protected]
Subject: Re: Linux won't accept incoming ftp sessions
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Wed, 13 Aug 1997, Tim Hodges, Triangle Telephone Cooperative Assoc. wrote:

> I recently upgraded to Slackware 3.2 which includes wu-ftpd.
> Now ftpd won't accept incoming connections. Here is what happens:
>
> It says '530 login incorrect'. This happens even when I know I have
> used a good username/password.
>
> The failure generates a syslog entry of:
> Aug 8 13:26:45 ttc_ws ftpd[8716]: open of pid file failed: No such file
> or directory

The current beta 13 release does not grep this message, and I don't know
what slack wants for the pid file path. No telling what version it is,
though it is probably fairly recent. I would suggest installing the
latest beta from source; it is not that difficult, and you have a known
quantity to work with.

-- Michael

This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.

ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-13.tar.Z

wu-ftpd FAQ: http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to [email protected]
with a subject line: send faq

guest howto: ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "[email protected]"
(immediate autoresponder; subject does not matter)

wu-ftpd Resource Center: http://www.landfield.com/wu-ftpd/
wu-ftpd list archive: http://www.landfield.com/wu-ftpd/mail-archive/

There are additional security references in the above docs.

From [email protected] Wed Aug 13 17:40:07 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA26892;
Wed, 13 Aug 1997 17:34:34 -0500 (CDT)
Received: from sun.3rivers.net (sun.3rivers.net [208.136.177.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA31039
for <[email protected]>; Wed, 13 Aug 1997 17:33:24 -0500 (CDT)
Received: from Pdemo2.3rivers.net (pm1-149.ttc-cmc.net [208.136.183.149]) by sun.3rivers.net (8.8.5/8.8.2) with SMTP id QAA13974; Wed, 13 Aug 1997 16:33:20 -0600 (MDT)
Message-Id: <[email protected]>
Date: Wed, 13 Aug 1997 16:33:17 -0600
Reply-To: [email protected]
Sender: [email protected]
From: "Tim Hodges, Triangle Telephone Cooperative Assoc." <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: Linux won't accept incoming ftp sessions
In-Reply-To: <[email protected]>
References: <[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender: [email protected]
X-Mailer: Windows Eudora Light Version 3.0.1 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Excellent! Easy install fixed the problem.. Thanks!

Tim Hodges
[email protected]

At 05:03 PM 8/13/97 -0500, Michael Brennen wrote:
>On Wed, 13 Aug 1997, Tim Hodges, Triangle Telephone Cooperative Assoc. wrote:
>
>> I recently upgraded to Slackware 3.2 which includes wu-ftpd.
>> Now ftpd won't accept incoming connections. Here is what happens:
>>
>> It says '530 login incorrect'. This happens even when I know I have
>> used a good username/password.
>>
>> The failure generates a syslog entry of:
>> Aug 8 13:26:45 ttc_ws ftpd[8716]: open of pid file failed: No such file
>> or directory
>
>The current beta 13 release does not grep this message, and I don't know
>what slack wants for the pid file path. No telling what version it is,
>though it is probably fairly recent. I would suggest installing the
>latest beta from source; it is not that difficult, and you have a known
>quantity to work with.
>
> -- Michael
>
>This is the location for the latest wu-ftpd. You can't see the
>directory contents, but get the file anyway. It's there.
>
>ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-13.tar.Z
>
>wu-ftpd FAQ: http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
> OR
> send mail to [email protected]
> with a subject line: send faq
>
>guest howto: ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
> OR
> send mail to "[email protected]"
> (immediate autoresponder; subject does not matter)
>
>wu-ftpd Resource Center: http://www.landfield.com/wu-ftpd/
>wu-ftpd list archive: http://www.landfield.com/wu-ftpd/mail-archive/
>
>There are additional security references in the above docs.
>
>
>

From [email protected] Wed Aug 13 19:31:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA06158;
Wed, 13 Aug 1997 19:25:36 -0500 (CDT)
Received: from relay3.smtp.psi.net (relay3.smtp.psi.net [38.8.210.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA01441
for <[email protected]>; Wed, 13 Aug 1997 19:15:32 -0500 (CDT)
Received: from extsvr.aptix.com by relay3.smtp.psi.net (8.8.3/SMI-5.4-PSI)
id UAA17850; Wed, 13 Aug 1997 20:06:14 -0400 (EDT)
Received: from [38.229.247.10] (gatekeeper.aptix.com [38.229.247.10]) by extsvr.aptix.com (8.8.4/8.8.3) with SMTP id RAA04901 for <[email protected]>; Wed, 13 Aug 1997 17:06:40 -0700 (PDT)
Received: from intsvr ([132.147.160.93]) by [38.229.247.10]
via smtpd (for extsvr [38.229.247.20]) with SMTP; 14 Aug 1997 00:02:38 UT
Received: from axws2.aptix.com (axws2.aptix.com [132.147.160.16]) by intsvr.aptix.com (8.8.4/8.8.3) with SMTP id RAA13802 for <[email protected]>; Wed, 13 Aug 1997 17:11:52 -0700 (PDT)
Received: by axws2.aptix.com (SMI-8.6/SMI-SVR4)
id RAA00476; Wed, 13 Aug 1997 17:08:24 -0700
Message-Id: <[email protected]>
Date: Wed, 13 Aug 1997 17:08:24 -0700
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Jeffrey Liu)
To: [email protected]
Subject: using netscape to ftp
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Content-MD5: VHHpxkcoUB2KYKfaMQa9rQ==
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,

I've setup a Anonymous Ftp server and it works fine
in UNIX command mode.

But when we tried to use Netscape Navigator to ftp,
it only returned one line: Current directory is /

How do I setup wu-ftpd working on Netscape?

Thanks,

Jeffrey
[email protected]

From [email protected] Wed Aug 13 21:21:05 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA14356;
Wed, 13 Aug 1997 21:15:31 -0500 (CDT)
Received: from air.porte.com (air.porte.com [207.152.79.25])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA00323
for <[email protected]>; Wed, 13 Aug 1997 21:10:20 -0500 (CDT)
Received: from air.porte.com (localhost [127.0.0.1]) by air.porte.com (8.7.6/8.7.3) with SMTP id VAA00573 for <[email protected]>; Wed, 13 Aug 1997 21:10:05 -0500
Message-Id: <[email protected]>
Date: Wed, 13 Aug 1997 21:10:04 -0500
Reply-To: [email protected]
Sender: [email protected]
From: Brian Clare <[email protected]>
To: [email protected]
Subject: /bin/false ?
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; Linux 2.0.27 i586)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

When setting up a guest account, and limiting access to ftp only and
then only to their home directory, is there any reason I shouldn't use
/bin/false for the login shell? I've tried to use /bin/ftponly, but
keep getting bad shell warnings. I do have it listed in /etc/shell.

Seems to work fine when I have /bin/false in /etc/passwd and
/bin/ftponly in ~etc/passwd.
--
Regards...

Brian Clare
Porte Communications

From [email protected] Wed Aug 13 21:33:28 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA15253;
Wed, 13 Aug 1997 21:27:59 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA14285
for <[email protected]>; Wed, 13 Aug 1997 21:22:49 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id VAA27002;
Wed, 13 Aug 1997 21:22:52 -0500
Message-Id: <[email protected]>
Date: Wed, 13 Aug 1997 21:22:52 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: Brian Clare <[email protected]>
Cc: [email protected]
Subject: Re: /bin/false ?
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

/etc/shell or /etc/shells? /etc/shells is the correct name, but mabye
just didn't spell it right in this mail.

-- Michael

On Wed, 13 Aug 1997, Brian Clare wrote:

> When setting up a guest account, and limiting access to ftp only and
> then only to their home directory, is there any reason I shouldn't use
> /bin/false for the login shell? I've tried to use /bin/ftponly, but
> keep getting bad shell warnings. I do have it listed in /etc/shell.

From [email protected] Wed Aug 13 21:39:42 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA14526;
Wed, 13 Aug 1997 21:34:10 -0500 (CDT)
Received: from buffy.isi.net (buffy.isi.net [204.71.194.215])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA15580
for <[email protected]>; Wed, 13 Aug 1997 21:32:50 -0500 (CDT)
Received: from localhost (mike@localhost) by buffy.isi.net (8.8.5/ISI-1.5) with SMTP id TAA20880; Wed, 13 Aug 1997 19:32:47 -0700 (PDT)
Message-Id: <Pine.GSO.3.96.970813193142.18504B-100000@buffy>
Date: Wed, 13 Aug 1997 19:32:46 -0700 (PDT)
Reply-To: [email protected]
Sender: [email protected]
From: Mike Hedlund <[email protected]>
To: Jeffrey Liu <[email protected]>
Cc: [email protected]
Subject: Re: using netscape to ftp
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: mike@buffy
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Try using Passive mode under UNIX, netscape uses that to transfer the
file listing reply and regular file downloads. If passive doesnt work you
found your problem.

-mike

On Wed, 13 Aug 1997, Jeffrey Liu wrote:

> Hi,
>
> I've setup a Anonymous Ftp server and it works fine
> in UNIX command mode.
>
> But when we tried to use Netscape Navigator to ftp,
> it only returned one line: Current directory is /
>
> How do I setup wu-ftpd working on Netscape?
>
> Thanks,
>
> Jeffrey
> [email protected]
>

From [email protected] Wed Aug 13 21:48:23 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA11151;
Wed, 13 Aug 1997 21:40:18 -0500 (CDT)
Received: from Argus.montgomerybell.com (argus.montgomerybell.com [207.234.44.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA15557
for <[email protected]>; Wed, 13 Aug 1997 21:37:14 -0500 (CDT)
Received: from localhost (halacha@localhost)
by Argus.montgomerybell.com (8.8.5/8.8.5) with SMTP id VAA20427;
Wed, 13 Aug 1997 21:36:54 -0500 (CDT)
Message-Id: <Pine.GSO.3.96.970813213355.20408A-100000@Argus.montgomerybell.com>
Date: Wed, 13 Aug 1997 21:36:54 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Alan Halachmi <[email protected]>
To: Brian Clare <[email protected]>
Cc: [email protected]
Subject: Re: /bin/false ?
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

When creating a user, many UNIX platforms require that the shell given to
the user at creation time, be real shells. However, you can make a script
to execute usermod -s /etc/ftponly is you want to change the shell.

Here's what my /etc/ftponly file looks like:

/usr/bin/echo "Interactive Logon Not Allowed."

Hope this helps,
Alan

Alan Halachmi, Head of Internet Services
Solaris Administrator/ Web Design
Montgomery Bell Academy
mailto:[email protected] http://www.montgomerybell.com

On Wed, 13 Aug 1997, Brian Clare wrote:

> When setting up a guest account, and limiting access to ftp only and
> then only to their home directory, is there any reason I shouldn't use
> /bin/false for the login shell? I've tried to use /bin/ftponly, but
> keep getting bad shell warnings. I do have it listed in /etc/shell.
>
> Seems to work fine when I have /bin/false in /etc/passwd and
> /bin/ftponly in ~etc/passwd.
> --
> Regards...
>
> Brian Clare
> Porte Communications
>

From [email protected] Thu Aug 14 10:34:19 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA09870;
Thu, 14 Aug 1997 10:28:07 -0500 (CDT)
Received: from o2.towery.com (ws-30.towery.com [207.15.173.30])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA04971
for <[email protected]>; Thu, 14 Aug 1997 10:23:03 -0500 (CDT)
Received: from towery.com (localhost [127.0.0.1]) by o2.towery.com (950413.SGI.8.6.12/950213.SGI.AUTOCF) via ESMTP id KAA12142 for <[email protected]>; Thu, 14 Aug 1997 10:23:17 -0500
Message-Id: <[email protected]>
Date: Thu, 14 Aug 1997 10:23:17 -0500
Reply-To: [email protected]
Sender: [email protected]
From: Ernest Mueller <[email protected]>
To: [email protected]
Subject: Upload directive configuration
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 4.02 [en] (X11; I; IRIX 6.3 IP32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

OK, now I'm a little confused. I just set up beta-13 here, and I want
to
set up a bunch of client accounts as guestgroup'ed ftp directories.

I set them up - so far, so good. Now, I want the users to be able to
upload to everything in the ~ftp/docs and ~ftp/cgi-bin directories with
the incoming files getting chowned/chgrped - but not be able to upload
to ~ftp/bin, ~ftp/etc, ~ftp/lib, etc.

So from the template ftpaccess file I set up the following for user
acce:

guestgroup acce

upload /disk2/www/acce * no
upload /disk2/www/acce /docs yes acce acce dirs
upload /disk2/www/acce /cgi-bin yes acce acce dirs

Well, this allows the user to upload to docs and cgi-bin all right - but
not to any subdirectories. I tried adding

upload /disk2/www/acce /docs/* yes acce acce dirs

and that gets them down 1 level, but not to subdirectories of those,
etc.

I guess I was interpreting this format to mean that subdirectories
inherited the paret's permissions - but this is apparently not the case.

How can I do this without 20 lines in the ftpaccess file for each
guestgrouped user?

Thanks,
Ernest
--
Ernest C. Mueller [email protected]
Webmaster Phone: (901) 251-7000
Towery Publishing http://www.towery.com

From [email protected] Thu Aug 14 18:51:00 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA30587;
Thu, 14 Aug 1997 18:40:52 -0500 (CDT)
Received: from owlman.academ.com ([email protected] [198.137.249.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA24022
for <[email protected]>; Thu, 14 Aug 1997 18:37:27 -0500 (CDT)
Received: (from root@localhost)
by owlman.academ.com (8.8.7/8.8.5) id SAA15116;
Thu, 14 Aug 1997 18:37:21 -0500 (CDT)
Message-Id: <[email protected]>
Date: Thu, 14 Aug 1997 18:37:21 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Stan Barber)
To: [email protected], [email protected]
Subject: Academ version of wu-ftpd 2.4 Release 2 Beta 14 available for testing
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

BETA 14 is now available. It has been tested on the following systems:

Solaris 2.4 Sparc and x86, Solaris 2.5.1 x86, SunOS 4.1.4, Unixware 2.1,
FreeBSD 2.2.2-RELEASE, BSD/OS 1.1, BSD/OS 2.1, BSD/OS 3.0, SCO Open Server 5,
Linux 1.3.39 and 2.0.X.

I would like to hear from folks with access to HP-UX, Digital Unix, IRIX
and AIX in particular. Please send mail to the [email protected]
address.

If hardware companies wish to donate equipment running their proprietary
UNIX derivatives to me for doing maintenance work on this and the other
packages I maintain (NNTP, RN, etc), please contact me directly to discuss.

If software companies that sell UNIX derivatives I don't to which I don't
have access wish to donain copies of their UNIX derivative to me for the
purposes of doing maintenace work on this and the other packages I maintain,
please contact me directly to discuss.

Finally, my thanks to Ian Willis with SCO for his assistance in reviewing
pre-releases of this software.

This is another release candidate.

The location is:
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-14.tar.Z

NOTE: This directory is protected. Attempts to use a directory listing
command will fail.

You can also check http://www.academ.com/academ/wu-ftpd for more information.

-0-FIXES IN THIS RELEASE-0-

-----------------------------------------------------------------------------
I edited the INSTALL, README and NOTES documents in an attempt to make them
clearer. I had a number of questions about "-a" and /etc/inetd.conf. People
evidently don't read the README file very closely, so now I have put this
information in more places than just the NOTES file. Hopefully that will
stop most of these types of questions.
-----------------------------------------------------------------------------
Mark Galbraith noted a Y2K compliance problem in ftpcmd.y where the year
would always be printed as 19XX. This is now fixed. Unfortunately, it appears
that noone opened a ticket on this one that I can find. This came from the
mailing list. I believe that wu-ftpd is as Y2K compliant as it can be with
this fix.
-----------------------------------------------------------------------------
Ticket 125 from Marc Slemko <[email protected]> points up a problem with the
dependencies on vers.c that are not uniform in all makefiles and can cause
problems with certain versions of make. This is now resolved. All makefiles
for all operating systems supported in this distribution now have an
explict dependency that should cause newvers.sh to be run if yacc was
successful in building ftpcmd.c from ftpcmd.y. It will also properly
stop attempting to compile anyting (other than ckconfig) until this problem
is fixed by the user. This can usually be done by being sure yacc is installed
and in the user's PATH.
-----------------------------------------------------------------------------
Ticket 164 from Ian Willis <[email protected]> points up a bug in the SITE CHMOD
command that would cause the server to send two replies in some cases. This
could confuse some FTP clients (and is a violation of protocol anyway). This
should have been in beta-13, but I missed it somehow. It is in beta-14.
-----------------------------------------------------------------------------
Ticket 170 from Volker Schmidt <[email protected]> offered
some changes to the Linux configuration and Makefiles. I have integrated
these changes. They have been tested on Slackware Linux 2.3, RedHat 3.0.3
and RedHat 4.0.
-----------------------------------------------------------------------------
Tickets 173 from Albert Lunde <[email protected]> and 175 from David
Capshaw <[email protected]> suggested that a define (HAVE_GETRLIMIT)
be added to the config.hpx for HP-UX 10.10. This has been done, but I have no
idea if it will help. I don't have HP-UX to test this on.
-----------------------------------------------------------------------------
Tickets 188 and 299 from Andrey A. Chernov <[email protected]> notes that FreeBSD
uses <sys/mount.h> for file system information used by the %F macro. This is
included in this release.
-----------------------------------------------------------------------------
Ticket 210 from Wilhelm Mueller <[email protected]> suggested
that getdatasock should return the errno to the caller that caused the
socket call to fail (as opposed to anything else that happens in that
routine). I agree. He also suggested that RMD and DELE should both check
permissions before attempting to do anything. I also agree. These changes
are in this release.
-----------------------------------------------------------------------------
Tickets 221 from Luc Lalonde <[email protected]>, 332 from Andrew
Siegele <[email protected]> and 333 from Tim Wicinski <[email protected]>
reminded me of problems some releases of IRIX had with the installation script
I supply here in the distributions. I think I have addressed these problems
now.
-----------------------------------------------------------------------------
Ticket 225 from Sergey Zhuk <[email protected]> offered some fixes to
the xferstats script that would make it work when the log involves timestamps
from two years.
-----------------------------------------------------------------------------
Ticket 237 from Ian Willis <[email protected]> suggested another fix for access.c
and ftpcount.c that addresses a problem in a bug fix in beta-13 that kept
access limits involving days other than Any from being enforced. This fix is
included in this release.
-----------------------------------------------------------------------------
Ticket 238 from Ian Willis <[email protected]> suggested another fix for popen.c
to keep it from overflowing the argv buffer and from freeing space that
was not allocated for that same argv buffer. This fix has been included
in this release.
-----------------------------------------------------------------------------
Ticket 239 from Ian Willis <[email protected]> offered a fix for ftpcmd.y where
there is a one-off error in checking the length of a string. This is fixed
in this release. Ian also suggested a use of snprintf which was also
suggested in ticket 249. This change was included with the rest of the
fixes in 249.
-----------------------------------------------------------------------------
Ticket 241 from Ian Willis <[email protected]> pointed out that the \r\n is no
longer passed to setproctitle since beta-13, so it does not need to
attempt to strip. This change has been encorporated into this release.
-----------------------------------------------------------------------------
Tickets 244, 246, 327, 329, 340, 354, 358, 359, 404 and 407 noted that I had
made a mistake in the Makefile for the suppport libraries for AIX. I had put
snprintf.c in the OBJS line where it should have been snprintf.o. There was a
similiar problem in the Makefile for the server itself where I put sigfix.c in
the OBJS line instead of sigfix.o. This last one whas benign since most
compilier can cope with source file in the compile step if the result is an
executable. These problems were reported by these users: [email protected],
[email protected], [email protected],[email protected],
[email protected],[email protected],[email protected],[email protected],
[email protected],[email protected]
-----------------------------------------------------------------------------
Ticket 247 from Ian Willis <[email protected]> pointed out an error in how
the instructions in ftpaccess are processed with respect to the compress
and tar keywords. Once any class is permitted to use them, then all classes
are. He provides a fix for this that is included in this release.
-----------------------------------------------------------------------------
Tickets 248 from Alain Magloire <[email protected]>, 295 from
Alan J Rosenthal <[email protected]>, 341 from Roger K. Winters
<[email protected]>, 347 from Eric Myers <[email protected]>, 370 from P.
Kearney III <[email protected]>, 375 from Marty Schultz
<[email protected]>, 380 from Randall S. Winchester
<[email protected]>, 381 from Dale Ghent <[email protected]>, 396 from
Bob Beck <[email protected]>, 398 from Shoichi Shibata
<[email protected]>, 409 from Paul Southworth <[email protected]>,
and 411 from Chun-Hsiung Chiu <[email protected]> note various problems
with compling wu-ftpd 2.4.2 beta 13 on SunOS 4.1.X machines.

One problem is with snprintf.c in the support library. On some versions of
SunOS 4.X, the size_t typedef is not pulled in with the include directives
that are there. I have modified snprintf.c to include <stdlib.h> when an
ANSI C compilier is used and <sys/types.h> when one is not used. Hopefully,
that will catch a size_t definition. If not, let me know, but do be sure to
include what OS release and what compiler you are using. Additionally, I
had left "const" definitions in places where non-ANSI C compilers would
encounter them. I have removed those.
-----------------------------------------------------------------------------
Tickets 249 from Alain Magloire <[email protected]> suggested
that snprintf should be used now that there is good one for those systems
that don't have it in the support library and for those that do have snprintf,
it should be used where controlling the length of things is important. To
that end a number of changes have been made in ftpd.c to use snprintf more
widely.
-----------------------------------------------------------------------------
Ticket 250 from Aidas Kasparas <[email protected]> provided some code to
deal with expired logins (when shadow passwords are used). This code is
included in this release.
-----------------------------------------------------------------------------
Ticket 253 from Ian Willis <[email protected]> pointed out that ftpconversions
and ftpgroup parsing was in a sad state. He offers a number of patches to
fix the problems (some of which could cause bad things to happen if the
these files were formatted badly). These fixes are included in this release.
-----------------------------------------------------------------------------
Ticket 257 from George Staikos <[email protected]> suggested that the
default umask be 022 instead of 002. I agree. This change has been made for
this release.
-----------------------------------------------------------------------------
Ticket 267 from Frank Mogaddedi <[email protected]> suggested
that SPT_TYPE should be SPT_NONE for SGI IRIX to insure that the time stamps
on things didn't get set to GMT. This change has been made, but is untested
since I have no SGIs to test on. This will hopefully address the problem
as it was reported as a bug in ticket 209 by Phil Ritzenthaler
<[email protected]>, ticket 218 from Chris Brown
<[email protected]>, ticket 271 by Wayne Rosen
<[email protected]> and ticket 356 from Tom Brister
<[email protected]>.
-----------------------------------------------------------------------------
Ticket 276 from Ian Willis <[email protected]> point out a logic problem when
the socket call fails when trying to open a data socket. The close() was
being made anyway and this would generate a "bad file number" error since
the socket never was opened. This is fixed in this release.
-----------------------------------------------------------------------------
Ticket 277 from Valter Cavecchia <[email protected]> suggested
that HAVE_STATVFS should be defined in the SGI IRIX configuration file.
It is now. I have no way to know if this is correct. Hopefully others will
let me know.
-----------------------------------------------------------------------------
Ticket 285 from Miguel Mena <[email protected]> suggested that a note be
placed in the NOTES file about Digital Unix and C2 security. This has been
done.
-----------------------------------------------------------------------------
Ticket 289 from Ueber Sheep <[email protected]> points up
a problem when %U is used in a banner prior to the user performing a login.
Before beta 14, this could cause a segmentation violation. Now, it will
cause %U to print "[unknown]" since login has not been done as yet.
-----------------------------------------------------------------------------
Ticket 294 from Alan Wyskowski <[email protected]> suggested that the
arguments for select() under HPUX may not have the same types as those
found on other systems. I have encorporated his change, though I have no
way to test it since I don't have an HPUX systems.
-----------------------------------------------------------------------------
Ticket 297 from Andrey A. Chernov <[email protected]> suggested a small change
to newvers.sh to make it more POSIX compliant without affecting its operations
on non-POSIX systems. It is included in this release.
-----------------------------------------------------------------------------
Ticket 298 from Andrey A. Chernov <[email protected]> notes that the configuration
for FreeBSD support dirent.h and that sys/dir.h is being phased out. A change
to the FreeBSD configuration header file has been made to use dirent.h in
this release.
-----------------------------------------------------------------------------
Ticket 302 from Ian Willis <[email protected]> and ticket 307 from Pierre Belanger
<[email protected]> both noted problems when processing the %E macro.
It becomes evident with the %E macro is used twice in an extended message.
The entry information is not reset between calls. This can cause information
to be printed twice. This is fixed in this release.
-----------------------------------------------------------------------------
Ticket 304 from Gustavo Zacarias <[email protected]> suggested some
changes for C2 security with Digital Unix 4.X. These changes are made to the
Digital Unix configuration. C2 is on by default. "./build dec" to get this.
-----------------------------------------------------------------------------
Tickets 308 and 311 from from Philippe Langlois
<[email protected]> suggested that /usr/ucb/installbsd be used
for installation on OSF/1. This has been done for this release.
-----------------------------------------------------------------------------
Ticket 309 from P Kern <[email protected]> suggested that the passive
subroutine might be vunerable to attack because a user could attempt to
start a passive connection without doing a login first. This is now checked
in the passive connection.
-----------------------------------------------------------------------------
Ticket 312 from Philippe Langlois <[email protected]> suggested
that a note be added to NOTES file about the conflict between using Virtual
FTP and TCPWrappers. It has been included.
-----------------------------------------------------------------------------
Ticket 315 from George H Richmond <[email protected]> reports a bug
in some of the debugging code where syslog is called without a printf
format string. This causes the daemon to crash on some operating environments.
This is fixed in this release.
-----------------------------------------------------------------------------
Tickets 319 from Are Bryne <[email protected]> suggested some cleanups in
the ftpaccess file in the doc/examples directory. This has been done for
this release.
-----------------------------------------------------------------------------
Tickets 320 from Are Bryne <[email protected]>, 388 from SethMeister G.
<[email protected]> and 394 from Perry Rovers <[email protected]>
pointed out an error in the ftpaccess.5 man page concerning the path-filter
example. This is fixed in this release.
-----------------------------------------------------------------------------
Ticket 323 from David Capshaw <[email protected]> points out
a problem in realpath that is exposed when it is called with a rooted
path. It could attempt to access an uninitialized location. His fix has
been encorporated into this release.
-----------------------------------------------------------------------------
Ticket 325 from Alain Magloire <[email protected]> suggested
that the argv array be zeroed out before loading it. He also suggested a fix
to insure that we didn't spill off the end of the argv array when filling it.
This fix is included in this release.
-----------------------------------------------------------------------------
Ticket 343 from Ian Willis <[email protected]> contains a number of fixes
for various memory leaks in the glob routines as well as some logic problem
in the processing of the ABOR verb. These fixes are included in this release.
------------------------------------------------------------------------------
Ticket 344 from Farhad Anklesaria <[email protected]> suggested a
number of changes to the makefiles for A/UX. They are included in this
release.
-----------------------------------------------------------------------------
Tickets 349 from John F. Woods <[email protected]> notes that
there are a number of places in the software that are attempting to print
out off_t values using printf selectors that can't handle the size. He
suggests that these values be cast to fix. I have included his patch, but
I intend to revamp this totally after this software goes to release.
-----------------------------------------------------------------------------
Tickets 350 from Gunnar Helliesen <[email protected]> and 379 from Randall
S. Winchester <[email protected]> notes that there is a benign syntax problem
in access.c. This might cause some compilers to generate a warning. This has
been fixed in this release.
-----------------------------------------------------------------------------
Ticket 360 from Bas Meijer <[email protected]> suggested a way to
setup the "chroot" directory for wu-ftpd on IRIX. This has been included in
the NOTES.
-----------------------------------------------------------------------------
Ticket 361 from Timothy J. Luoma <[email protected]> suggested that HAVE_REGEX_H
be removed from the NeXTStep 3.X configuration. This has been done.
-----------------------------------------------------------------------------
Ticket 362 from Philip Kearney III <[email protected]> noted that the
"deny" keyword when followed with a domainname glob did not work. An IP
address or address glob does work on SunOS 4.1.X machines. This turns out to
be an issue only if you are not running yp or if yp is not able to access DNS.
To address this, I have added -lresolv to the SunOS 4.1 makefile. This can
be removed if you are running yp with DNS enabled.
-----------------------------------------------------------------------------
Ticket 365 from Ian Willis <[email protected]> offered some fixes to make some
of the 5XX responses associated with failed logins comply with RFC 959
and correct some logic that would cause the server to send two responses
to a client when passwd-check is used and the user failed to enter a
"valid" password when logging in anonymously. These fixes are included in
this release.
-----------------------------------------------------------------------------
Ticket 368 from Ian Willis <[email protected]> suggested that a change made during
the release of beta 12 changed how the upload option did filename matching to
make it non-intuitive. This change has been reversed. He also offered a change
to how the upload directive is parsed so that "no dirs" does allow directories
to be created and "no some-other-string" does not. Previously it didn't work
this way.
-----------------------------------------------------------------------------
Ticket 378 Michael Brennen <[email protected]> suggested that it's easy for
folks to get confused setting up the anonymous login and use the /./ suffix
on the home directory like that used for guestgroup. When done, it will make
other functions (like upload) in the ftpaccess fail to work. He has suggested
that processing of the two be done alike. He also supplied a nice patch. It
is included in this release. This could be argued as a bug fix or an
enhancement. Oh well.
-----------------------------------------------------------------------------
Ticket 386 from Wyman Eric Miles <[email protected]> reported a problem
attempting to compile beta-13 with the Bellcore skey library. That's because
it doesn't compile with that version. The version needed is the one from
the logdaemon suite by Wietse Venema. I am updating the documentation to
make this clear.
-----------------------------------------------------------------------------
Ticket 387 from Alexander <[email protected]> suggested that using the
/var/tmp directory for storing the pids is a bad idea. I agree. All
configurations have been changed not to do this. This was really only an
issue on System V systems and older BSD systems.
-----------------------------------------------------------------------------
Ticket 393 from Eli-Jean Leyssens <[email protected]> pointed
out another possible problem with ABOR verb processing with OOB data. This
fix is included in this release.
-----------------------------------------------------------------------------
Ticket 399 from Vadim M. Sapiro <[email protected]> pointed out a problem
with Solari 2.5.1 libraries when used in chrooted mode along with a
dynamically linked "ls". Sun has assigned a bugid for this problem.
See the NOTES file for more on this.
-----------------------------------------------------------------------------
Ticket 400 from Luc Beurton <[email protected]> reports that NetBSD/sparc
uses an int64_t for that stbuf.st_size. This means that %qu should be used
for a sprintf selector instead of %lu.
-----------------------------------------------------------------------------
Ticket 403 from Rob Nichols <[email protected]> suggested some changes
to facilitate compilation on AIX. These changes are included in this release.
-----------------------------------------------------------------------------
Ticket 415 from Andy Church <[email protected]> suggested that the
dependency on libc in the makefile for Linux be removed. I have done so.
-----------------------------------------------------------------------------
Ticket 417 from Ian Willis <[email protected]> noted that getspnam on Unixware
2.1 is not NIS aware, so the password read from the password file should not
be overwritten should the call fail. This fix is included here.
-----------------------------------------------------------------------------
Ticket 420 from Mike Handley <[email protected]> has reported
a problem in beta 13 under Unixware 2.1. Ian Willis has provided the
fix in Ticket 423 which is included in this release.
-----------------------------------------------------------------------------
Ticket 421 from Ernest Mueller <[email protected]> supplied a number
of suggestions for making wu-ftpd install smootly on IRIX 6.3. I have included
these suggestions in this release.
-----------------------------------------------------------------------------
Ticket 423 from Ian Willis <[email protected]> noted that when wu-ftpd is used on
Unixware, readdir in glob.c would not work as expected since the version
picked up during the link is the one from the ucb library, not the regular
C library. He suggested changing the UnixWare Makefile to link the regular C
libarary before the ucb library. This has been done for this release.

From [email protected] Fri Aug 15 04:02:45 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA01445;
Fri, 15 Aug 1997 03:56:19 -0500 (CDT)
Received: from relay.conware.de ([email protected] [153.92.5.3])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA06037
for <[email protected]>; Fri, 15 Aug 1997 03:51:12 -0500 (CDT)
Received: from nentec.de [153.92.64.11] (finken)
by relay.conware.de with smtp (Exim 1.624 #1)
id 0wzI2z-00047F-00; Fri, 15 Aug 1997 10:47:53 +0200
Message-Id: <[email protected]>
Date: Fri, 15 Aug 1997 10:51:40 +0200 (MET DST)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Finken <[email protected]>
To: [email protected]
Subject: RE: Academ version of wu-ftpd 2.4 Release 2 Beta 14 available fo
In-Reply-To: <[email protected]>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 8bit
MIME-Version: 1.0
X-Sender: [email protected]
X-Mailer: XFMail 1.2-alpha [p0] on SunOS
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hello,

> The location is:
> ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-14.tar.Z
>

Is there a special reason why you don't use gzip? Compressed with gzip -9
the wu-ftpd archive is 176k instead of 285k.

Gzip is available for free and for everything, except toasters and coffee
makers :-)

Bye,
Michael

-------------------------------------------------------------------------------
Michael Finken NENTEC Netzwerktechnologie GmbH
Tel.: +49 721 9495-0 76227 Karlsruhe/Germany
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Sometimes the last thing you wanna know is the truth. -- Roger Taylor

From [email protected] Fri Aug 15 08:13:55 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA22986;
Fri, 15 Aug 1997 08:06:05 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id HAA22382
for <[email protected]>; Fri, 15 Aug 1997 07:59:54 -0500 (CDT)
Message-Id: <[email protected]>
Date: Fri, 15 Aug 1997 08:00:28 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Kent Landfield <[email protected]>
To: [email protected]
Subject: Re: Academ version of wu-ftpd 2.4 Release 2 Beta 14 available fo
In-Reply-To: <[email protected]> from "Michael Finken" at Aug 15, 97 10:51:40 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

# Is there a special reason why you don't use gzip? Compressed with gzip -9
# the wu-ftpd archive is 176k instead of 285k.
#
# Gzip is available for free and for everything, except toasters and coffee
# makers :-)

I suspect it is because gzip doesn't come native to the platforms and compress
does. Why require someone to get addidional software just to unpack an archive
when you can use what is available right out of the box... ;-) That said, it
might be nice to have a copy both in .Z and .gz formats for retrieval. Not that
big a deal though. ;)

--
Kent Landfield Phone: 1-817-545-2502
The Landfield Group FAX: 1-817-545-7650
Email: [email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to [email protected].
Search the Usenet Hypertext FAQ Archive at http://www.faqs.org/faqs/

From [email protected] Fri Aug 15 09:50:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA31501;
Fri, 15 Aug 1997 09:42:07 -0500 (CDT)
Received: from moreinfo.com (moreinfo.com [207.126.101.86])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA21846
for <[email protected]>; Fri, 15 Aug 1997 09:39:03 -0500 (CDT)
Received: (from richard@localhost)
by moreinfo.com (8.8.5/8.8.5) id HAA07329
for [email protected]; Fri, 15 Aug 1997 07:36:01 -0700 (PDT)
Message-Id: <[email protected]>
Date: Fri, 15 Aug 1997 07:36:01 -0700 (PDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: WU-FTD: User directory question
Content-Type: text
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I am working with wu-ftd version 2.4, and need to use the chroot
feature of wu-ftd. While using this we are having problems with the ls
command. I have found that you have to have a copy of ls within the chrooted
environment.....

We want to chroot the users to /export/homes/
and not to export/homes/user

But I can not figure out in wu-ftpd how to set this up. Are there any pointers
anyone can give to set this up.

Thanks
Richard Peiper
Net-Link Solutions

From [email protected] Fri Aug 15 10:03:21 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA31979;
Fri, 15 Aug 1997 09:54:22 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA32470
for <[email protected]>; Fri, 15 Aug 1997 09:50:34 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA32512;
Fri, 15 Aug 1997 09:50:35 -0500
Message-Id: <[email protected]>
Date: Fri, 15 Aug 1997 09:50:35 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: WU-FTD: User directory question
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

See the guest howto and other docs below.

-- Michael

On Fri, 15 Aug 1997 [email protected] wrote:

> I am working with wu-ftd version 2.4, and need to use the chroot
> feature of wu-ftd. While using this we are having problems with the ls
> command. I have found that you have to have a copy of ls within the chrooted
> environment.....
>
> We want to chroot the users to /export/homes/
> and not to export/homes/user
>
> But I can not figure out in wu-ftpd how to set this up. Are there any pointers
> anyone can give to set this up.

This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.

ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-14.tar.Z

wu-ftpd FAQ: http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to [email protected]
with a subject line: send faq

guest howto: ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "[email protected]"
(immediate autoresponder; subject does not matter)

wu-ftpd Resource Center: http://www.landfield.com/wu-ftpd/
wu-ftpd list archive: http://www.landfield.com/wu-ftpd/mail-archive/

There are additional security references in the above docs.

From [email protected] Fri Aug 15 11:44:26 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA10419;
Fri, 15 Aug 1997 11:36:10 -0500 (CDT)
Received: from relay4.smtp.psi.net (relay4.smtp.psi.net [38.9.52.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA10539
for <[email protected]>; Fri, 15 Aug 1997 11:34:35 -0500 (CDT)
Received: from extsvr.aptix.com by relay4.smtp.psi.net (8.8.3/SMI-5.4-PSI)
id MAA21969; Fri, 15 Aug 1997 12:34:32 -0400 (EDT)
Received: from [38.229.247.10] (gatekeeper.aptix.com [38.229.247.10]) by extsvr.aptix.com (8.8.4/8.8.3) with SMTP id JAA08362 for <[email protected]>; Fri, 15 Aug 1997 09:34:58 -0700 (PDT)
Received: from intsvr ([132.147.160.93]) by [38.229.247.10]
via smtpd (for extsvr [38.229.247.20]) with SMTP; 15 Aug 1997 16:30:59 UT
Received: from axws2.aptix.com (axws2.aptix.com [132.147.160.16]) by intsvr.aptix.com (8.8.4/8.8.3) with SMTP id JAA28264 for <[email protected]>; Fri, 15 Aug 1997 09:40:12 -0700 (PDT)
Received: by axws2.aptix.com (SMI-8.6/SMI-SVR4)
id JAA02568; Fri, 15 Aug 1997 09:36:44 -0700
Message-Id: <[email protected]>
Date: Fri, 15 Aug 1997 09:36:44 -0700
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Jeffrey Liu)
To: [email protected]
Subject: hidden directory
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Content-MD5: SXZeKmcwGCW784KyyirXJA==
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,

I've setup a wu-ftd anonymous ftp server.
The hidden directory 'incoming' works fine, anonymous
can create a directory, put files and cann't ls files.
But when they cd to created directory, they can 'ls' all
the files. This is not complete hidden setting.

How can I creat a total hidden directory? It means whatever
anonymous user create a directory, they still cann't ls the content.

BTW, the upload entry on ftpaccess is:
upload /home/ftp /incoming/* yes ftp ftp 0600 dirs

Thanks for help.

Jeffrey
[email protected]

From [email protected] Fri Aug 15 12:26:08 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA32266;
Fri, 15 Aug 1997 12:19:31 -0500 (CDT)
Received: from tholian.securid.com (tholian.securid.com [204.167.112.129])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA14441
for <[email protected]>; Fri, 15 Aug 1997 12:17:20 -0500 (CDT)
Received: from mail.securid.com by tholian.securid.com
via smtpd (for wugate.wustl.edu [128.252.120.1]) with SMTP; 15 Aug 1997 17:34:35 UT
Received: by securid.com (8.7.6/8.7.3) with ESMTP id NAA12839 for <[email protected]>; Fri, 15 Aug 1997 13:25:16 -0400 (EDT)
Received: by exna01.securid.com with Internet Mail Service (5.0.1457.3)
id <QPTAQMW3>; Fri, 15 Aug 1997 13:17:27 -0400
Message-Id: <[email protected]>
Date: Fri, 15 Aug 1997 13:17:26 -0400
Reply-To: [email protected]
Sender: [email protected]
From: "Ross, Michael" <[email protected]>
To: "'[email protected]'" <[email protected]>
Subject: Umask
MIME-Version: 1.0
Content-Type: text/plain
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1457.3)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I am trying to use the umask feature on a modified version of ftpd 2.4.
The modifications should not have affected the umask functionality at
all.

I have found that when putting items onto the server, I can use umask to
modify any rw permissions, but that x permissions are always removed
from the files, even if umask is 000.

When getting, I find that a file that has rwxrwxrwx always becomes
rw-r--r--, no matter what umask I give ftp.

Any ideas? Am I expecting the umask command to do more than it should?

Thanks.

Michael Ross

Security Dynamics, Inc.
Bedford, MA

From [email protected] Fri Aug 15 15:00:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA28374;
Fri, 15 Aug 1997 14:44:04 -0500 (CDT)
Received: from sgii.com (lucifer.sgii.com [208.144.1.27])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA29734
for <[email protected]>; Fri, 15 Aug 1997 14:41:57 -0500 (CDT)
Received: from SGII0__.sgii.com (pmwill1-4.csrlink.net [207.44.8.55])
by sgii.com (8.8.4/8.8.4) with ESMTP
id PAA11359 for <[email protected]>; Fri, 15 Aug 1997 15:45:40 -0400 (EDT)
Message-Id: <[email protected]>
Date: Fri, 15 Aug 1997 15:35:55 -0400
Reply-To: [email protected]
Sender: [email protected]
From: "Matthew Smith" <[email protected]>
To: <[email protected]>
Subject: ftpd zombies
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-MSMail-Priority: Normal
X-Priority: 3
X-Mailer: Microsoft Internet Mail 4.70.1161
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hello.
I am having a problem with ftpd processes being left running when a client
disconnects abnormally. It doesn't happen every time (I haven't been able
to determine the exact circumstances which cause it), but I notice several
processes running every day which I am sure have no active connections.

Has anyone else seen this happen? If so, is there a way to avoid it?

Thanks for any help.

Matt

------------------
Matthew Smith
Director of Engineering and Operations
Safeguard Interactive, Inc.
[email protected]

From [email protected] Sat Aug 16 00:22:35 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id AAA32204;
Sat, 16 Aug 1997 00:13:13 -0500 (CDT)
Received: from mail.st.rim.or.jp ([email protected] [202.255.181.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id XAA05332
for <[email protected]>; Fri, 15 Aug 1997 23:59:43 -0500 (CDT)
Received: from Aptiva760.st.rim.or.jp (INS14.tokyo-ap4.dti.ne.jp [210.159.155.14]) by mail.st.rim.or.jp (8.8.5/3.5Wpl7-rim2.0) with SMTP id NAA03942; Sat, 16 Aug 1997 13:59:39 +0900 (JST)
Message-Id: <[email protected]>
Date: Sat, 16 Aug 1997 13:58:24 +0900
Reply-To: [email protected]
Sender: [email protected]
From: Yasushi Arai <[email protected]>
To: [email protected]
Subject: Compile Error Linux 1.2.13 & Shadow
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: AL-Mail 1.32
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,

I setup wu-ftpd 2.4.2-beta 14. Target for Linux 1.2.13 & Shadow Password.
Compile error ftpd.
--------------------
nediath:/usr/src/wu-ftpd-2.4.2-beta-14# build lnx
make args are :
make opts are :

Linking Makefiles.

Making support library.
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -c strcasestr.c
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -c authuser.c
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -c snprintf.c
rm -f libsupport.a
ar cq libsupport.a strcasestr.o authuser.o snprintf.o
ranlib libsupport.a

Making ftpd.
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c ftpd
c -o ftpd.o
bison -y ftpcmd.y
mv -f y.tab.c ftpcmd.c
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c ftpc
md.c -o ftpcmd.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c glob
c -o glob.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c logw
tmp.c -o logwtmp.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c pope
n.c -o popen.o
sh newvers.sh
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c vers.c
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c acce
ss.c -o access.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c exte
nsions.c -o extensions.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c real
path.c -o realpath.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c acl.
c -o acl.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c priv
ate.c -o private.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c auth
enticate.c -o authenticate.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c conv
ersions.c -o conversions.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c host
acc.c -o hostacc.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -c sigf
ix.c -o sigfix.o
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -o ftpd f
tpd.o ftpcmd.o glob.o logwtmp.o popen.o vers.o access.o extensions.o realpath.o
acl.o private.o auth
enticate.o conversions.o hostacc.o sigfix.o -lsupport -lbsd -lshadow
glob.o(.text+0x482): undefined reference to `dirfd'
make: *** [ftpd] Error 1

Making ftpcount.
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -o ftpcou
nt ftpcount.c vers.o -lsupport -lbsd -lshadow

Making ftpshut.
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -o ftpshu
t ftpshut.c vers.o -lsupport -lbsd -lshadow

Making ckconfig.
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support
-L../support -s -o ckconf
ig ckconfig.c

Links to executables are in bin directory:
size: bin/ftpd: No such file or directory
text data bss dec hex filename
2820 2644 112 5576 15c8 bin/ftpcount
3108 2301 112 5521 1591 bin/ftpshut
2820 2644 112 5576 15c8 bin/ftpwho
1108 1913 100 3121 c31 bin/ckconfig
Done
------------------------

--
Yasushi Arai <[email protected]>
Tokyo,Japan

From [email protected] Sat Aug 16 02:06:00 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id BAA16498;
Sat, 16 Aug 1997 01:54:18 -0500 (CDT)
Received: from inorganic5.fdt.net (inorganic5.fdt.net [205.229.48.42])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id BAA12243
for <[email protected]>; Sat, 16 Aug 1997 01:47:46 -0500 (CDT)
Received: from localhost (jlewis@localhost)
by inorganic5.fdt.net with SMTP id CAA20946;
Sat, 16 Aug 1997 02:46:44 -0400
Message-Id: <[email protected]>
Date: Sat, 16 Aug 1997 02:46:43 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Jon Lewis <[email protected]>
To: Matthew Smith <[email protected]>
Cc: [email protected]
Subject: Re: ftpd zombies
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-To-Stop-Spam-See: http://inorganic5.fdt.net/~jlewis/spam.txt
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Fri, 15 Aug 1997, Matthew Smith wrote:

> Hello.
> I am having a problem with ftpd processes being left running when a client
> disconnects abnormally. It doesn't happen every time (I haven't been able
> to determine the exact circumstances which cause it), but I notice several
> processes running every day which I am sure have no active connections.
>
> Has anyone else seen this happen? If so, is there a way to avoid it?

I used to see this frequently...especially hung wu.ftpd sessions that got
stuck during a file transfer. I hacked the source adding a -z commandline
option (z for zap :). The arg it takes is an integer number of seconds
used in alarm() calls strategicaly placed around all read and write calls
I thought might potentially block forever. I've been running with -z240
for a few weeks and have found no more hanging ftpd's and gotten no
complaints of breakage. I should probably clean up the patch, apply it to
beta14, and submit it back to the list.

I really don't know how much all the alarm(var)/alarm(0) calls affect
performance, or if they do at all. Maybe someone else can theorize on
that. It doesn't appear to affect throughput at all.

------------------------------------------------------------------
Jon Lewis <[email protected]> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____

From [email protected] Sun Aug 17 23:19:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id XAA21357;
Sun, 17 Aug 1997 23:10:23 -0500 (CDT)
Received: from augnet.augusta.net (www.augusta.net [204.116.88.40])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id XAA22885
for <[email protected]>; Sun, 17 Aug 1997 23:02:47 -0500 (CDT)
Received: from marcy ([204.116.88.42]) by augnet.augusta.net
(post.office MTA v2.0 0813 ID# 0-18256) with SMTP id AAA17486
for <[email protected]>; Mon, 18 Aug 1997 00:08:12 -0400
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 00:08:09 -0500
Reply-To: [email protected]
Sender: [email protected]
From: Kevin Billings <[email protected]>
To: [email protected]
Subject: User Directory CHROOT and ls
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 3.0 (Win95; U)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I have wu-ftp2.4 beta 14 setup on solaris 2.4 for our users so when they
login they are chroot to /export/home, but i get the following message:

200 PORT command successful.
LIST
425 Can't create data socket (0.0.0.0,20): Bad file number.
DoDirList returned 0
rList returned 0

The list commands does not work. i have setup all directory per the
FAQ's

Thanks

Kevin Billings
Augusta.Net, Inc.

From [email protected] Mon Aug 18 00:27:51 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id AAA26883;
Mon, 18 Aug 1997 00:21:35 -0500 (CDT)
Received: from buffy.isi.net (buffy.isi.net [204.71.194.215])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id AAA31483
for <[email protected]>; Mon, 18 Aug 1997 00:17:14 -0500 (CDT)
Received: from localhost (mike@localhost) by buffy.isi.net (8.8.5/ISI-1.5) with SMTP id WAA19722; Sun, 17 Aug 1997 22:17:12 -0700 (PDT)
Message-Id: <Pine.GSO.3.96.970817221422.10534C-100000@buffy>
Date: Sun, 17 Aug 1997 22:17:12 -0700 (PDT)
Reply-To: [email protected]
Sender: [email protected]
From: Mike Hedlund <[email protected]>
To: Kevin Billings <[email protected]>
Cc: [email protected]
Subject: Re: User Directory CHROOT and ls
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: mike@buffy
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

If you chroot() you need to have a "/dev/tcp and /dev/zero".. so make
/export/home/dev and stick tcp and zero in it. and if i recall, on solaris
2.4 you also need a "/etc/netconfig" altho i could be mistaken..

-mike

On Mon, 18 Aug 1997, Kevin Billings wrote:

> I have wu-ftp2.4 beta 14 setup on solaris 2.4 for our users so when they
> login they are chroot to /export/home, but i get the following message:
>
>
> 200 PORT command successful.
> LIST
> 425 Can't create data socket (0.0.0.0,20): Bad file number.
> DoDirList returned 0
> rList returned 0
>
>
> The list commands does not work. i have setup all directory per the
> FAQ's
>
> Thanks
>
> Kevin Billings
> Augusta.Net, Inc.
>
>

From [email protected] Mon Aug 18 04:24:46 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA04169;
Mon, 18 Aug 1997 04:16:29 -0500 (CDT)
Received: from dawn.EUnet.pt ([email protected] [193.126.1.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA11505
for <[email protected]>; Mon, 18 Aug 1997 04:11:06 -0500 (CDT)
Received: from dawn.EUnet.pt (localhost [127.0.0.1])
by dawn.EUnet.pt (8.8.5/8.8.5) with ESMTP id KAA16275
for <[email protected]>; Mon, 18 Aug 1997 10:10:58 +0100
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 10:10:55 +0100 (WET DST)
Reply-To: [email protected]
Sender: [email protected]
From: Carlos Canau <[email protected]>
To: [email protected]
Subject: Re: User Directory CHROOT and ls
In-Reply-To: <Pine.GSO.3.96.970817221422.10534C-100000@buffy>
MIME-Version: 1.0
Content-Type: TEXT/plain; CHARSET=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On 17 Aug, Mike Hedlund wrote:
>
>
> If you chroot() you need to have a "/dev/tcp and /dev/zero".. so make
> /export/home/dev and stick tcp and zero in it. and if i recall, on solaris
> 2.4 you also need a "/etc/netconfig" altho i could be mistaken..

Oh boy... this is the standard response all over again. The
list archives is full with this answer... :'(

Two or three weeks ago I've posted a similar question about
2.4.13. I've followed the FAQ, Sun anonymous FTP man page with the
setup script, played with ~ftp/devices, and several other crazy (?)
things that came on my mind.

The problem is not only with "dir" or "ls". The problem is
also with "get" and "put" (everything that tries to open "/dev/tcp",
that is the bind() function fails). Probably I'm missing some basic
thing, but anyway:

Is there any success story with anonymous FTP (chroot and
/dev/* on the chroot'd tree) on Solaris 2.x on ***SPARC*** ?

best regards,
</canau

>
> -mike
>
> On Mon, 18 Aug 1997, Kevin Billings wrote:
>
>> I have wu-ftp2.4 beta 14 setup on solaris 2.4 for our users so when they
>> login they are chroot to /export/home, but i get the following message:
>>
>>
>> 200 PORT command successful.
>> LIST
>> 425 Can't create data socket (0.0.0.0,20): Bad file number.

--
Carlos Canau

From [email protected] Mon Aug 18 04:35:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA08085;
Mon, 18 Aug 1997 04:28:51 -0500 (CDT)
Received: from igubu.saix.co.za (igubu.saix.net [196.25.1.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA07786
for <[email protected]>; Mon, 18 Aug 1997 04:27:33 -0500 (CDT)
Received: from ikaya (ikaya.saix.net [198.54.202.201]) by igubu.saix.co.za
(post.office MTA v2.0 0813 ID# 0-11587) with SMTP id AAA15580;
Mon, 18 Aug 1997 11:26:59 +0200
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 11:28:52 +0200
Reply-To: [email protected]
Sender: [email protected]
From: Paul Gamble <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Guest permissions
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; HP-UX A.09.03 9000/725)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I am running wu-ftp v2.4 on solaris2.5.1

I am trying to setup two ftp guest accounts that have the same
home directory location, but with differing ftpaccess permissions.

The first guest account should not be able to delete, chmod, etc,
while the second account (intended as an "admin" account) should
be able to do those things.

However, it appears as if the ftpaccess "permissions" can only be made
to apply globally to all guest accounts, i.e.:

# all the following default to "yes" for everybody
delete no guest,anonymous # delete permission?
overwrite no guest,anonymous # overwrite permission?
rename no guest,anonymous # rename permission?
chmod no guest,anonymous # chmod permission?
umask no guest,anonymous # umask permission?

My "admin" guest account needs to be able to at least delete files.

Is there any way around this? Any assistance / advice would be
gratefully accepted.

Thanks,
--
Paul Gamble
SAIX System Administration
E-mail : [email protected]
Tel : +27-21-414-4722
Fax : +27-21-414-4706

From [email protected] Mon Aug 18 04:47:57 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA14161;
Mon, 18 Aug 1997 04:41:33 -0500 (CDT)
Received: from thoth.mch.sni.de (thoth.mch.sni.de [192.35.17.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA13123
for <[email protected]>; Mon, 18 Aug 1997 04:38:24 -0500 (CDT)
Received: from seth.mch.sni.de (seth.mch.sni.de [139.25.208.77])
by thoth.mch.sni.de (8.8.6/8.8.6) with SMTP id LAA20639
for <@mail.mch.sni.de:[email protected]>; Mon, 18 Aug 1997 11:38:22 +0200 (MDT)
Received: (from winfried@localhost) by seth.mch.sni.de (950413.SGI.8.6.12/950213.SGI.AUTOCF) id LAA22306 for [email protected]; Mon, 18 Aug 1997 11:38:21 +0200
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 11:38:21 +0200 (MDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Winfried Magerl)
To: [email protected]
Subject: Re: User Directory CHROOT and ls
In-Reply-To: <[email protected]> from "Carlos Canau" at Aug 18, 97 10:10:55 am
Content-Type: text
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

> Is there any success story with anonymous FTP (chroot and
> /dev/* on the chroot'd tree) on Solaris 2.x on ***SPARC*** ?

Yes ;-)

first to do:

man ftpd

Is this command realy so hard ?
On most systems (or better to say: on every system I know) you will find
a description how to set up the chroot for anonymous-ftp.
(and on some systems this description realy works ;-)

On solaris-2.5.1 you will find a shell-script to generate the chroot
for anonymous-ftp (yes, it's very complicate to set up the chroot
for solaris since you need a lot of shared libraries for ls).

And to be more specific for the devices here is the part of the shell-script
which creates the devices:
-----------------------------------
# make device nodes. ticotsord and udp are necessary for
# 'ls' to resolve NIS names.

for device in zero tcp udp ticotsord
do
line=`ls -lL /dev/${device} | sed -e 's/,//'`
major=`echo $line | awk '{print $5}'`
minor=`echo $line | awk '{print $6}'`
rm -f ${ftphome}/dev/${device}
mknod ${ftphome}/dev/${device} c ${major} ${minor}
done

chmod 666 ${ftphome}/dev/*
-----------------------------------

best regards

winfried

--
Winfried Magerl - Internet Administration
Siemens Business Services, 81739 Munich, Germany
Internet-Mail: [email protected]

From [email protected] Mon Aug 18 05:45:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA14945;
Mon, 18 Aug 1997 05:38:41 -0500 (CDT)
Received: from dawn.EUnet.pt ([email protected] [193.126.1.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id FAA16294
for <[email protected]>; Mon, 18 Aug 1997 05:37:06 -0500 (CDT)
Received: from dawn.EUnet.pt (localhost [127.0.0.1])
by dawn.EUnet.pt (8.8.5/8.8.5) with ESMTP id LAA16617;
Mon, 18 Aug 1997 11:36:29 +0100
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 11:36:26 +0100 (WET DST)
Reply-To: [email protected]
Sender: [email protected]
From: Carlos Canau <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: User Directory CHROOT and ls
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/plain; CHARSET=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On 18 Aug, Winfried Magerl wrote:
>> Is there any success story with anonymous FTP (chroot and
>> /dev/* on the chroot'd tree) on Solaris 2.x on ***SPARC*** ?
>
> Yes ;-)

Ufff... .... errr... I bet it isn't 2.5.1 :)...

>
> first to do:
>
> man ftpd
>
> Is this command realy so hard ?

Yes, it is!... I have to type 'm', then 'a', then 'n'!... then
I have to figure out what topic that I want to know about!...

Thanks for your reply... :) I'll just quote a line bit my
message:

>>> Two or three weeks ago I've posted a similar question about
>>> 2.4.13. I've followed the FAQ, Sun anonymous FTP man page with the
>>> setup script, played with ~ftp/devices, and several other crazy
>>> (?) things that came on my mind.

> On most systems (or better to say: on every system I know) you will find
> a description how to set up the chroot for anonymous-ftp.
> (and on some systems this description realy works ;-)
>
> On solaris-2.5.1 you will find a shell-script to generate the chroot
> for anonymous-ftp (yes, it's very complicate to set up the chroot
> for solaris since you need a lot of shared libraries for ls).

I've played with dynamic linked and static ls. ls works fine
in "chroot ~ftp /bin/ls". The problem is on /dev/tcp and bind() (and
/dev/zero).

>
> And to be more specific for the devices here is the part of the shell-script
> which creates the devices:
> -----------------------------------
> # make device nodes. ticotsord and udp are necessary for
> # 'ls' to resolve NIS names.
>
> for device in zero tcp udp ticotsord
> do
> line=`ls -lL /dev/${device} | sed -e 's/,//'`
> major=`echo $line | awk '{print $5}'`
> minor=`echo $line | awk '{print $6}'`
> rm -f ${ftphome}/dev/${device}
> mknod ${ftphome}/dev/${device} c ${major} ${minor}
> done
>
> chmod 666 ${ftphome}/dev/*
> -----------------------------------
>

Here... look at my "dev" on the chroot'd tree:

total 16
17088 1 dr-xr-xr-x 2 root other 512 Aug 18 11:14 .
11392 15 dr-xr-xr-x 832 root other 15360 Aug 6 12:18 ..
17089 0 crw-rw-rw- 1 root other 11, 42 Aug 17 12:54 tcp
17092 0 crw-rw-rw- 1 root other 105, 1 Aug 5 19:17 ticotsord
17093 0 crw-rw-rw- 1 root other 11, 41 Aug 4 16:38 udp
17090 0 crw-rw-rw- 1 root other 13, 12 Aug 4 16:38 zero

Show me yours :))),

I even put "straddr.so" (from netconfig) on ~ftp/usr/lib ...

Some truss output:

------> truss -f chroot ~ftp /bin/ls.dynamic
2082: execve("/usr/local/bin/chroot", 0xEFFFFC4C, 0xEFFFFC5C) argc = 3
2082: open("/dev/zero", O_RDONLY) = 3
2082: mmap(0x00000000, 4096, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE, 3, 0) = 0xEF7C0000
2082: open("/usr/lib/libsec.so.1", O_RDONLY) = 4
2082: fstat(4, 0xEFFFF904) = 0
2082: mmap(0x00000000, 4096, PROT_READ|PROT_EXEC, MAP_SHARED, 4, 0) = 0xEF7B0000
2082: mmap(0x00000000, 77824, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xEF790000
2082: munmap(0xEF792000, 61440) = 0
2082: mmap(0xEF7A1000, 4734, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED, 4, 4096) = 0xEF7A1000
2082: close(4) = 0
2082: open("/usr/lib/libc.so.1", O_RDONLY) = 4
2082: fstat(4, 0xEFFFF904) = 0
2082: mmap(0xEF7B0000, 4096, PROT_READ|PROT_EXEC, MAP_SHARED|MAP_FIXED, 4, 0) = 0xEF7B0000
2082: mmap(0x00000000, 618496, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xEF6C0000
2082: munmap(0xEF73F000, 61440) = 0
2082: mmap(0xEF74E000, 27968, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED, 4, 516096) = 0xEF74E000
2082: mmap(0xEF755000, 8080, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED, 3, 0) = 0xEF755000
2082: close(4) = 0
2082: open("/usr/lib/libdl.so.1", O_RDONLY) = 4
2082: fstat(4, 0xEFFFF904) = 0
2082: mmap(0xEF7B0000, 4096, PROT_READ|PROT_EXEC, MAP_SHARED|MAP_FIXED, 4, 0) = 0xEF7B0000
2082: close(4) = 0
2082: open("/usr/platform/SUNW,SPARCstation-4/lib/libc_psr.so.1", O_RDONLY) Err#2 ENOENT
2082: close(3) = 0
2082: brk(0x00025020) = 0
2082: brk(0x00027020) = 0
2082: chroot("/home/ftp") = 0
2082: execve("/bin/ls.dynamic", 0xEFFFFC5C, 0xEFFFFC64) argc = 1
2082: open("/dev/zero", O_RDONLY) Err#6 ENXIO
2082: open("/dev/zero", O_RDONLY) Err#6 ENXIO
2082: open("/dev/zero", O_RDONLY) Err#6 ENXIO
2082: open("/dev/zero", O_RDONLY) Err#6 ENXIO
2082: open("/dev/zero", O_RDONLY) Err#6 ENXIO
2082: open("/dev/zero", O_RDONLY) Err#6 ENXIO

... [ad nauseum]

2082: open("/dev/zero", O_RDONLY) Err#6 ENXIO
2082: open("/dev/zero", O_RDONLY) Err#6 ENXIO
2082: Incurred fault #6, FLTBOUNDS %pc = 0xEF7E6D8C
2082: siginfo: SIGSEGV SEGV_MAPERR addr=0xEF7FFFE0
2082: Received signal #11, SIGSEGV [default]
2082: siginfo: SIGSEGV SEGV_MAPERR addr=0xEF7FFFE0
2082: *** process killed ***

---------> truss -f chroot ~ftp /bin/ls.static -lisa /dev
2115: execve("/usr/local/bin/chroot", 0xEFFFFC34, 0xEFFFFC4C) argc = 5
2115: open("/dev/zero", O_RDONLY) = 3
2115: mmap(0x00000000, 4096, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE, 3, 0) = 0xEF7C0000
2115: open("/usr/lib/libsec.so.1", O_RDONLY) = 4
2115: fstat(4, 0xEFFFF8EC) = 0
2115: mmap(0x00000000, 4096, PROT_READ|PROT_EXEC, MAP_SHARED, 4, 0) = 0xEF7B0000
2115: mmap(0x00000000, 77824, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xEF790000
2115: munmap(0xEF792000, 61440) = 0
2115: mmap(0xEF7A1000, 4734, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED, 4, 4096) = 0xEF7A1000
2115: close(4) = 0
2115: open("/usr/lib/libc.so.1", O_RDONLY) = 4
2115: fstat(4, 0xEFFFF8EC) = 0
2115: mmap(0xEF7B0000, 4096, PROT_READ|PROT_EXEC, MAP_SHARED|MAP_FIXED, 4, 0) = 0xEF7B0000
2115: mmap(0x00000000, 618496, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xEF6C0000
2115: munmap(0xEF73F000, 61440) = 0
2115: mmap(0xEF74E000, 27968, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED, 4, 516096) = 0xEF74E000
2115: mmap(0xEF755000, 8080, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED, 3, 0) = 0xEF755000
2115: close(4) = 0
2115: open("/usr/lib/libdl.so.1", O_RDONLY) = 4
2115: fstat(4, 0xEFFFF8EC) = 0
2115: mmap(0xEF7B0000, 4096, PROT_READ|PROT_EXEC, MAP_SHARED|MAP_FIXED, 4, 0) = 0xEF7B0000
2115: close(4) = 0
2115: open("/usr/platform/SUNW,SPARCstation-4/lib/libc_psr.so.1", O_RDONLY) Err#2 ENOENT
2115: close(3) = 0
2115: brk(0x00025020) = 0
2115: brk(0x00027020) = 0
2115: chroot("/home/ftp") = 0
2115: execve("/bin/ls.static", 0xEFFFFC44, 0xEFFFFC54) argc = 3
2115: brk(0x0005DAF8) = 0
2115: brk(0x0005FAF8) = 0
2115: time() = 871900063
2115: ioctl(1, TCGETA, 0xEFFFFB5C) Err#22 EINVAL
2115: ioctl(1, TIOCGWINSZ, 0xEFFFFBE0) Err#22 EINVAL
2115: brk(0x0005FAF8) = 0
2115: brk(0x00063AF8) = 0
2115: lstat("/dev", 0x0005E514) = 0
2115: open("/dev", O_RDONLY|O_NDELAY) = 3
2115: fcntl(3, F_SETFD, 0x00000001) = 0
2115: fstat(3, 0xEFFFFAE8) = 0
2115: getdents(3, 0x00062218, 1048) = 96
2115: lstat("/dev/.", 0x0005E514) = 0
2115: lstat("/dev/..", 0x0005E5B0) = 0
2115: lstat("/dev/tcp", 0x0005E64C) = 0
2115: lstat("/dev/zero", 0x0005E6E8) = 0
2115: lstat("/dev/ticotsord", 0x0005E784) = 0
2115: lstat("/dev/udp", 0x0005E820) = 0
2115: getdents(3, 0x00062218, 1048) = 0
2115: close(3) = 0
2115: ioctl(1, TCGETA, 0xEFFFF9B4) Err#22 EINVAL
2115: fstat(1, 0xEFFFFA28) = 0
2115: brk(0x00063AF8) = 0
2115: brk(0x00065AF8) = 0
2115: open("/etc/nsswitch.conf", O_RDONLY) = 3
2115: fstat(3, 0xEFFFF628) = 0
2115: brk(0x00065AF8) = 0
2115: brk(0x00067AF8) = 0
2115: ioctl(3, TCGETA, 0xEFFFF5B4) Err#25 ENOTTY
2115: read(3, " #\n # / e t c / n s s".., 8192) = 690
2115: read(3, 0x00064304, 8192) = 0
2115: lseek(3, 0, SEEK_CUR) = 690
2115: close(3) = 0
2115: open("/usr/share/lib/zoneinfo/WET", O_RDONLY) = 3
2115: read(3, "\0\0\0\0\0\0\0\0\0\0\0\0".., 8192) = 680
2115: close(3) = 0
total 16
17088 1 dr-xr-xr-x 2 0 1 512 Aug 18 11:14 .
11392 15 dr-xr-xr-x 832 0 1 15360 Aug 6 12:18 ..
17089 0 crw-rw-rw- 1 0 1 11, 42 Aug 17 12:54 tcp
17092 0 crw-rw-rw- 1 0 1 105, 1 Aug 5 19:17 ticotsord
17093 0 crw-rw-rw- 1 0 1 11, 41 Aug 4 16:38 udp
17090 0 crw-rw-rw- 1 0 1 13, 12 Aug 4 16:38 zero
2115: write(1, " t o t a l 1 6\n 1".., 445) = 445
2115: close(1) = 0
2115: lseek(0, 0, SEEK_CUR) = 1558908
2115: _exit(0)

:'(
</canau

P.S.: I hope that I am not annoying anyone with my truss outputs :/. If
so, please accept my appologies.

From [email protected] Mon Aug 18 08:49:42 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA24761;
Mon, 18 Aug 1997 08:42:45 -0500 (CDT)
Received: from dawn.EUnet.pt ([email protected] [193.126.1.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA24969
for <[email protected]>; Mon, 18 Aug 1997 08:41:10 -0500 (CDT)
Received: from dawn.EUnet.pt (localhost [127.0.0.1])
by dawn.EUnet.pt (8.8.5/8.8.5) with ESMTP id OAA17133
for <[email protected]>; Mon, 18 Aug 1997 14:41:01 +0100
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 14:40:57 +0100 (WET DST)
Reply-To: [email protected]
Sender: [email protected]
From: Carlos Canau <[email protected]>
To: [email protected]
Subject: Re: User Directory CHROOT and ls
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/plain; CHARSET=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On 18 Aug, I wrote:
> On 18 Aug, Winfried Magerl wrote:
>>> Is there any success story with anonymous FTP (chroot and
>>> /dev/* on the chroot'd tree) on Solaris 2.x on ***SPARC*** ?
>>
>> Yes ;-)
>
> Ufff... .... errr... I bet it isn't 2.5.1 :)...
>

This is sad... :(((. It was on the FAQ... (the Solaris 2 FAQ,
I mean). Here's the quote:

-------------------------------------------------------------------------
*3.9) How can I set up anonymous FTP?

If you need help, ftp the file "ftp.anon" from
ftp://ftp.math.fsu.edu/pub/solaris/ftp.anon.

ftpd(1M) is nearly complete when it comes to setting
up anonymous ftp. It only leaves out /etc/nsswitch.conf. [S2.3]

Additionally, you must make sure that the filesystem ~ftp resides
on is not mounted with the nosuid option. This is because the nosuid
option also disables the kernel honoring device files which are
required in the chroot environment for ~ftp.

For security reasons, it is important that no files under ~ftp are
owned by ftp. If they are, anonymous users can modify them.

In Solaris 2.5 and later, you will need to copy /usr/lib/libmp.so.1
as well as provide a /dev/ticlts (for wu-ftpd).

------------------------------------------------------------------------

ftp.anon is the script that Winfried mentioned on his message;
My problem was with the filesystem being mounted "nosuid"
which looked like a *good* option to a filesystem with a anonymous ftp
dir on... bah!;
About /dev/ticlts I don't think it is needed. It is working
without it and the man page for tictls mentions that "ticlts is a
datagram-mode transport provider" so I guess it isn't really
necessary.

I think this bit about the nosuid should go to the wu-ftpd FAQ
:).

O.K.... I'm running wu-ftpd 2.4.14 on Solaris 2.5.1 on a
SPARC. It works.

My thanks to everyone that send me mail about this problem.
regards,
</canau

From [email protected] Mon Aug 18 09:45:45 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA32056;
Mon, 18 Aug 1997 09:38:03 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA28903
for <[email protected]>; Mon, 18 Aug 1997 09:32:43 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA00935
for <[email protected]>; Mon, 18 Aug 1997 09:32:46 -0500
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 09:32:46 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: [email protected]
Subject: Re: Guest permissions
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

chmod the chrooted directory to 1775 permissions -- that is, turn the
sticky bit on. Set all users with access to the account into an exclusive
group. Set the upload directive to make all uploads to that account are
owned by the admin user, permissions 755.

With the directory set 1775, all members of the group can do uploads, but
with the sticky bit set only the admin user will be able to delete files,
since that account owns the files. Test this to make sure it works on your
Unix.

-- Michael

On Mon, 18 Aug 1997, Paul Gamble wrote:

> Assign ownership of the files and chrooted directory to the admin
> account, file permissions 755. The other won't be able to write up
> because of permission failures. Too simple?
>
> -- Michael
>
> That's the problem: The "other" account still needs to write files. It
> just musn't be able to delete them as the account is used by multiple
> "real" users.

From [email protected] Mon Aug 18 09:59:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA00042;
Mon, 18 Aug 1997 09:50:51 -0500 (CDT)
Received: from c2smtp.on.com (c2smtp.on.com [207.18.216.5])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA31356
for <[email protected]>; Mon, 18 Aug 1997 09:50:19 -0500 (CDT)
Received: from Connect2 Message Router by c2smtp.on.com
via Connect2-SMTP 4.30A; Mon, 18 Aug 1997 10:46:35 -0400
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 10:47:48 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Chris Strong <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: User Directory CHROOT and ls
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-type: text/plain; charset="US-ASCII"
Content-disposition: inline
Content-transfer-encoding: 7bit
X-Sender: [email protected]
X-Mailer: Connect2-SMTP 4.30A MHS/SMF to SMTP Gateway
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

----------- Original message follows -----------
On 17 Aug, Mike Hedlund wrote:
>
>
> If you chroot() you need to have a "/dev/tcp and /dev/zero".. so make
> /export/home/dev and stick tcp and zero in it. and if i recall, on
solaris
> 2.4 you also need a "/etc/netconfig" altho i could be mistaken..

Oh boy... this is the standard response all over again. The
list archives is full with this answer... :'(

Two or three weeks ago I've posted a similar question about
2.4.13. I've followed the FAQ, Sun anonymous FTP man page with the
setup script, played with ~ftp/devices, and several other crazy (?)
things that came on my mind.

The problem is not only with "dir" or "ls". The problem is
also with "get" and "put" (everything that tries to open "/dev/tcp",
that is the bind() function fails). Probably I'm missing some basic
thing, but anyway:

Is there any success story with anonymous FTP (chroot and
/dev/* on the chroot'd tree) on Solaris 2.x on ***SPARC*** ?

best regards,
</canau

>
> -mike
>
> On Mon, 18 Aug 1997, Kevin Billings wrote:
>
>> I have wu-ftp2.4 beta 14 setup on solaris 2.4 for our users so when
they
>> login they are chroot to /export/home, but i get the following
message:
>>
>>
>> 200 PORT command successful.
>> LIST
>> 425 Can't create data socket (0.0.0.0,20): Bad file number.

--
Carlos Canau

----------- End of original message -----------
ls -la of ~/dev
d--x--x--x 2 root other 512 Aug 15 14:53 .
dr-xr-xr-x 12 root other 512 Aug 15 17:32 ..
cr--r--r-- 1 root other 11, 42 Aug 15 14:52 tcp
cr--r--r-- 1 root other 105, 1 Aug 15 14:53 ticotsord
cr--r--r-- 1 root other 11, 41 Aug 15 14:53 udp
cr--r--r-- 1 root other 13, 12 Aug 15 14:53 zero

ls -la of ~/usr/lib
d--x--x--x 2 root other 512 Aug 15 14:57 .
d--x--x--x 4 root other 512 Aug 15 14:54 ..
-r-xr-xr-x 1 root other 24576 Aug 15 14:56 ld.so
-r-xr-xr-x 1 root other 137160 Aug 15 14:56 ld.so.1
-r-xr-xr-x 1 root other 664100 Aug 15 14:56 libc.so.1
-r-xr-xr-x 1 root other 2564 Aug 15 14:56 libdl.so.1
-r-xr-xr-x 1 root other 15720 Aug 15 14:56 libintl.so.1
-r-xr-xr-x 1 root other 570560 Aug 15 14:56 libnsl.so.1
-r-xr-xr-x 1 root other 68780 Aug 15 14:56 libsocket.so.1
-r-xr-xr-x 1 root other 39932 Aug 15 14:57 libw.so.1
-r-xr-xr-x 1 root other 9332 Aug 15 14:57 nss_dns.so.1
-r-xr-xr-x 1 root other 21144 Aug 15 14:57 nss_files.so.1
-r-xr-xr-x 1 root other 24404 Aug 15 14:57 nss_nis.so.1
-r-xr-xr-x 1 root other 28844 Aug 15 14:57 nss_nisplus.so.1
-r-xr-xr-x 1 root other 9312 Aug 15 14:57 straddr.so.2

If you aren't adament about using betaXX, check out the Sun freeware site

http://smc.vnet.net/Solaris 2.5.html
for lots of pkgadd installable applications for Solaris, including
wu-ftpd2.4

sunsoft.sun.com does have a link to above on their site, however they
make several disclaimers that the freeware site is not officially
affiliated with or supported by Sun Software Inc, so you're on your own.
For kicks, I got the wu-ftpd package installed on Sparc Solaris 2.5.1 and
handling anonymous ftp in 30 minutes.

Chris Strong
IS Administrator
ON Technology
Net Mail: cstrong @ on.com
Web site: www.on.com

From [email protected] Mon Aug 18 11:01:49 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA01501;
Mon, 18 Aug 1997 10:55:08 -0500 (CDT)
Received: from relay.conware.de ([email protected] [153.92.5.3])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA04856
for <[email protected]>; Mon, 18 Aug 1997 10:52:01 -0500 (CDT)
Received: from nentec.de [153.92.64.11] (finken)
by relay.conware.de with smtp (Exim 1.624 #1)
id 0x0U4K-0008Jv-00; Mon, 18 Aug 1997 17:50:12 +0200
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 17:51:52 +0200 (MET DST)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Finken <[email protected]>
To: [email protected]
Subject: cgi script for ftpaccess configuration
Content-Type: text/plain; charset=iso-8859-1
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Sender: [email protected]
X-Mailer: XFMail 1.2-alpha [p0] on SunOS
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id KAA05915
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,

I'm looking for a cgi script (or set of scripts), which can be used to
configure wu-ftpd. Is there anything like that around?

Michael

--
Michael Finken NENTEC Netzwerktechnologie GmbH
Tel.: +49 721 9495-0 76227 Karlsruhe/Germany
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Consciousness: The annoying time between naps. (Zen for Cats)

From [email protected] Mon Aug 18 11:33:01 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA09166;
Mon, 18 Aug 1997 11:25:57 -0500 (CDT)
Received: from sun200e.oliverdesign.com (sun200e.oliverdesign.com [205.179.167.4])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA06103
for <[email protected]>; Mon, 18 Aug 1997 11:22:40 -0500 (CDT)
Received: from tfox ([205.179.167.15]) by sun200e.oliverdesign.com
(Netscape Mail Server v2.0) with SMTP id AAA8935
for <[email protected]>; Mon, 18 Aug 1997 09:18:24 -0700
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 09:24:00 -0700
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Thomas B. Fox)
To: [email protected]
Subject: Trouble setting up chroot'ed home directories
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender: [email protected]
X-Mailer: Windows Eudora Pro Version 3.0 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I have searched all the resources that I can find online but have been
unable to find a difinitive guide to setting up chroot'ed home directories.
Can someone help me out?

I want to restrict my ftponly users to their home directories and not allow
them to browse up the filesystem.

Thanks in advance.

Thomas B. Fox - [email protected]
- Systems Administrator and Internet Services Manager
- Oliver Design, Inc. - 5 Victor Sq. - Scotts Valley, CA 95066
- (408) 438-0701 x252

From [email protected] Mon Aug 18 11:52:03 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA10884;
Mon, 18 Aug 1997 11:44:52 -0500 (CDT)
Received: from shrimp.fishy.net (fluke.fishy.net [206.156.56.33])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA00838
for <[email protected]>; Mon, 18 Aug 1997 11:42:15 -0500 (CDT)
Received: (from ben@localhost) by shrimp.fishy.net (8.8.5/8.7.3) id MAA44050; Mon, 18 Aug 1997 12:42:11 -0400
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 12:42:11 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Ben Mehlman <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: ftpd zombies
In-Reply-To: <[email protected]> from "Matthew Smith" at Aug 15, 97 03:35:55 pm
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

>
> Hello.
> I am having a problem with ftpd processes being left running when a client
> disconnects abnormally. It doesn't happen every time (I haven't been able
> to determine the exact circumstances which cause it), but I notice several
> processes running every day which I am sure have no active connections.
>
> Has anyone else seen this happen? If so, is there a way to avoid it?

Yes, it happens when the user is uploading, and suddenly dissapears (eg
modem connection drops etc). The data connection is blocked on read, and
the control connection has nothing being written to it, so ftpd is unaware
that anything is wrong. There's no timeout on the data connection
unfortunately.

The way I solved this in a hurry was to periodically run a perl script to
kill the ftpds that have been around too long. I posted that (very short)
script to the list once, but I'll mail it to you if you want it...

-Ben
----------------------------------------------------------------------------
Ben Mehlman The reasonable man adapts himself to the world; the
Prodigy Services Corp unreasonable one persists in trying to adapt the
[email protected] world to himself. Therefore all progress depends on
the unreasonable man. -George Bernard Shaw

From [email protected] Mon Aug 18 11:57:54 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA04593;
Mon, 18 Aug 1997 11:51:24 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA11639
for <[email protected]>; Mon, 18 Aug 1997 11:46:56 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id LAA03922;
Mon, 18 Aug 1997 11:46:38 -0500
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 11:46:38 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: "Thomas B. Fox" <[email protected]>
Cc: [email protected]
Subject: Re: Trouble setting up chroot'ed home directories
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

See the guest howto and other goodies below.

-- Michael

On Mon, 18 Aug 1997, Thomas B. Fox wrote:

> I have searched all the resources that I can find online but have been
> unable to find a difinitive guide to setting up chroot'ed home directories.
> Can someone help me out?
>
> I want to restrict my ftponly users to their home directories and not allow
> them to browse up the filesystem.

This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.

ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-14.tar.Z

wu-ftpd FAQ: http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to [email protected]
with a subject line: send faq

guest howto: ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "[email protected]"
(immediate autoresponder; subject does not matter)

wu-ftpd Resource Center: http://www.landfield.com/wu-ftpd/
wu-ftpd list archive: http://www.landfield.com/wu-ftpd/mail-archive/

There are additional security references in the above docs.

From [email protected] Mon Aug 18 11:59:44 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA11769;
Mon, 18 Aug 1997 11:52:21 -0500 (CDT)
Received: from s2.iway.fr ([email protected] [194.98.0.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA06228
for <[email protected]>; Mon, 18 Aug 1997 11:49:25 -0500 (CDT)
Received: from iway.fr (simba.noc.InetWAY.NET [194.98.46.80])
by s2.iway.fr (8.8.5/8.8.5) with ESMTP id SAA13533;
Mon, 18 Aug 1997 18:48:44 +0200 (MET DST)
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 18:42:29 +0200
Reply-To: [email protected]
Sender: [email protected]
From: Bruno Rohee <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: Trouble setting up chroot'ed home directories
References: <[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 4.02 [en] (X11; I; SunOS 5.5 sun4u)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Thomas B. Fox wrote:

> I want to restrict my ftponly users to their home directories and not allow
> them to browse up the filesystem.

in your ftpaccess file just add the line

guestgroup group to be chrooted

Users in groups "group" "to" "be" and "chrooted" wille be chrooted
in their homedirectory.

--
Bruno Rohee | Internet Way NOC

From [email protected] Mon Aug 18 12:24:27 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA14147;
Mon, 18 Aug 1997 12:17:24 -0500 (CDT)
Received: from shrimp.fishy.net (fluke.fishy.net [206.156.56.33])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA13500
for <[email protected]>; Mon, 18 Aug 1997 12:15:38 -0500 (CDT)
Received: (from ben@localhost) by shrimp.fishy.net (8.8.5/8.7.3) id NAA42412 for [email protected]; Mon, 18 Aug 1997 13:15:38 -0400
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 13:15:37 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Ben Mehlman <[email protected]>
To: [email protected]
Subject: Zombie Killer
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Due to popular demand (three requests since I mentioned it just an hour
ago), here's the perl script I use to kill off the ftpd's that are left
behind...

NOTE: I am on AIX, which has the -o option on PS for customized columns.
If your system doesn't have this it won't work. Run form cron periodically
(every hour?). It will kill any ftpd's more than 24 hours old.

-Ben

#!/usr/local/bin/perl

open(PS, "/bin/ps -ef -o comm,etime,pid |") || die "couldn't run /bin/ps\n";

foreach (<PS>) {
next unless /^ftpd\S*\s+\d+-\S+\s+(\d+)/;
print;
print `/bin/kill $1`;
}
close(PS);

----------------------------------------------------------------------------
Ben Mehlman The reasonable man adapts himself to the world; the
Prodigy Services Corp unreasonable one persists in trying to adapt the
[email protected] world to himself. Therefore all progress depends on
the unreasonable man. -George Bernard Shaw

From [email protected] Mon Aug 18 12:44:42 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA14852;
Mon, 18 Aug 1997 12:35:58 -0500 (CDT)
Received: from cagw2.att.com (cagw2.att.com [192.128.52.90])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA15478
for <[email protected]>; Mon, 18 Aug 1997 12:34:29 -0500 (CDT)
Received: from lynxhub.lz.att.com by caig2.att.att.com (SMI-8.6/EMS-1.2 sol2)
id NAA17369; Mon, 18 Aug 1997 13:44:15 -0400
Received: by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA19840; Mon, 18 Aug 1997 13:32:10 -0400
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 13:32:10 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected] (ftp archive)
Subject: Another zombie killer
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I had a similar script that I figured I might as well post. I have
the script mailing me the results of the kill sessions.

Doug

#! /usr/local/bin/perl

# Looks for wuftp processes that are older then 24 hours and kill the
# process and sends mail to dougc

open(PS,"ps -ef | grep '/opt/wuftpd/etc/wuftpd '|") || die "Can't open ps";
open(MAILFILE,">/tmp/mailfile") || die "Can't open mailfile";

while(<PS>) {
chop;
s/^\s+//;
($id,$pid,$ppid,$dum,$stime) = split(/\s+/,$_,5);
if ( $stime =~ /^[JFMASOND].*/){
kill 9, $pid;
print MAILFILE "killing $pid $stime\n";
}
else {
print MAILFILE "skip $stime\n";
}
}
close(PS);
close(MAILFILE);
system("/usr/sbin/mailx -s 'Killed processes' [YOUR MAIL ID HERE] < /tmp/mailfile");
unlink("/tmp/mailfile");

--
Doug Courtney
[email protected]
(732)576-5572

From [email protected] Mon Aug 18 12:49:42 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA14979;
Mon, 18 Aug 1997 12:42:16 -0500 (CDT)
Received: from sun200e.oliverdesign.com (sun200e.oliverdesign.com [205.179.167.4])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA14907
for <[email protected]>; Mon, 18 Aug 1997 12:40:26 -0500 (CDT)
Received: from tfox ([205.179.167.15]) by sun200e.oliverdesign.com
(Netscape Mail Server v2.0) with SMTP id AAA9784
for <[email protected]>; Mon, 18 Aug 1997 10:36:10 -0700
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 10:41:46 -0700
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Thomas B. Fox)
To: [email protected]
Subject: Re: Trouble setting up chroot'ed home directories
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender: [email protected]
X-Mailer: Windows Eudora Pro Version 3.0 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Thanks people for the pointers. I have chroot working, but now I get some
strange results when I ftp in. Upon first logging in everything is okay.
However a subdirectory of the home directory is invisible. You can however
tell the ftp client to go there and it will. This makes no sense to me.

/home/archive is home drwxr-xr-x owner root, group archive
/home/archive/incoming is subdirectory drwxrwx--- owner root, group
archive

line in ftpaccess reads
guestgroup archive

user I am logging in as is member of group archive.

Any ideas?
Thomas B. Fox - [email protected]
- Systems Administrator and Internet Services Manager
- Oliver Design, Inc. - 5 Victor Sq. - Scotts Valley, CA 95066
- (408) 438-0701 x252

From [email protected] Mon Aug 18 13:14:43 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA18643;
Mon, 18 Aug 1997 13:07:40 -0500 (CDT)
Received: from inorganic5.fdt.net (inorganic5.fdt.net [205.229.48.42])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA18292
for <[email protected]>; Mon, 18 Aug 1997 13:05:12 -0500 (CDT)
Received: from localhost (jlewis@localhost)
by inorganic5.fdt.net with SMTP id OAA03705;
Mon, 18 Aug 1997 14:04:32 -0400
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 14:04:31 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Jon Lewis <[email protected]>
To: [email protected]
Cc: ftp archive <[email protected]>
Subject: Re: Another zombie killer
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-To-Stop-Spam-See: http://inorganic5.fdt.net/~jlewis/spam.txt
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Mon, 18 Aug 1997 [email protected] wrote:

> I had a similar script that I figured I might as well post. I have
> the script mailing me the results of the kill sessions.

Wouldn't it be better to fix ftpd? Since I added some alarm() calls and
the -z switch about a month ago, I've not seen a single ftpd hang.

------------------------------------------------------------------
Jon Lewis <[email protected]> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____

From [email protected] Mon Aug 18 13:20:53 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA16592;
Mon, 18 Aug 1997 13:13:24 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA14559
for <[email protected]>; Mon, 18 Aug 1997 13:08:11 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id NAA06038;
Mon, 18 Aug 1997 13:08:03 -0500
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 13:08:03 -0500 (CDT)
Reply-To: Michael Brennen <[email protected]>
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: "Thomas B. Fox" <[email protected]>
Cc: [email protected]
Subject: Re: Trouble setting up chroot'ed home directories
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Could be the external ls is not set up right??? The guest howto goes into
some detail on this.

-- Michael

On Mon, 18 Aug 1997, Thomas B. Fox wrote:

> Thanks people for the pointers. I have chroot working, but now I get some
> strange results when I ftp in. Upon first logging in everything is okay.
> However a subdirectory of the home directory is invisible. You can however
> tell the ftp client to go there and it will. This makes no sense to me.

From [email protected] Mon Aug 18 13:41:00 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA15821;
Mon, 18 Aug 1997 13:32:15 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA19944
for <[email protected]>; Mon, 18 Aug 1997 13:25:29 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id NAA06427;
Mon, 18 Aug 1997 13:25:20 -0500
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 13:25:20 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: Jon Lewis <[email protected]>
Cc: ftp archive <[email protected]>
Subject: Re: Another zombie killer
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Did these make it into B14? If not could you post a patch? TIA...

-- Michael

On Mon, 18 Aug 1997, Jon Lewis wrote:

> On Mon, 18 Aug 1997 [email protected] wrote:
>
> > I had a similar script that I figured I might as well post. I have
> > the script mailing me the results of the kill sessions.
>
> Wouldn't it be better to fix ftpd? Since I added some alarm() calls and
> the -z switch about a month ago, I've not seen a single ftpd hang.

From [email protected] Mon Aug 18 13:58:43 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA22407;
Mon, 18 Aug 1997 13:51:08 -0500 (CDT)
Received: from inorganic5.fdt.net (inorganic5.fdt.net [205.229.48.42])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA21432
for <[email protected]>; Mon, 18 Aug 1997 13:47:30 -0500 (CDT)
Received: from localhost (jlewis@localhost)
by inorganic5.fdt.net with SMTP id OAA03969;
Mon, 18 Aug 1997 14:46:52 -0400
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 14:46:50 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Jon Lewis <[email protected]>
To: Michael Brennen <[email protected]>
Cc: ftp archive <[email protected]>
Subject: Re: Another zombie killer
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-To-Stop-Spam-See: http://inorganic5.fdt.net/~jlewis/spam.txt
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Mon, 18 Aug 1997, Michael Brennen wrote:

>
> Did these make it into B14? If not could you post a patch? TIA...

No. I'm using a very much hacked up version of beta-11. I'll look at
upgrading to beta-14 and adapting my patch to it, and then post one
relative to 14.

------------------------------------------------------------------
Jon Lewis <[email protected]> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____

From [email protected] Mon Aug 18 14:54:55 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA28406;
Mon, 18 Aug 1997 14:47:48 -0500 (CDT)
Received: from shrimp.fishy.net (fluke.fishy.net [206.156.56.33])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA28153
for <[email protected]>; Mon, 18 Aug 1997 14:46:33 -0500 (CDT)
Received: (from ben@localhost) by shrimp.fishy.net (8.8.5/8.7.3) id PAA41772; Mon, 18 Aug 1997 15:41:23 -0400
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 15:41:22 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Ben Mehlman <[email protected]>
To: [email protected]
Cc: [email protected], [email protected]
Subject: Re: Another zombie killer
In-Reply-To: <[email protected]> from "Jon Lewis" at Aug 18, 97 02:04:31 pm
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

>
> On Mon, 18 Aug 1997 [email protected] wrote:
>
> > I had a similar script that I figured I might as well post. I have
> > the script mailing me the results of the kill sessions.
>
> Wouldn't it be better to fix ftpd? Since I added some alarm() calls and
> the -z switch about a month ago, I've not seen a single ftpd hang.
>

Yes, I would have done that also.. but I'm running a hacked 2.4 and don't
want to mess with it more than necessary.. looking toward the day I upgrade.

BUt if this is going to be added to the distribution, I might take this
moment to express my preference for select() before read() from the data
connection. This eliminates more signal nightmares and puts the fix where
it should have been in the first place- right in the code that's causing the
problem. If I were to write ftpd from scratch today, well, I'd use threads
;) But barring that, I'd use select() to watch over the two connections at
once, and eliminate the need for alarm() or OOB data, and the associated
signal handlers.

-Ben

----------------------------------------------------------------------------
Ben Mehlman The reasonable man adapts himself to the world; the
Prodigy Services Corp unreasonable one persists in trying to adapt the
[email protected] world to himself. Therefore all progress depends on
the unreasonable man. -George Bernard Shaw

From [email protected] Mon Aug 18 16:08:38 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA02363;
Mon, 18 Aug 1997 15:56:56 -0500 (CDT)
Received: from socks2.raleigh.ibm.com (socks2b.raleigh.ibm.com [204.146.167.123])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA29942
for <[email protected]>; Mon, 18 Aug 1997 15:55:53 -0500 (CDT)
Received: from rtpmail02.raleigh.ibm.com by socks2.raleigh.ibm.com (AIX 4.1/UCB 5.64/RTP-FW1.0)
id AA40772; Mon, 18 Aug 1997 16:55:43 -0400
Received: from houns01.houston.ibm.com (houns01.houston.ibm.com [9.35.40.2])
by rtpmail02.raleigh.ibm.com (8.8.5/8.8.5/RTP-ral-1.1) with SMTP id QAA27956
for <[email protected]>; Mon, 18 Aug 1997 16:55:41 -0400
Received: by houns01.houston.ibm.com(Lotus SMTP MTA v1.1 (385.6 5-6-1997)) id 862564F7.0072F228 ; Mon, 18 Aug 1997 15:55:30 -0500
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 15:55:26 -0500
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: password in clear text
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
X-Lotus-Fromdomain: HPSI
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I'm running wu-ftpd 2.4 on AIX 4.2.0 and notice that all passwords
(anonymous, guestgroups) are in clear text in my syslog. I looked at some
of the archives and found a problem similar to this but the problem
occurred when running ftpd in debug mode and I'm not running it in debug
mode, at least I don't think so. I'm running ftpd like so: ftpd -v -a

How do I fix the clear text problem?

ps. I don't remember where I got the -v amd I looked at the ftpd man pages,
there's no such option...

Thanks, Thuy

From [email protected] Mon Aug 18 16:54:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA05877;
Mon, 18 Aug 1997 16:47:16 -0500 (CDT)
Received: from o2.towery.com (ws-30.towery.com [207.15.173.30])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA05112
for <[email protected]>; Mon, 18 Aug 1997 16:43:46 -0500 (CDT)
Received: from towery.com (localhost [127.0.0.1]) by o2.towery.com (950413.SGI.8.6.12/950213.SGI.AUTOCF) via ESMTP id QAA01656 for <[email protected]>; Mon, 18 Aug 1997 16:44:13 -0500
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 16:44:12 -0500
Reply-To: [email protected]
Sender: [email protected]
From: Ernest Mueller <[email protected]>
To: [email protected]
Subject: Globbed directories in upload directive
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 4.02 [en] (X11; I; IRIX 6.3 IP32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I'm trying to set up the upload directive for some FTP servers I'm
running. I'd like the users to be able to upload only into one
subdirectory (/pub) of a directory with lots of other subdirectories. I
would also like them to be able to upload into subdirectories of /pub
(and subdirectories of subdirectories, etc).

So far the only way I have found to do this is to say

upload ftpdir * yes
upload ftpdir dir1 no
upload ftpdir dir2 no
..
upload ftpdir dir20 no

I'm sure there's a better way - but if I say
upload ftpdir pub yes dirs

It doesn't get subdirectories, neither does
upload ftpdir pub* yes dirs

Or any other combinations I've been trying.

Can anyone tell me how to use the wuftpd globbing to do this? I'm sure
it's simple. Upload anywhere in /pub, nowhere else. Standard, right?

Thanks,
Ernest
--
Ernest C. Mueller [email protected]
Webmaster Phone: (901) 251-7000
Towery Publishing http://www.towery.com

From [email protected] Mon Aug 18 17:25:31 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA08000;
Mon, 18 Aug 1997 17:12:29 -0500 (CDT)
Received: from basil.acr.net.au (basil.acr.net.au [203.22.236.98])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA32744
for <[email protected]>; Mon, 18 Aug 1997 17:07:54 -0500 (CDT)
Received: from geoffp200mmxdev.acr.net.au (be2511s116.acr.net.au [203.22.236.116]) by basil.acr.net.au (8.7.3/8.7.3) with ESMTP id IAA23994; Tue, 19 Aug 1997 08:19:07 +1000 (EST)
Message-Id: <[email protected]>
Date: Tue, 19 Aug 1997 08:12:29 +1000
Reply-To: [email protected]
Sender: [email protected]
From: "Geoff Terry" <[email protected]>
To: <[email protected]>, <[email protected]>
Subject: Re: Globbed directories in upload directive
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-MSMail-Priority: Normal
X-Priority: 3
X-Mailer: Microsoft Internet Mail 4.70.1155
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Ernest
Cant you just grant specific upload priviledge to the subdirs in question

eg

upload /pub/usr/agents/bolton * no
upload /pub/usr/agents/bolton /public_html no bolton
bolton
0644
upload /pub/usr/agents/bolton /edenses/public_html yes
edenses
bolton 0464
upload /pub/usr/agents/bolton /edenses/public_html/images yes
edenses bolton 0464
upload /pub/usr/agents/bolton /retrasport/public_html yes
retraspo
rt bolton 0464
upload /pub/usr/agents/bolton /retrasport/public_html/images yes
retrasport bolton 0464

This works for me.

Geofft

----------
> From: Ernest Mueller <[email protected]>
> To: [email protected]
> Subject: Globbed directories in upload directive
> Date: Tuesday, August 19, 1997 7:44 AM
>
> I'm trying to set up the upload directive for some FTP servers I'm
> running. I'd like the users to be able to upload only into one
> subdirectory (/pub) of a directory with lots of other subdirectories. I
> would also like them to be able to upload into subdirectories of /pub
> (and subdirectories of subdirectories, etc).
>
> So far the only way I have found to do this is to say
>
> upload ftpdir * yes
> upload ftpdir dir1 no
> upload ftpdir dir2 no
> ...
> upload ftpdir dir20 no
>
> I'm sure there's a better way - but if I say
> upload ftpdir pub yes dirs
>
> It doesn't get subdirectories, neither does
> upload ftpdir pub* yes dirs
>
> Or any other combinations I've been trying.
>
> Can anyone tell me how to use the wuftpd globbing to do this? I'm sure
> it's simple. Upload anywhere in /pub, nowhere else. Standard, right?
>
> Thanks,
> Ernest
> --
> Ernest C. Mueller [email protected]
> Webmaster Phone: (901) 251-7000
> Towery Publishing http://www.towery.com

From [email protected] Mon Aug 18 17:44:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA09519;
Mon, 18 Aug 1997 17:37:17 -0500 (CDT)
Received: from o2.towery.com (ws-30.towery.com [207.15.173.30])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA08325
for <[email protected]>; Mon, 18 Aug 1997 17:31:27 -0500 (CDT)
Received: from towery.com (localhost [127.0.0.1]) by o2.towery.com (950413.SGI.8.6.12/950213.SGI.AUTOCF) via ESMTP id RAA01894; Mon, 18 Aug 1997 17:31:45 -0500
Message-Id: <[email protected]>
Date: Mon, 18 Aug 1997 17:31:45 -0500
Reply-To: [email protected]
Sender: [email protected]
From: Ernest Mueller <[email protected]>
To: Geoff Terry <[email protected]>, [email protected]
Subject: Re: Globbed directories in upload directive
References: <[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 4.02 [en] (X11; I; IRIX 6.3 IP32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Geoff Terry wrote:
>
> Ernest
> Cant you just grant specific upload priviledge to the subdirs in question

> upload /pub/usr/agents/bolton * no
> upload /pub/usr/agents/bolton /public_html no
> upload /pub/usr/agents/bolton /edenses/public_html yes ...
> upload /pub/usr/agents/bolton /edenses/public_html/images yes ...

The problem with this is that it is undetermined what the subdirectories
will be - I have a server with many Web servers, and clients are allowed
to come in and alter their content. We're doing this with virtual FTP
servers. Every time a user adds a directory, they would have to come to
me and get another entry put into this file - and even just starting
out, we have hundreds of subdirectories in our dozen plus sites. It
makes sites bigger than about 5 directories unmanageable.

Ernest
--
Ernest C. Mueller [email protected]
Webmaster Phone: (901) 251-7000
Towery Publishing http://www.towery.com

From [email protected] Tue Aug 19 06:09:20 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA16638;
Tue, 19 Aug 1997 06:01:35 -0500 (CDT)
Received: from mail (mail.acri.fr [194.98.101.6])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA18395
for <[email protected]>; Tue, 19 Aug 1997 05:54:12 -0500 (CDT)
Received: from goofy.acri.fr by mail (SMI-8.6/SMI-SVR4)
id MAA29763; Tue, 19 Aug 1997 12:55:29 +0200
Received: from localhost by goofy.acri.fr (SMI-8.6/SMI-SVR4)
id MAA27235; Tue, 19 Aug 1997 12:49:55 GMT
Message-Id: <[email protected]>
Date: Tue, 19 Aug 1997 12:49:55 +0000
Reply-To: [email protected]
Sender: [email protected]
From: Jean-Michel Augusto <[email protected]>
To: [email protected]
Subject: Anonymous FTP Abuses
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: exmh version 2.0zeta 7/24/97
X-url: http://www.acri.fr/~jma/index.html
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,

Yesterday, after 3 wonderful holiday weeks, I came back to my desk and
after few minutes I discovered that some bad boys (or girls) have used
my incoming directory to put some copyrighted software.

Of course, I have removed them but I want a way to automatically
detect this kind of anonymous abuses (creation of hidden directories or
filenames like _ ...) and/or make an operation on them.

I already check the FAQ Anonymous FTP Abuses and also Anonymous FTP
Configuration Guidelines. It seems that there is no real solution if I
want to keep an incoming space and I want such a thing.

Several times, there are mention of 'Develop in-house tools to...'.
So, my question is simply: is there somewhere something doing things
like:
-parse the log to make the list of today STOR operations
-check for hidden files/directories
-check for strange names

If not, I think I will develop something in-house.

Thanks for your help and attention.

Amicalement,

Jean-Michel AUGUSTO

From [email protected] Tue Aug 19 09:16:53 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA29643;
Tue, 19 Aug 1997 09:10:03 -0500 (CDT)
Received: from homer.bethel.edu (homer.acs.bethel.edu [140.88.128.6])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA29150
for <[email protected]>; Tue, 19 Aug 1997 09:03:16 -0500 (CDT)
Received: from turing (turing.acs.bethel.edu [140.88.5.23])
by homer.bethel.edu (8.8.6/8.8.6) with SMTP id JAA08804;
Tue, 19 Aug 1997 09:03:15 -0500 (CDT)
Received: by turing (NX5.67e) id AA18795; Tue, 19 Aug 97 09:03:14 -0500
Received: by NeXT.Mailer (1.118.2)
Message-Id: <9708191403.AA18795@turing>
Date: Tue, 19 Aug 97 09:03:09 -0500
Reply-To: [email protected]
Sender: [email protected]
From: "Brad G. Parks" <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: Anonymous FTP Abuses
References: <[email protected]>
Content-Type: text/plain
Mime-Version: 1.0 (NeXT Mail 3.3 v118.2)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Same thing happened to me a few months ago.

> [...] It seems that there is no real solution if I want to
> keep an incoming space and I want such a thing.

It depends on your definition of "real solution." The real
solution I use is that anonymous users can place files in the
incoming directory but as the file is transferred, the ownership
of the file changes. Any subsequent anonymous user will be
unable to retrieve that file until somebody on the staff here
changes the ownership to make it public. I think this is by
far the best method for preventing abuse of the system.

Yes, this does require the intervention of a staff person on
the rare occaision that somebody wants to put something on our
ftp site. But any tool that "checks for strange names" will
be easily fooled by somebody renaming their file(s) before they
transfer them.

-brad
(Speaking for myself again)

From [email protected] Tue Aug 19 09:28:49 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA30025;
Tue, 19 Aug 1997 09:22:20 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA20247
for <[email protected]>; Tue, 19 Aug 1997 09:18:41 -0500 (CDT)
Message-Id: <[email protected]>
Date: Tue, 19 Aug 1997 09:19:04 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Kent Landfield <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: Anonymous FTP Abuses
In-Reply-To: <[email protected]> from "Jean-Michel Augusto" at Aug 19, 97 12:49:55 pm
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Jean-Michel,

# Several times, there are mention of 'Develop in-house tools to...'.
# So, my question is simply: is there somewhere something doing things
# like:
# -parse the log to make the list of today STOR operations
# -check for hidden files/directories
# -check for strange names
#
# If not, I think I will develop something in-house.

I am starting to develop something that I'm planning on publicly releasing
for possible inclusion in the standard wu-ftpd package (but at a minimum,
available from the Resource Center). I could sure use some help. ;) I have
written ftpck that checks the wu-ftpd configuration file and that portion of
the setup. I am now developing an FTP Directory Audit Checker. I separated
the two so the latter could be used in non-wu-ftpd ftp sites. Here is the
tests that I'm looking to implement. The tool will not be wu-ftpd specific
but will have wu-ftpd extensions supported in the checker.

========================================================================
FTP Data Directory Auditing
----------------------------

- Check ownership/links/permissions/size/md5 of all ftpd root directory
required files and directories (~ftp, ~ftp/bin, ~ftp/etc ...)

- Check ftp directory passwd and group files do not have real info in them.

- Find all files and directories that are world-writable under the ftp
data directories

- Classify "error messages" as either Errors or Warnings or Informational

- Home directory for ftp should exist, and not be /

- Find files and directories that are suid.

- If NFS mounted, check and assure nosuid option used.

- check the gnu tar version in the ftp area does not allow arbitrary commands.

- Check to see if site exec disabled.

- Check for PASV problems.

- List binaries in _PATH_EXEC.

- List version of ftpd being run.

- List files in public incoming data directory.

- Assure space used in ftp incoming directory does not exceed
some site specified amount

- Need to build permlists for OS-specific files required in the ftp
directories, such as :
the required timezone files/directories are in place (varies by OS)
~ftp/dev/tcp set to 666 otherwise passive connections fail (Solaris 2)
etc...

- If user ftp exists in the system password file.
- Assure a valid password is not specified in the password file for
the ftp user.
- Assure a valid shell is not specified in the password file for
the ftp user.

- Also if it could recursively check ~ftp for anything which could be
written to or altered by an anonymous user (unless it is defined in
an uploads directive in ftpaccess). I have found in the past that,
although these things are usually set up carefully at the outset, they
have a habit of slipping as time goes by. Since checking the whole of
~ftp might be a long job, this would be better made a non-default option.

- Check for .rhosts files.
owned by root and mode 0000

- Check for .forward files.
owned by root and mode 0000

- Perhaps check where the logs are (and syslog.conf or what it's name is) ..

- The ~ftp/etc/{passwd|group} should not be the same as the real ones.

- For guest groups etc., check that usr/bin, usr/lib etc. directories are
visible from each user's chrooted home directory, and that they contain
the same files as those under the ~ftp equivalents. (You'd need to make
this check in case the directories haven't been hard linked.)

- Check for "shells" file and see if the list of shells found in the
passwd file are in the shells file.

* Also want to make sure that certain shells are _not_ listed, i.e.
/bin/false, /bin/true, /bin/noftp, etc.

* Make sure the shell the ftp user has in the passwd file is not in
the shells file.

========================================================================

See anything missing here ? (I'm sure there is lots missing...) I started
on it but then I stopped when beta 14 was released. I'm in the process of
gettting beta-14 incorporated into all the virtual-faq support and all its
docs updated on the Resource Center. Not sure this will be ready for you
in your time frame needs, (now ;-)) but it will be there. Like I said, I
could sure use some help.

--
Kent Landfield Phone: 1-817-545-2502
The Landfield Group FAX: 1-817-545-7650
Email: [email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to [email protected].
Search the Usenet Hypertext FAQ Archive at http://www.faqs.org/faqs/

From [email protected] Tue Aug 19 11:07:57 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA05849;
Tue, 19 Aug 1997 10:57:00 -0500 (CDT)
Received: from morpho.dar.net ([email protected] [128.252.125.187])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA04727
for <[email protected]>; Tue, 19 Aug 1997 10:53:36 -0500 (CDT)
Received: from localhost (are1@localhost) by morpho.dar.net (8.8.5/8.8.2) with SMTP id KAA27210; Tue, 19 Aug 1997 10:56:54 -0500
Message-Id: <[email protected]>
Date: Tue, 19 Aug 1997 10:56:53 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Andy Ellsworth <[email protected]>
To: Jean-Michel Augusto <[email protected]>
Cc: [email protected]
Subject: Re: Anonymous FTP Abuses
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Tue, 19 Aug 1997, Jean-Michel Augusto wrote:

> Yesterday, after 3 wonderful holiday weeks, I came back to my desk and
> after few minutes I discovered that some bad boys (or girls) have used
> my incoming directory to put some copyrighted software.
>
> Of course, I have removed them but I want a way to automatically
> detect this kind of anonymous abuses (creation of hidden directories or
> filenames like _ ...) and/or make an operation on them.

We've been battling this for some time at wuarchive, mainly in our
/pub/incoming directory, but elsewhere as well. Our solution has been a
relatively simple one: since we never have a reason for anyone to download
files directly from the incoming directory, we have all uploads be
unreadable (i.e. something like ----rw----, with group 'archive' being the
group with permissions). This has solved our problems, since most
uploaders quickly realize that they can't download what they've just
uploaded :)

+----------------------------------------------------------------------------+
| Andy Ellsworth | [email protected] | Admin/Cyberdiplomat, Wuarchive |
+----------------------------------------------------------------------------+

From [email protected] Tue Aug 19 11:37:06 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA06644;
Tue, 19 Aug 1997 11:28:26 -0500 (CDT)
Received: from nuinfo.nwu.edu (nuinfo.nwu.edu [129.105.212.72])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA01650
for <[email protected]>; Tue, 19 Aug 1997 11:22:09 -0500 (CDT)
Received: by nuinfo.nwu.edu
(1.39.111.2/16.2) id AA265617725; Tue, 19 Aug 1997 11:22:05 -0500
Message-Id: <[email protected]>
Date: Tue, 19 Aug 1997 11:22:04 CDT
Reply-To: [email protected] (Albert Lunde)
Sender: [email protected]
From: [email protected] (Albert Lunde)
To: [email protected]
Cc: [email protected]
Subject: Re: Anonymous FTP Abuses
In-Reply-To: <[email protected]>; from "Jean-Michel Augusto" at Aug 19, 97 12:49 (noon)
X-Sender: [email protected] (Albert Lunde)
X-Mailer: Elm [revision: 112.6]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

> Hi,
>
> Yesterday, after 3 wonderful holiday weeks, I came back to my desk and
> after few minutes I discovered that some bad boys (or girls) have used
> my incoming directory to put some copyrighted software.
>
> Of course, I have removed them but I want a way to automatically
> detect this kind of anonymous abuses (creation of hidden directories or
> filenames like _ ...) and/or make an operation on them.

I wrote a cron job that runs du periodically and mails me whenever there
are changes. But I don't have an incoming directory. (Another thing
the cron job does is reset permissions to make sure uploads are
not possible.)

I've hear that sites with incoming directories use cron jobs to move
the contents to holding directories outside the ftp directory tree.

--
Albert Lunde [email protected]

From [email protected] Tue Aug 19 12:19:11 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA04219;
Tue, 19 Aug 1997 12:12:33 -0500 (CDT)
Received: from Bahamut.dragonfire.net (Bahamut.dragonfire.net [209.70.16.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA11892
for <[email protected]>; Tue, 19 Aug 1997 12:08:52 -0500 (CDT)
Received: (from achurch@localhost) by Bahamut.dragonfire.net (8.8.5/8.7.5) id NAA26841; Tue, 19 Aug 1997 13:08:37 -0400
Message-Id: <[email protected]>
Date: Tue, 19 Aug 1997 13:08:36 EDT
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Andy Church)
To: [email protected]
Subject: Re: Anonymous FTP Abuses
X-Mailer: MMail v4.62
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

> Yesterday, after 3 wonderful holiday weeks, I came back to my desk and
> after few minutes I discovered that some bad boys (or girls) have used
> my incoming directory to put some copyrighted software.
>
> Of course, I have removed them but I want a way to automatically
> detect this kind of anonymous abuses (creation of hidden directories or
> filenames like _ ...) and/or make an operation on them.

Well, a much simpler solution is to prevent people from being able to
read what they upload:

upload /home/ftp /incoming yes root ftpadmin 0660 nodirs

drwxrwx-wt 2 root ftpadmin 2048 Aug 19 10:22 /home/ftp/incoming/
-rw-rw---- 1 root ftpadmin 32768 Aug 19 10:22 /home/ftp/incoming/file

Granted, this isn't perfect (you have to be root to move the files,
not just group ftpadmin), but it does the job.

--Andy Church | If Bell Atlantic really is the heart
[email protected] | of communication, then it desperately
www.dragonfire.net/~achurch/ | needs a quadruple bypass.

From [email protected] Tue Aug 19 13:35:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA19201;
Tue, 19 Aug 1997 13:28:10 -0500 (CDT)
Received: from clearink.com (sparc.clearink.com [205.227.188.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA16931
for <[email protected]>; Tue, 19 Aug 1997 13:23:52 -0500 (CDT)
Received: from [205.227.188.3] (jon.clearink.com [205.227.188.3])
by clearink.com (8.8.7/8.8.7) with SMTP id LAA29445
for <[email protected]>; Tue, 19 Aug 1997 11:29:00 -0700 (PDT)
Message-Id: <[email protected]>
Date: Tue, 19 Aug 97 11:25:08 -0700
Reply-To: [email protected]
Sender: [email protected]
From: Jon Stevens <[email protected]>
To: [email protected]
Cc: "wu-ftpd" <[email protected]>
Subject: Re: Anonymous FTP Abuses
Mime-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

here is a little perl script that i wrote that runs from a crontab, it
sends an email with a list of the changed files in the last 24
hours....it is generic enough to also build a URL so that it is clickable
in an email...i also set up wu-ftpd so that the privs are 000.

i hope this helps,

-jon

#!/usr/local/bin/perl
require 'find.pl';
require 'ctime.pl';

# 0 0 * * * /export/home/accts/admin/bin/checkincoming.pl
#
# This script sends email to someone when any files in
# the list of directories changes
# need final "/" on url
$url = "";
@emailAddress = ('[email protected]');

## Set this to be the directories that you want to check.
## It is fully recursive to go down in a tree.
## need file "/" on dir name
@checkDir = ('/serv/ftpsites/clearink/incoming/');
foreach $dirname ( @checkDir ) {
&find ( "$dirname" );
}

foreach $address ( @emailAddress ) {
&mailChanged();
}

1;

sub wanted {
local ($rightTime, $dev, $ino, $mode, $nlink, $uid, $gid, $rdev,
$size,
$atime, $mtime, $chtime, $blksize, $blocks);

if ( !-d && (-M $name) <= 1 ) {
($dev, $ino, $mode, $nlink, $uid, $gid, $rdev, $size,
$atime, $mtime, $chtime, $blksize, $blocks) = stat( $name
);
$rightTime = ctime($mtime);
chop ( $rightTime );
## make the url the base directory
# $name =~ s/$dirname/$url/;
push ( @changedFiles, $rightTime . " -> " . $name . "\n"
);
}
}

sub mailChanged {
if ( scalar (@changedFiles) > 0 ) {
open(MAIL, "|/usr/lib/sendmail -t " );
print MAIL "From: Incoming Folder <Tesla.FtpSite>\n";
print MAIL "To: $address\n";
print MAIL "Subject: What's New @ Tesla Incoming\n\n";
print MAIL "Total Changed Files in last 24 hours: " .
scalar(@ch
angedFiles) . "\n\n";
print MAIL " @changedFiles";
print MAIL "\n.\n";
close MAIL;
}
}

From [email protected] Tue Aug 19 16:57:13 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA02480;
Tue, 19 Aug 1997 16:44:36 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA32465
for <[email protected]>; Tue, 19 Aug 1997 16:39:14 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id QAA03855;
Tue, 19 Aug 1997 16:39:15 -0500
Message-Id: <[email protected]>
Date: Tue, 19 Aug 1997 16:39:14 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: "Roger A. Hanke" <[email protected]>
Cc: [email protected]
Subject: RE: Anonymous FTP Abuses
In-Reply-To: <01BCACB0.5B7F1D10@HMMICRON2>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

My permissions were for the 'incoming' directory itself; I *think* Andy's
060, group 'archive', permissions are for the uploaded files themselves,
but mabye I misunderstood. This would mean they could not be read back
except by the 'archive' group (which should *not* include the ftp user!).

-- Michael

On Tue, 19 Aug 1997, Roger A. Hanke wrote:

> >> This sounds perfect but yes I am still a bit confused as to the actual
> upload directory ownership and permissions and the upload command
> that you put into ftpaccess. Michael Brennan had posted the following
> recently and I was going to try it. But his permissions are very different
> from your 060 ones. I also had not followed up with him to confirm
> that his approach also prevented the end user from seeing files in the
> directory and from overwriting them. Is that why your permissions
> were different perhaps?

I wrote:

> Chmod the chrooted directory to 1775 permissions -- that is, turn the
> sticky bit on. Set all users with access to the account into an exclusive
> group. Set the upload directive to make all uploads to that account are
> owned by the admin user, permissions 755.
>
> With the directory set 1775, all members of the group can do uploads, but
> with the sticky bit set only the admin user will be able to delete files,
> since that account owns the files. Test this to make sure it works on your
> Unix.
> >> end

From [email protected] Wed Aug 20 05:26:07 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA23642;
Wed, 20 Aug 1997 05:15:18 -0500 (CDT)
Received: from mail (mail.acri.fr [194.98.101.6])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA25940
for <[email protected]>; Wed, 20 Aug 1997 05:12:37 -0500 (CDT)
Received: from goofy.acri.fr by mail (SMI-8.6/SMI-SVR4)
id MAA06981; Wed, 20 Aug 1997 12:13:54 +0200
Received: from localhost by goofy.acri.fr (SMI-8.6/SMI-SVR4)
id MAA03793; Wed, 20 Aug 1997 12:08:15 GMT
Message-Id: <[email protected]>
Date: Wed, 20 Aug 1997 12:08:15 +0000
Reply-To: [email protected]
Sender: [email protected]
From: Jean-Michel Augusto <[email protected]>
To: [email protected]
Subject: Anonymous FTP Abuses (2)
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: exmh version 2.0zeta 7/24/97
X-url: http://www.acri.fr/~jma/index.html
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi Dear list members,

Thanks for every one who answer me with various solutions/propositions.

Now, I had checked many more aspects on my configuration. It seems now
that it is impossible to misuse my FTP server .. I hope. My choices are
:

-deny any uploads/mkdir in the whole tree except in /incoming where
the new files are immediately owned by an other user that the ftp one.

-I use the ftplogcheck written by Koos van den Hout (many thanks to
him) to detect any upload in /incoming.

Now I have another problem : with this configuration, the update of
the server is only possible from outside ftp. My real users (and me)
want to be able to update the /pub directory themselves without asking
me for each change.

Is it possible to allow the upload/mkdir/delete only for real users in
only the /pub directory ? the 'upload' directive does not seem to be
enough for that. I have also see the guest possibilities (because I
have already several ones in use). But I see no solution with this
feature... I think that this kind of thing is done somewhere in the
world no ?

Once again many thanks for your help.

Jean Michel AUGUSTO

From [email protected] Wed Aug 20 14:32:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA06237;
Wed, 20 Aug 1997 14:24:37 -0500 (CDT)
Received: from academ.com ([email protected] [198.137.249.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA00167
for <[email protected]>; Wed, 20 Aug 1997 14:19:25 -0500 (CDT)
Received: (from sob@localhost)
by academ.com (8.8.5/8.8.5) id OAA16990
for [email protected]; Wed, 20 Aug 1997 14:19:24 -0500 (CDT)
Message-Id: <[email protected]>
Date: Wed, 20 Aug 1997 14:19:23 CDT
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Stan Barber)
To: [email protected]
Subject: bug list
X-Mailer: Mail User's Shell (7.2.5 10/14/92)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

There is a new bug list for beta-14 on the web at this URL:
http://www.academ.com/academ/wu-ftpd/bugs.html

Please check this page before sending bug reports. I only need to hear about
a bug once to have it logged. I don't mind hearing about it more than once, but
if you look at this page it could save you time.

I will be updating this page with the bugs I have confirmed from those
reported. If this number is small, I will be able to integrate the fixes for
these bugs into the next release quickly. It also may not require another beta
cycle. However, no promises on the beta cycle.

Right now, it appears that I will be making another release (which may or may
not be beta-15) in the fall. I do expect to address the bugs on the bug page
in that release. In the meantime, if you have suggestions on ways to fix the
bugs listed on the page (and the fix is not already listed on the page), send
them to the "[email protected]" address.

--
Stan | Academ Consulting Services |internet: [email protected]
Olan | For more info on academ, see this |uucp: {mcsun|amdahl}!academ!sob
Barber | URL- http://www.academ.com/academ |Opinions expressed are only mine.

From [email protected] Wed Aug 20 15:22:28 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA18761;
Wed, 20 Aug 1997 14:35:36 -0500 (CDT)
Received: from houns01.houston.ibm.com (socks1.clearlake.ibm.com [192.94.47.253])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA05335
for <[email protected]>; Wed, 20 Aug 1997 14:24:30 -0500 (CDT)
Received: by houns01.houston.ibm.com(Lotus SMTP MTA v1.1 (385.6 5-6-1997)) id 862564F9.006A9D4C ; Wed, 20 Aug 1997 14:23:52 -0500
Message-Id: <[email protected]>
Date: Wed, 20 Aug 1997 14:23:48 -0500
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: mail digest
Mime-Version: 1.0
Content-type: text/plain; charset=US-ASCII
X-Lotus-FromDomain: HPSI
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

-To: [email protected]
cc:
From: Thuy Tran/HPSI/US
Date: 08/20/97 08:39:17 AM
Subject: mail digest

I 'set up' a mail digest for this list but I think we must be having mail
problems because I haven't received my digest in 2 days. Is it possible to
request the digests for a particular day? For example, I didn't receive
the 8/18 or 8/19 digests. Please email me directly since I might not get
today's digest either.

[email protected]

Thanks, Thuy

From [email protected] Wed Aug 20 17:27:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA19295;
Wed, 20 Aug 1997 17:20:44 -0500 (CDT)
Received: from sun200e.oliverdesign.com (sun200e.oliverdesign.com [205.179.167.4])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA23045
for <[email protected]>; Wed, 20 Aug 1997 17:15:03 -0500 (CDT)
Received: from tfox ([205.179.167.15]) by sun200e.oliverdesign.com
(Netscape Mail Server v2.0) with SMTP id AAA29674
for <[email protected]>; Wed, 20 Aug 1997 15:10:31 -0700
Message-Id: <[email protected]>
Date: Wed, 20 Aug 1997 15:14:56 -0700
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Thomas B. Fox)
To: [email protected]
Subject: Specific banners and symbolic links
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender: [email protected]
X-Mailer: Windows Eudora Pro Version 3.0 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I finally got chroot working and managed to compile ls to be static. All
that works great. Now my questions are these:

How (specifically) do I setup user specific (or group specific) banners? I
want a different banner for each group.

Also, here is my scenario- Some standard users, chrooted to their home
directories. A group called archive that shares /home/archive as a home
directory. This is chrooted as well so that anyone in that group gets
dumped there. The users in this group are ftponly, no shell access. I want
to give some standard users access to this directory as well but because
they are chrooted to their home directories they cant get to the
/home/archive branch of the filesystem. I tried making a symbolic link but
that didn't work. Linux refuses to allow me to make a hard link. How do I
work this out?

Tom

From [email protected] Thu Aug 21 10:27:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA17026;
Thu, 21 Aug 1997 10:19:53 -0500 (CDT)
Received: from unet.univie.ac.at (unet.univie.ac.at [131.130.230.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA19687
for <[email protected]>; Thu, 21 Aug 1997 10:12:24 -0500 (CDT)
Received: (from a8505970@localhost) by unet.univie.ac.at (8.7.1/8.7.1) id RAA10280; Thu, 21 Aug 1997 17:12:16 +0200
Message-Id: <[email protected]>
Date: Thu, 21 Aug 1997 17:12:16 +0200 (MSZ)
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: SYSLOG error: "fopen on /dev/null failed"
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Has anyone seen tons of these messages appearing in syslog:

Aug 19 10:17:18 myhost ftpd[19404]: syslog: fopen on /dev/null failed, errno 2
Aug 19 10:17:23 myhost last message repeated 20 times

IBM AIX v415, patchlevel June 1997, wu-ftpd is 2.4.2-beta-14, compiled
with gcc v2722.

Thanks -

/michael

From [email protected] Fri Aug 22 08:51:24 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA27104;
Fri, 22 Aug 1997 08:43:14 -0500 (CDT)
Received: from onyx.mc.duke.edu (onyx.mc.duke.edu [152.3.40.230])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA24736
for <[email protected]>; Fri, 22 Aug 1997 08:32:11 -0500 (CDT)
Received: by onyx.mc.duke.edu with Internet Mail Service (5.0.1458.49)
id <QCT64P70>; Fri, 22 Aug 1997 09:36:05 -0400
Message-Id: <[email protected]>
Date: Fri, 22 Aug 1997 09:36:04 -0400
Reply-To: [email protected]
Sender: [email protected]
From: "Hepp, Paul" <[email protected]>
To: "'WU-FTPD list server'" <[email protected]>
Subject: Missing Library -lgen error under Solaris 2.5
MIME-Version: 1.0
Content-Type: text/plain
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1458.49)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Compile error on 2.4.2 beta 13 under 2.5.1
Where and how do I find this library on the 2.5 install cdrom??

Paul A. Hepp
AiC consultant
919-416-3635

From [email protected] Fri Aug 22 10:04:08 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA00441;
Fri, 22 Aug 1997 09:50:07 -0500 (CDT)
Received: from lego.metainfo.com (lego.metainfo.com [204.29.28.6])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA30232
for <[email protected]>; Fri, 22 Aug 1997 09:44:11 -0500 (CDT)
Received: by lego.metainfo.com with SMTP (Microsoft Exchange Server Internet Mail Connector Version 4.0.995.52)
id <[email protected]>; Fri, 22 Aug 1997 07:42:47 -0700
Message-Id: <c=US%a=_%p=MetaInfo%[email protected]>
Date: Fri, 22 Aug 1997 07:42:46 -0700
Reply-To: [email protected]
Sender: [email protected]
From: Randy Johnson <[email protected]>
To: "'[email protected]'" <[email protected]>
Subject: Multiple guest groups
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Exchange Server Internet Mail Connector Version 4.0.995.52
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Is it possible to have multiple guest groups and allow the different
groups various sets of permissions for their respective directories ?

Where one guest group might not have chmod and del perms and another
does have these perms ?

An example ftpaccess would be appreciated.

Thanks !!

From [email protected] Fri Aug 22 15:48:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA21194;
Fri, 22 Aug 1997 15:37:38 -0500 (CDT)
Received: from socks2.raleigh.ibm.com (socks2b.raleigh.ibm.com [204.146.167.123])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA30774
for <[email protected]>; Fri, 22 Aug 1997 15:34:14 -0500 (CDT)
Received: from rtpmail03.raleigh.ibm.com by socks2.raleigh.ibm.com (AIX 4.1/UCB 5.64/RTP-FW1.0)
id AA44960; Fri, 22 Aug 1997 16:34:12 -0400
Received: from houns01.houston.ibm.com (houns01.houston.ibm.com [9.35.40.2])
by rtpmail03.raleigh.ibm.com (8.8.5/8.8.5/RTP-ral-1.1) with SMTP id QAA28770
for <[email protected]>; Fri, 22 Aug 1997 16:34:12 -0400
Received: by houns01.houston.ibm.com(Lotus SMTP MTA v1.1 (385.6 5-6-1997)) id 862564FB.0070F626 ; Fri, 22 Aug 1997 15:33:50 -0500
Message-Id: <[email protected]>
Date: Fri, 22 Aug 1997 15:33:45 -0500
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: fpopen on /dev/null failed
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
X-Lotus-Fromdomain: HPSI
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

You need to 'mknod' on /dev/null in your anonymous tree and/or your
guestgroup's tree.

Thuy
---------------------- Forwarded by Thuy Tran/HPSI/US on 08/22/97 08:19 AM
---------------------------

[email protected] on 08/22/97 12:06:00 AM

To: [email protected]
cc: (bcc: Thuy Tran/HPSI/US)
Subject: WU-FTPD digest 787

WU-FTPD Digest 787
Topics covered in this issue include:
1) SYSLOG error: "fopen on /dev/null failed"
by [email protected]

Date: Thu, 21 Aug 1997 17:12:16 +0200 (MSZ)
From: [email protected]
To: [email protected]
Subject: SYSLOG error: "fopen on /dev/null failed"
Message-ID: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII

Has anyone seen tons of these messages appearing in syslog:
Aug 19 10:17:18 myhost ftpd[19404]: syslog: fopen on /dev/null failed,
errno 2
Aug 19 10:17:23 myhost last message repeated 20 times
IBM AIX v415, patchlevel June 1997, wu-ftpd is 2.4.2-beta-14, compiled
with gcc v2722.
Thanks -
/michael

From [email protected] Fri Aug 22 21:34:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA16898;
Fri, 22 Aug 1997 21:17:17 -0500 (CDT)
Received: from rzaixsrv2.rrz.uni-hamburg.de ([email protected] [134.100.33.12])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA30380
for <[email protected]>; Fri, 22 Aug 1997 21:15:17 -0500 (CDT)
Received: from max-148.public.uni-hamburg.de by rzaixsrv2.rrz.uni-hamburg.de (AIX 4.1/UCB 5.64/4.03)
id AA146594; Sat, 23 Aug 1997 04:15:14 +0200
Received: (from news@localhost)
by dumbo.zoff.de (8.8.5/8.8.5) id EAA19861;
Sat, 23 Aug 1997 04:14:44 +0200
Message-Id: <[email protected]>
Date: Sat, 23 Aug 1997 04:14:43 +0200
Reply-To: [email protected]
Sender: [email protected]
From: Christophe Zwecker <[email protected]>
To: [email protected]
Subject: no ls anyon listing
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 3.01 (X11; I; Linux 2.0.30 i586)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,

my anon users get no listung when using ls - what could cause this ?

cya
--
Christophe Zwecker email: [email protected]
Hamburg, Germany fax: 49 40 22715433

In newsgroups please reply also by email - thanks

From [email protected] Sun Aug 24 02:48:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA17693;
Sun, 24 Aug 1997 02:40:49 -0500 (CDT)
Received: from inorganic5.fdt.net (inorganic5.fdt.net [205.229.48.42])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id CAA24526
for <[email protected]>; Sun, 24 Aug 1997 02:34:24 -0500 (CDT)
Received: from localhost (jlewis@localhost)
by inorganic5.fdt.net with SMTP id DAA11756
for <[email protected]>; Sun, 24 Aug 1997 03:33:53 -0400
Message-Id: <[email protected]>
Date: Sun, 24 Aug 1997 03:33:52 -0400 (EDT)
Reply-To: Jon Lewis <[email protected]>
Sender: [email protected]
From: Jon Lewis <[email protected]>
To: [email protected]
Subject: anti-hang patch and more
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-To-Stop-Spam-See: http://inorganic5.fdt.net/~jlewis/spam.txt
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

This patch includes the anti-hang patch I posted about a few days ago. It's
a slightly improved version of what I've been using the past month, so its
actually only very lightly tested...the price of progress. Looking at
strace output of ascii mode transfers was scarey the way I'd originally done
it...an alarm() after every byte, only it was really just lots and lots of
alarm()s due to stdio buffering. I've been using -z240.

Perhaps all the new alarm() calls should be replaced with if (zap_xfer_time)
alarm()...or zap_xfer_time should default to non-zero...I don't know. I'm
open to suggestions.

There are also some changes to syslog's that log the result of ident as well
as remote host name.

Also, I think, a real bug fix, as the possible definition of USE_RUN had no
meaning.

diff -ruN wu-ftpd-2.4.2-beta-14/src/authenticate.h wu-ftpd-2.4.2-beta-14-fdt/src/authenticate.h
--- wu-ftpd-2.4.2-beta-14/src/authenticate.h Fri Apr 1 14:03:39 1994
+++ wu-ftpd-2.4.2-beta-14-fdt/src/authenticate.h Sat Aug 23 00:48:57 1997
@@ -1,7 +1,7 @@
/* When of the supported authentication methods the ftp server will attempt
* to use. Define as 1 to enable, 0 to disable. */

-#define USE_A_RFC931 0 /* Use RFC931-style authentication */
+#define USE_A_RFC931 1 /* Use RFC931-style authentication */

/* Bitmasks used to identify authentication methods that returned a result */
#define A_RFC931 1 << 0; /* RFC931 */
diff -ruN wu-ftpd-2.4.2-beta-14/src/config/config.lnx wu-ftpd-2.4.2-beta-14-fdt/src/config/config.lnx
--- wu-ftpd-2.4.2-beta-14/src/config/config.lnx Mon Aug 11 23:43:30 1997
+++ wu-ftpd-2.4.2-beta-14-fdt/src/config/config.lnx Mon Aug 18 15:01:35 1997
@@ -27,7 +27,7 @@
#define OVERWRITE
#undef REGEX
#define SPT_TYPE SPT_REUSEARGV
-#undef SHADOW_PASSWORD
+#define SHADOW_PASSWORD
#define UPLOAD
#undef USG
#define SVR4
@@ -35,10 +35,10 @@
#define HAVE_SYS_VFS
#define HAVE_SYMLINK
#define UTMAXTYPE
-#define USE_ETC
+#define USE_ETC_FTPD
#define USE_LOG
#define USE_VAR
-#define USE_RUN
+#define USE_VAR_RUN
#define VIRTUAL
#define NEED_SIGFIX

diff -ruN wu-ftpd-2.4.2-beta-14/src/ftpd.c wu-ftpd-2.4.2-beta-14-fdt/src/ftpd.c
--- wu-ftpd-2.4.2-beta-14/src/ftpd.c Mon Aug 11 23:43:08 1997
+++ wu-ftpd-2.4.2-beta-14-fdt/src/ftpd.c Sun Aug 24 03:01:37 1997
@@ -232,7 +232,9 @@
int timeout = 900; /* timeout after 15 minutes of inactivity */
int maxtimeout = 7200; /* don't allow idle time to be set beyond 2
* hours */
-
+int zap_xfer_time = 0; /* timeout after which an xfer is aborted
+ by killing the session */
+
/* previously defaulted to 1, and -l or -L set them to 1, so that there was
no way to turn them *off*! Changed so that the manpage reflects common
sense. -L is way noisy; -l we'll change to be "just right". _H*/
@@ -450,7 +452,7 @@
envp++;
LastArgv = envp[-1] + strlen(envp[-1]);

- while ((c = getopt(argc, argv, ":aAvdlLiot:T:u:")) != -1) {
+ while ((c = getopt(argc, argv, ":aAvdlLiot:T:u:z:")) != -1) {
switch (c) {

case 'a':
@@ -509,7 +511,13 @@
defumask = val;
break;
}
-
+
+ case 'z':
+ {
+ zap_xfer_time = atoi(optarg);
+ break;
+ }
+
case ':':
syslog(LOG_ERR, "option -%c requires an argument", optopt);
break;
@@ -1662,16 +1670,16 @@
sizeof(": anonymous/")), passwd);
setproctitle("%s", proctitle);
if (logging)
- syslog(LOG_INFO, "ANONYMOUS FTP LOGIN FROM %s [%s], %s",
- remotehost, remoteaddr, passwd);
+ syslog(LOG_INFO, "ANONYMOUS FTP LOGIN FROM %s@%s [%s], %s",
+ authuser, remotehost, remoteaddr, passwd);
} else {
reply(230, "User %s logged in.%s", pw->pw_name, guest ?
" Access restrictions apply." : "");
sprintf(proctitle, "%s: %s", remotehost, pw->pw_name);
setproctitle(proctitle);
if (logging)
- syslog(LOG_INFO, "FTP LOGIN FROM %s [%s], %s",
- remotehost, remoteaddr, pw->pw_name);
+ syslog(LOG_INFO, "FTP LOGIN FROM %s@%s [%s], %s",
+ authuser, remotehost, remoteaddr, pw->pw_name);
/* H* mod: if non-anonymous user, copy it to "authuser" so everyone can
see it, since whoever he was @foreign-host is now largely irrelevant. */
strcpy (authuser, pw->pw_name);
@@ -2413,8 +2421,10 @@
switch (type) {

case TYPE_A:
+ alarm(zap_xfer_time);
while ((c = getc(instr)) != EOF) {
- byte_count++;
+ if (++byte_count % 4096 == 0)
+ alarm(zap_xfer_time);
if (c == '\n') {
if (ferror(outstr))
goto data_err;
@@ -2422,6 +2432,7 @@
}
(void) putc(c, outstr);
}
+ alarm(0);
fflush(outstr);
transflag = 0;
if (ferror(instr))
@@ -2440,20 +2451,26 @@
}
netfd = fileno(outstr);
filefd = fileno(instr);
+ alarm(zap_xfer_time);
/* Debian fix: this seems gratuitous somehow, testing ... XXX: */
#ifdef bogus__linux__
while ((cnt = read(filefd, buf, (u_int)blksize)) > 0)
{
- int outcnt=0, newcnt=0;
- while ((outcnt=write(netfd, buf+newcnt, cnt-newcnt))!= cnt-newcnt)
+ int outcnt=0, newcnt=0;
+ alarm(zap_xfer_time);
+ while ((outcnt=write(netfd, buf+newcnt, cnt-newcnt))!= cnt-newcnt)
newcnt+=outcnt;
- byte_count += cnt;
+ byte_count += cnt;
}
#else
while ((cnt = read(filefd, buf, (u_int) blksize)) > 0 &&
write(netfd, buf, cnt) == cnt)
+ {
+ alarm(zap_xfer_time);
byte_count += cnt;
+ }
#endif
+ alarm(0);
transflag = 0;
(void) free(buf);
if (cnt != 0) {
@@ -2471,6 +2488,7 @@

data_err:
transflag = 0;
+ alarm(0);
perror_reply(426, "Data connection");
return;

@@ -2507,11 +2525,14 @@

case TYPE_I:
case TYPE_L:
+ alarm(zap_xfer_time);
while ((cnt = read(fileno(instr), buf, sizeof buf)) > 0) {
+ alarm(zap_xfer_time);
if (write(fileno(outstr), buf, cnt) != cnt)
goto file_err;
byte_count += cnt;
}
+ alarm(0);
if (cnt < 0)
goto data_err;
transflag = 0;
@@ -2523,8 +2544,10 @@
return (-1);

case TYPE_A:
+ alarm(zap_xfer_time);
while ((c = getc(instr)) != EOF) {
- byte_count++;
+ if (++byte_count % 4096 == 0)
+ alarm(zap_xfer_time);
if (c == '\n')
bare_lfs++;
while (c == '\r') {
@@ -2539,6 +2562,7 @@
(void) putc(c, outstr);
contin2:;
}
+ alarm(0);
fflush(outstr);
if (ferror(instr))
goto data_err;
@@ -2558,11 +2582,13 @@

data_err:
transflag = 0;
+ alarm(0);
perror_reply(426, "Data Connection");
return (-1);

file_err:
transflag = 0;
+ alarm(0);
perror_reply(452, "Error writing file");
return (-1);
}
diff -ruN wu-ftpd-2.4.2-beta-14/src/pathnames.h wu-ftpd-2.4.2-beta-14-fdt/src/pathnames.h
--- wu-ftpd-2.4.2-beta-14/src/pathnames.h Mon Aug 11 04:04:20 1997
+++ wu-ftpd-2.4.2-beta-14-fdt/src/pathnames.h Mon Aug 18 15:01:38 1997
@@ -56,7 +56,7 @@
#ifdef USE_PID
#define _PATH_PIDNAMES "/var/pid/ftp.pids-%s"
#else
-#ifdef VAR_RUN
+#ifdef USE_VAR_RUN
#define _PATH_PIDNAMES "/var/run/ftp.pids-%s"
#else
#define _PATH_PIDNAMES "/var/adm/ftp.pids-%s"

------------------------------------------------------------------
Jon Lewis <[email protected]> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____

From [email protected] Sun Aug 24 07:27:46 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA30858;
Sun, 24 Aug 1997 07:21:22 -0500 (CDT)
Received: from intouch.intouch.com ([163.121.157.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id HAA00227
for <[email protected]>; Sun, 24 Aug 1997 07:18:04 -0500 (CDT)
Received: from aossama.intouch.com (aossama [163.121.157.200]) by intouch.intouch.com (8.8.6/8.7.2) with ESMTP id PAA09402 for <[email protected]>; Sun, 24 Aug 1997 15:05:52 +0300 (EET DST)
Message-Id: <[email protected]>
Date: Sun, 24 Aug 1997 15:17:16 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Ahmed Ossama <[email protected]>
To: [email protected]
Subject: wu-ftpd features
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.0 [en] (Win95; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi,

I was wondering if wu-ftpd latest version supports resuming broken
downloads or not.

Thanks,

Ahmed Ossama.
__________________________________________________________________

InTouch Communications Services Tel: +(20.2)337.6407
3 Musadak Street, Dokki, Fax: +(20.2)337.6480
Cairo 12311, Egypt. Email: [email protected]
__________________________________________________________________

From [email protected] Sun Aug 24 10:08:20 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA06926;
Sun, 24 Aug 1997 10:01:50 -0500 (CDT)
Received: from ns.wzrd.com ([email protected] [206.99.165.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA07799
for <[email protected]>; Sun, 24 Aug 1997 09:54:00 -0500 (CDT)
Received: from localhost (potatoe@localhost) by ns.wzrd.com (8.8.5/8.7.3) with SMTP id KAA09433; Sun, 24 Aug 1997 10:58:58 -0400 (EDT)
Message-Id: <[email protected]>
Date: Sun, 24 Aug 1997 10:58:56 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Robert Glover <[email protected]>
To: Ahmed Ossama <[email protected]>
Cc: [email protected]
Subject: Re: wu-ftpd features
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

It has for years :)

-Rob

On Sun, 24 Aug 1997, Ahmed Ossama wrote:

> Hi,
>
> I was wondering if wu-ftpd latest version supports resuming broken
> downloads or not.
>
> Thanks,
>
> Ahmed Ossama.
> __________________________________________________________________
>
> InTouch Communications Services Tel: +(20.2)337.6407
> 3 Musadak Street, Dokki, Fax: +(20.2)337.6480
> Cairo 12311, Egypt. Email: [email protected]
> __________________________________________________________________
>
>
>
>

From [email protected] Mon Aug 25 09:58:05 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA31724;
Mon, 25 Aug 1997 09:49:03 -0500 (CDT)
Received: from trieste.infn.it (axts07.ts.infn.it [140.105.6.157])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA00455
for <[email protected]>; Mon, 25 Aug 1997 09:39:03 -0500 (CDT)
Message-Id: <[email protected]>
Date: Mon, 25 Aug 1997 16:37:56 +0200 (CET-DST)
Reply-To: [email protected]
Sender: [email protected]
From: Claudio Strizzolo <[email protected]>
To: [email protected]
Subject: Problem with ls on Digital Unix
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi everybody,
I just installed wu-ftpd 2.4 on a Digital Unix 4.0a system. It
works well, except for a little problem. When I do a 'ls' command,
everything is ok:

<Opening ASCII mode data connection for file list.
welcome.msg
bin
pub
etc
rhosts
forward
<Transfer complete.

But if I try with ls options (i.e. 'ls -la') or with the 'dir' command,
that is available on several sites running wu-ftpd, I get no answer:

<Opening ASCII mode data connection for /bin/ls.
<Transfer complete.
UNIXTS.TS.INFN.IT>

Ok, I do not have the 'dir' command in ~ftp/bin, but what about 'ls -la'?
What should be done to have 'dir' available? Is it just a symbolic link
or something?
BTW, I noticed that accessing the FTP server through Netscape, gives no
result, just the welcome message. Is this other situation related to the
one described above?

Keep in mind that I am just a wu-ftpd beginner, then maybe these are
just FAQs, but I was not able to find a solution.

Please reply by e-mail too, because I am not in this mailing list.
Best regards and thanks in advance

Claudio

-------------------------------------------------------------------------
Claudio STRIZZOLO | Address:
| I.N.F.N. Sezione di Trieste
E-mail: [email protected] | c/o AREA di Ricerca
Phone: [39](40)375.6257 | Padriciano, 99
Fax: [39](40)375.6258 | I-34012 Trieste - ITALY

From [email protected] Mon Aug 25 11:03:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA07894;
Mon, 25 Aug 1997 10:55:39 -0500 (CDT)
Received: from Leuther.Leuther.de ([email protected] [194.123.206.73])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA07147
for <[email protected]>; Mon, 25 Aug 1997 10:50:45 -0500 (CDT)
Received: from dirk ([195.30.101.230])
by Leuther.Leuther.de (8.8.5/8.8.5) with ESMTP id SAA18969;
Mon, 25 Aug 1997 18:50:06 +0200
Message-Id: <[email protected]>
Date: Mon, 25 Aug 1997 17:44:48 +0200
Reply-To: [email protected]
Sender: [email protected]
From: "Dirk Leuther" <[email protected]>
To: <[email protected]>, <[email protected]>
Subject: problem with wu-ftpd
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
X-MSMail-Priority: Normal
X-Priority: 3
X-Mailer: Microsoft Internet Mail 4.70.1155
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hallo,
I have a problem with WU-FTPD and Virtual FTP-Server and I'm locking for
support.

I have a S.u.s.e Linux 4.4.1 system but I don't know much about Linux.
I try to setup WU-FTPD for Virtual Server that I can give every User his
own root directory.
I had a read me file in witch I ret I should compile it with the CFLAF
�DVIRTUAL.
And add the lines:

virtual IP root /PATH
virtual IP banner /PATH/welcome.msg
virtual IP logfile /PATH/ftp_log

to the etc/ftpaccess file.
I did that but the FTP-Server (any IP) has still the same root

Where can get support for it ?

Thank you for your help

Dirk Leuther
Solingen / Germany

[email protected]

From [email protected] Mon Aug 25 12:49:36 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA20399;
Mon, 25 Aug 1997 12:42:51 -0500 (CDT)
Received: from inorganic5.fdt.net (inorganic5.fdt.net [205.229.48.42])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA15098
for <[email protected]>; Mon, 25 Aug 1997 12:40:28 -0500 (CDT)
Received: from localhost (jlewis@localhost)
by inorganic5.fdt.net with SMTP id NAA20018
for <[email protected]>; Mon, 25 Aug 1997 13:40:27 -0400
Message-Id: <[email protected]>
Date: Mon, 25 Aug 1997 13:40:26 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Jon Lewis <[email protected]>
To: [email protected]
Subject: linux shadow broken in beta14
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-To-Stop-Spam-See: http://inorganic5.fdt.net/~jlewis/spam.txt
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Either the shadow aging in beta14 is broken, or my systems are...and I
prefer to fix wu-ftpd than every other shadow app I have.

After upgrading from a hacked up beta11 to beta14, I was getting complaints
from numerous users about ftp not working. It turned out beta11 didn't do
aging, and the way beta14 does it is incompatible with my shadow files. The
following patch appears to fix the problem.

--- wu-ftpd-2.4.2-beta-14/src/ftpd.c Mon Aug 11 23:43:08 1997
+++ wu-ftpd-2.4.2-beta-14-fdt/src/ftpd.c Mon Aug 25 13:02:41 1997
@@ -968,8 +976,8 @@
now = time((time_t*) 0);
today = now / (60*60*24);

- if ((spw->sp_expire!= -1) && (spw->sp_expire < today)) expired++;
- if ((spw->sp_max != -1) && (spw->sp_lstchg + spw->sp_max < today)) expired++;
+ if ((spw->sp_expire > 0) && (spw->sp_expire < today)) expired++;
+ if ((spw->sp_max > 0) && (spw->sp_lstchg + spw->sp_max < today)) expired++;
free(save.pw_passwd);
save.pw_passwd = sgetsave(expired?"":spw->sp_pwdp);
}

------------------------------------------------------------------
Jon Lewis <[email protected]> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____

From [email protected] Mon Aug 25 13:28:46 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA11813;
Mon, 25 Aug 1997 13:20:12 -0500 (CDT)
Received: from tell.rol3.com (tell.rol3.com [195.65.20.251])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA22626
for <[email protected]>; Mon, 25 Aug 1997 13:13:41 -0500 (CDT)
Received: from br ([10.22.2.213]) by tell.rol3.com
(Netscape Mail Server v2.02) with SMTP id AAA6856
for <[email protected]>; Mon, 25 Aug 1997 20:10:40 +0200
Message-Id: <[email protected]>
Date: Mon, 25 Aug 1997 20:11:50 +0200
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Regio Online, Berthold Reif)
To: [email protected]
Subject: exit-commands
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 3.01 [de] (WinNT; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

We try to find out, how we can establish a kind of exit command,
which is running automatically after a user terminates an ftp-session.
This could be useful for doing some testing on uploaded files.

Does anyone have an idea ?

B.R.

From [email protected] Mon Aug 25 13:46:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA22554;
Mon, 25 Aug 1997 13:39:05 -0500 (CDT)
Received: from peace.netnation.com ([email protected] [204.174.223.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA24763
for <[email protected]>; Mon, 25 Aug 1997 13:32:57 -0500 (CDT)
Received: from localhost (sim@localhost)
by peace.netnation.com (8.8.5/8.8.5) with SMTP
id LAA15077; Mon, 25 Aug 1997 11:32:49 -0700
Message-Id: <[email protected]>
Date: Mon, 25 Aug 1997 11:32:48 -0700 (PDT)
Reply-To: [email protected]
Sender: [email protected]
From: Simon Kirby <[email protected]>
To: Jon Lewis <[email protected]>
Cc: [email protected]
Subject: Re: linux shadow broken in beta14
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Mon, 25 Aug 1997, Jon Lewis wrote:

> Either the shadow aging in beta14 is broken, or my systems are...and I
> prefer to fix wu-ftpd than every other shadow app I have.
>
> After upgrading from a hacked up beta11 to beta14, I was getting complaints
> from numerous users about ftp not working. It turned out beta11 didn't do
> aging, and the way beta14 does it is incompatible with my shadow files. The
> following patch appears to fix the problem.
>
> --- wu-ftpd-2.4.2-beta-14/src/ftpd.c Mon Aug 11 23:43:08 1997
> +++ wu-ftpd-2.4.2-beta-14-fdt/src/ftpd.c Mon Aug 25 13:02:41 1997
> @@ -968,8 +976,8 @@
> now = time((time_t*) 0);
> today = now / (60*60*24);
>
> - if ((spw->sp_expire!= -1) && (spw->sp_expire < today)) expired++;
> - if ((spw->sp_max != -1) && (spw->sp_lstchg + spw->sp_max < today)) expired++;
> + if ((spw->sp_expire > 0) && (spw->sp_expire < today)) expired++;
> + if ((spw->sp_max > 0) && (spw->sp_lstchg + spw->sp_max < today)) expired++;
> free(save.pw_passwd);
> save.pw_passwd = sgetsave(expired?"":spw->sp_pwdp);
> }

I had to do this, too, when upgrading from beta13 to beta14. You made
pretty much the exact the same changes I did the first time 'round, but
then I noticed that it still wasn't working with some users. I tried this
next:

*** wu-ftpd-2.4.2-beta-14/src/ftpd.c.orig Mon Aug 11 20:43:08 1997
--- wu-ftpd-2.4.2-beta-14/src/ftpd.c Thu Aug 21 17:44:33 1997
***************
*** 968,975 ****
now = time((time_t*) 0);
today = now / (60*60*24);

! if ((spw->sp_expire!= -1) && (spw->sp_expire < today)) expired++;
! if ((spw->sp_max != -1) && (spw->sp_lstchg + spw->sp_max < today)) expired++;
free(save.pw_passwd);
save.pw_passwd = sgetsave(expired?"":spw->sp_pwdp);
}
--- 968,977 ----
now = time((time_t*) 0);
today = now / (60*60*24);

! if ((spw->sp_expire > 0) && (spw->sp_expire < today)) expired++;
! if ((spw->sp_max > 0) &&
! (spw->sp_lstchg > 0) &&
! (spw->sp_lstchg + spw->sp_max < today)) expired++;
free(save.pw_passwd);
save.pw_passwd = sgetsave(expired?"":spw->sp_pwdp);
}

---
This fixes problems with users which had 0 in their "password last
changed" time.

Simon-

,---------------------------+--------------------------,
| Simon Kirby | Systems Administration |
| mailto:[email protected] | NetNation Communications |
| http://www.netnation.com/ | Tech: (604) 688-2102 |
`--------+------------------+--------------+-----------'
| * FREE DOMAIN NAME SUBMISSION * |
| http://www.domain-registry.com/ |
`---------------------------------'

From [email protected] Mon Aug 25 23:31:49 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id XAA14072;
Mon, 25 Aug 1997 23:24:28 -0500 (CDT)
Received: from inorganic5.fdt.net (inorganic5.fdt.net [205.229.48.42])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id XAA13068
for <[email protected]>; Mon, 25 Aug 1997 23:20:19 -0500 (CDT)
Received: from localhost (jlewis@localhost)
by inorganic5.fdt.net with SMTP id AAA23238;
Tue, 26 Aug 1997 00:20:16 -0400
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 00:20:14 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: Jon Lewis <[email protected]>
To: Simon Kirby <[email protected]>
Cc: [email protected]
Subject: Re: linux shadow broken in beta14
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-To-Stop-Spam-See: http://inorganic5.fdt.net/~jlewis/spam.txt
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Mon, 25 Aug 1997, Simon Kirby wrote:

> I had to do this, too, when upgrading from beta13 to beta14. You made
> pretty much the exact the same changes I did the first time 'round, but
> then I noticed that it still wasn't working with some users. I tried this
> next:
> ! (spw->sp_lstchg > 0) &&
> ! (spw->sp_lstchg + spw->sp_max < today)) expired++;
> free(save.pw_passwd);
> save.pw_passwd = sgetsave(expired?"":spw->sp_pwdp);
> }
> ---
> This fixes problems with users which had 0 in their "password last
> changed" time.

How can you have a sp_lstchg of 0? Assuming they have a password, I would
expect your /bin/passwd would have set sp_lstchg to the time the password
was set.

------------------------------------------------------------------
Jon Lewis <[email protected]> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____

From [email protected] Tue Aug 26 04:35:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA03838;
Tue, 26 Aug 1997 04:28:25 -0500 (CDT)
Received: from intouch.intouch.com ([163.121.157.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA27456
for <[email protected]>; Tue, 26 Aug 1997 04:26:42 -0500 (CDT)
Received: from aossama.intouch.com (aossama [163.121.157.200]) by intouch.intouch.com (8.8.6/8.7.2) with ESMTP id MAA14437 for <[email protected]>; Tue, 26 Aug 1997 12:14:24 +0300 (EET DST)
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 12:25:52 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Ahmed Ossama <[email protected]>
To: [email protected]
Subject: User Access Denied
References: <[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.01 [en] (Win95; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi all,

I have downloaded and installed wuftpd-2.4. The compilation and
installation went on without problems. Also by running ckconfig
everything was fine.

When trying to connect to the ftp server after typing in the user name
(whether anonymous or anyother valid user) I get a message:

>user <userid> access denied
>login failed.

Any clues?

Thanks.

Ahmed Ossama.
__________________________________________________________________

InTouch Communications Services Tel: +(20.2)337.6407
3 Musadak Street, Dokki, Fax: +(20.2)337.6480
Cairo 12311, Egypt. Email: [email protected]
__________________________________________________________________

From [email protected] Tue Aug 26 04:54:06 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA04376;
Tue, 26 Aug 1997 04:46:08 -0500 (CDT)
Received: from ncts01.engg.upd.edu.ph (noriel@[165.220.18.119])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA03924
for <[email protected]>; Tue, 26 Aug 1997 04:44:54 -0500 (CDT)
Received: from localhost (noriel@localhost) by ncts01.engg.upd.edu.ph (8.7.5/8.7.3) with SMTP id RAA20431 for <[email protected]>; Tue, 26 Aug 1997 17:43:49 +0800
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 17:43:49 +0800 (PST)
Reply-To: "Noriel Christopher C. Tiglao" <[email protected]>
Sender: [email protected]
From: "Noriel Christopher C. Tiglao" <[email protected]>
To: [email protected]
Subject: Error in compiling
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: [email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi all!

I have configured a Linux 2.0.0 box for over a month now.

However, I am having a problem in compiling wu-ftpd-24-fixed.

The error message is as follows:

glob.c:240: Dereferencing pointer to incomplete data type
make:*** [glob.o] Error1

Can you help me out here?

Noriel

------------------------------------------
Noriel Christopher C. Tiglao
National Center for Transportation studies
University of the Philippines
Diliman, Quezon City

Tel.: (632) 929-0494 to 96
Fax.: (632) 929-0496

E-mail: [email protected]
[email protected]
------------------------------------------

From [email protected] Tue Aug 26 05:40:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA07652;
Tue, 26 Aug 1997 05:30:53 -0500 (CDT)
Received: from ar4web.dlh.de (ar4web.dlh.de [195.212.93.254])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id FAA05850
for <[email protected]>; Tue, 26 Aug 1997 05:24:48 -0500 (CDT)
Received: from tb2-ws01.tb2.ham.dlh.de (tb2-ws01 [195.212.93.5])
by ar4web.dlh.de (8.8.5/8.8.5) with SMTP id MAA01053
for <[email protected]>; Tue, 26 Aug 1997 12:21:59 +0200 (MET DST)
Received: from xnt-fralic-1.dlh.de
by tb2-ws01.tb2.ham.dlh.de with ESMTP (SMI-8.6/GEN-1.0.17)
via smtp for ar4web
id MAA00769; Tue, 26 Aug 1997 12:19:36 +0200
Received: by XNT-FRALIC-1 with Internet Mail Service (5.0.1458.49)
id <RTFC3SXN>; Tue, 26 Aug 1997 12:23:12 +0200
Message-Id: <D03BAB5DE155D011A33E4000610102573617C8@XNT-FRALIC-2>
Date: Tue, 26 Aug 1997 12:23:09 +0200
Reply-To: [email protected]
Sender: [email protected]
From: "WITTE, CLAUS" <[email protected]>
To: "'[email protected]'" <[email protected]>,
"'[email protected]'" <[email protected]>
Subject: AW: User Access Denied
MIME-Version: 1.0
Content-Type: text/plain
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1458.49)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi Ahmed,

you'll need to create the '/etc/shells'-file - a list of
all allowed login shells. (see: man 4 shells)

Claus

------------------------------------------------------------
Dipl.Ing. Claus Witte Phone: +49 (0)69 696 95497
Lufthansa Systems GmbH FAX : +49 (0)69 696 95300
FRA AK/E-DS SITA : QLHIILH
Am Weiher 24 eMail: [email protected]
D-65451 Kelsterbach

> ----------
> Von: Ahmed Ossama[SMTP:[email protected]]
> Antwort an: [email protected]
> Gesendet: Dienstag, 26. August 1997 18:25
> An: [email protected]
> Betreff: User Access Denied
>
> Hi all,
>
> I have downloaded and installed wuftpd-2.4. The compilation and
> installation went on without problems. Also by running ckconfig
> everything was fine.
>
> When trying to connect to the ftp server after typing in the user name
> (whether anonymous or anyother valid user) I get a message:
>
> >user <userid> access denied
> >login failed.
>
> Any clues?
>
> Thanks.
>
> Ahmed Ossama.
> __________________________________________________________________
>
> InTouch Communications Services Tel: +(20.2)337.6407
> 3 Musadak Street, Dokki, Fax: +(20.2)337.6480
> Cairo 12311, Egypt. Email: [email protected]
> __________________________________________________________________
>

From [email protected] Tue Aug 26 05:58:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA09286;
Tue, 26 Aug 1997 05:49:13 -0500 (CDT)
Received: from intouch.intouch.com ([163.121.157.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id FAA08173
for <[email protected]>; Tue, 26 Aug 1997 05:48:18 -0500 (CDT)
Received: from aossama.intouch.com (aossama [163.121.157.200]) by intouch.intouch.com (8.8.6/8.7.2) with ESMTP id NAA17607; Tue, 26 Aug 1997 13:34:37 +0300 (EET DST)
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 13:46:05 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Ahmed Ossama <[email protected]>
To: [email protected]
Cc: "'[email protected]'" <[email protected]>
Subject: Re: AW: User Access Denied
References: <D03BAB5DE155D011A33E4000610102573617C8@XNT-FRALIC-2>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.01 [en] (Win95; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Cluas,

I have already done that and still nothing changed. :)

Regards,

Ahmed.
__________________________________________________________________

InTouch Communications Services Tel: +(20.2)337.6407
3 Musadak Street, Dokki, Fax: +(20.2)337.6480
Cairo 12311, Egypt. Email: [email protected]
__________________________________________________________________

WITTE, CLAUS wrote:
>
> Hi Ahmed,
>
> you'll need to create the '/etc/shells'-file - a list of
> all allowed login shells. (see: man 4 shells)
>
> Claus
>
> ------------------------------------------------------------
> Dipl.Ing. Claus Witte Phone: +49 (0)69 696 95497
> Lufthansa Systems GmbH FAX : +49 (0)69 696 95300
> FRA AK/E-DS SITA : QLHIILH
> Am Weiher 24 eMail: [email protected]
> D-65451 Kelsterbach
>
> > ----------
> > Von: Ahmed Ossama[SMTP:[email protected]]
> > Antwort an: [email protected]
> > Gesendet: Dienstag, 26. August 1997 18:25
> > An: [email protected]
> > Betreff: User Access Denied
> >
> > Hi all,
> >
> > I have downloaded and installed wuftpd-2.4. The compilation and
> > installation went on without problems. Also by running ckconfig
> > everything was fine.
> >
> > When trying to connect to the ftp server after typing in the user
> name
> > (whether anonymous or anyother valid user) I get a message:
> >
> > >user <userid> access denied
> > >login failed.
> >
> > Any clues?
> >
> > Thanks.
> >
> > Ahmed Ossama.
> > __________________________________________________________________
> >
> > InTouch Communications Services Tel: +(20.2)337.6407
> > 3 Musadak Street, Dokki, Fax: +(20.2)337.6480
> > Cairo 12311, Egypt. Email: [email protected]
> > __________________________________________________________________
> >

From [email protected] Tue Aug 26 06:36:59 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA04971;
Tue, 26 Aug 1997 06:27:09 -0500 (CDT)
Received: from aeppel.gmd.de (aeppel.gmd.de [129.26.8.88])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id GAA10026
for <[email protected]>; Tue, 26 Aug 1997 06:23:23 -0500 (CDT)
Received: (from jc@localhost)
by aeppel.gmd.de (8.8.5/8.8.5) id NAA20121;
Tue, 26 Aug 1997 13:23:09 +0200
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 13:23:09 +0200
Reply-To: [email protected]
Sender: [email protected]
From: Juergen Christoffel <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: exit-commands
In-Reply-To: <[email protected]> ([email protected])
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Date: Mon, 25 Aug 1997 20:11:50 +0200
From: [email protected] (Regio Online, Berthold Reif)

We try to find out, how we can establish a kind of exit command,
which is running automatically after a user terminates an ftp-session.
This could be useful for doing some testing on uploaded files.

Does anyone have an idea ?

You could set up a crontab job to periodically monitor certain
directories and post-process uploaded files. To make sure that the
cron job doesn't start post-processing before all files have been
uploaded, you might want to trigger it via a special file created by
your users after their upload has finished.

--jc

--
E-Mail: [email protected] or one of {ftp,news,web}[email protected]
GMD - German National Research Center for Information Technology

Superstition brings bad luck. -- Raymond Smullyan

From [email protected] Tue Aug 26 06:37:28 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA28035;
Tue, 26 Aug 1997 06:20:39 -0500 (CDT)
Received: from ar4web.dlh.de (ar4web.dlh.de [195.212.93.254])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id GAA09512
for <[email protected]>; Tue, 26 Aug 1997 06:15:48 -0500 (CDT)
Received: from tb2-ws01.tb2.ham.dlh.de (tb2-ws01 [195.212.93.5])
by ar4web.dlh.de (8.8.5/8.8.5) with SMTP id NAA02948
for <[email protected]>; Tue, 26 Aug 1997 13:13:05 +0200 (MET DST)
Received: from xnt-fralic-1.dlh.de
by tb2-ws01.tb2.ham.dlh.de with ESMTP (SMI-8.6/GEN-1.0.17)
via smtp for ar4web
id NAA01061; Tue, 26 Aug 1997 13:10:43 +0200
Received: by XNT-FRALIC-1 with Internet Mail Service (5.0.1458.49)
id <RTFC3S73>; Tue, 26 Aug 1997 13:14:19 +0200
Message-Id: <D03BAB5DE155D011A33E4000610102573617CD@XNT-FRALIC-2>
Date: Tue, 26 Aug 1997 13:14:18 +0200
Reply-To: [email protected]
Sender: [email protected]
From: "WITTE, CLAUS" <[email protected]>
To: "'[email protected]'" <[email protected]>
Subject: Re:: User Access Denied
MIME-Version: 1.0
Content-Type: text/plain
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1458.49)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

> Hi Ahmed,
>
> how does the entry for wu-ftpd in the '/etc/initd.conf' looks like ?
>
> I'm starting the wu-ftpd with the option -a; so the use of the
> ftpaccess
> configuration file is enabled. Propably this could help you to solve
> the
> problem.
>
> Here's the entry I'am actually using.
>
> ftp stream tcp nowait root /opt/wu_ftpd/lbin/ftpd ftpd -l -a -u
> 027
>
> Which OS are you running ?
>
> Claus
>
> ------------------------------------------------------------
> Dipl.Ing. Claus Witte Phone: +49 (0)69 696 95497
> Lufthansa Systems GmbH FAX : +49 (0)69 696 95300
> FRA AK/E-DS SITA : QLHIILH
> Am Weiher 24 eMail: [email protected]
> D-65451 Kelsterbach
>
>
>
> ----------
> Von: Ahmed Ossama[SMTP:[email protected]]
> Gesendet: Dienstag, 26. August 1997 19:46
> An: [email protected]
> Cc: '[email protected]'
> Betreff: Re: AW: User Access Denied
>
> Cluas,
>
> I have already done that and still nothing changed. :)
>
> Regards,
>
> Ahmed.
> __________________________________________________________________
>
> InTouch Communications Services Tel: +(20.2)337.6407
> 3 Musadak Street, Dokki, Fax: +(20.2)337.6480
> Cairo 12311, Egypt. Email: [email protected]
> __________________________________________________________________
>
> WITTE, CLAUS wrote:
> >
> > Hi Ahmed,
> >
> > you'll need to create the '/etc/shells'-file - a list of
> > all allowed login shells. (see: man 4 shells)
> >
> > Claus
> >
> > ------------------------------------------------------------
> > Dipl.Ing. Claus Witte Phone: +49 (0)69 696 95497
> > Lufthansa Systems GmbH FAX : +49 (0)69 696 95300
> > FRA AK/E-DS SITA : QLHIILH
> > Am Weiher 24 eMail: [email protected]
> > D-65451 Kelsterbach
> >
> > > ----------
> > > Von: Ahmed Ossama[SMTP:[email protected]]
> > > Antwort an: [email protected]
> > > Gesendet: Dienstag, 26. August 1997 18:25
> > > An: [email protected]
> > > Betreff: User Access Denied
> > >
> > > Hi all,
> > >
> > > I have downloaded and installed wuftpd-2.4. The compilation and
> > > installation went on without problems. Also by running ckconfig
> > > everything was fine.
> > >
> > > When trying to connect to the ftp server after typing in the user
> > name
> > > (whether anonymous or anyother valid user) I get a message:
> > >
> > > >user <userid> access denied
> > > >login failed.
> > >
> > > Any clues?
> > >
> > > Thanks.
> > >
> > > Ahmed Ossama.
> > > __________________________________________________________________
> > >
> > > InTouch Communications Services Tel: +(20.2)337.6407
> > > 3 Musadak Street, Dokki, Fax: +(20.2)337.6480
> > > Cairo 12311, Egypt. Email: [email protected]
> > > __________________________________________________________________
> > >
>
>
>

From [email protected] Tue Aug 26 09:10:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA19659;
Tue, 26 Aug 1997 09:00:08 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA12490
for <[email protected]>; Tue, 26 Aug 1997 08:54:44 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id IAA11087;
Tue, 26 Aug 1997 08:54:31 -0500
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 08:54:31 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: Ahmed Ossama <[email protected]>
Cc: [email protected]
Subject: Re: User Access Denied
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

You need to upgrade to the beta below first; it has many bug and security
fixes. Then go over the various resources to debug remaining problems.

-- Michael

On Tue, 26 Aug 1997, Ahmed Ossama wrote:

> I have downloaded and installed wuftpd-2.4. The compilation and
> installation went on without problems. Also by running ckconfig
> everything was fine.
>
> When trying to connect to the ftp server after typing in the user name
> (whether anonymous or anyother valid user) I get a message:
>
> >user <userid> access denied
> >login failed.

This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.

ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-14.tar.Z

wu-ftpd FAQ: http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to [email protected]
with a subject line: send faq

guest howto: ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "[email protected]"
(immediate autoresponder; subject does not matter)

wu-ftpd Resource Center: http://www.landfield.com/wu-ftpd/
wu-ftpd list archive: http://www.landfield.com/wu-ftpd/mail-archive/

There are additional security references in the above docs.

From [email protected] Tue Aug 26 10:08:10 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA14342;
Tue, 26 Aug 1997 09:54:36 -0500 (CDT)
Received: from nomina.lu.se (nomina.lu.se [130.235.132.90])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA24140
for <[email protected]>; Tue, 26 Aug 1997 09:45:44 -0500 (CDT)
Received: from lu-dal2.ling.lu.se by nomina.lu.se with SMTP
(5.65/IDA-1.2.8) id AA13824; Tue, 26 Aug 97 16:47:52 +0200
Received: from LU-DAL2/SpoolDir by lu-dal2.dal.lu.se (Mercury 1.21); 26 Aug 97 16:55:32 +0100
Received: from SpoolDir by LU-DAL2 (Mercury 1.21); 26 Aug 97 16:55:19 +0100
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 16:55:13 GMT+200
Reply-To: [email protected]
Sender: [email protected]
From: "Stig Isaksson" <[email protected]>
To: [email protected]
Subject: Re: Multiple guest groups
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7BIT
X-Pmrqc: 1
X-Mailer: Pegasus Mail for Windows (v2.33)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi Randy!

> Is it possible to have multiple guest groups and allow the different
> groups various sets of permissions for their respective directories ?
>
> Where one guest group might not have chmod and del perms and another
> does have these perms ?

Yes, I just found out how to do it a couple of days ago. I have three
guest groups called ftpguest, sofi and circles according to the
following ftpaccess file:

class all real,guest,anonymous *
class sofi guest *
class sktgroup guest *

guestgroup ftpguests sofi circles

#********************************************************
#Anonymous ftp:
banner /usr/local/home/ftp/messages/banner.msg
# banner command uses system root

message /messages/welcome.msg login
# message command uses chrooted root

upload /usr/local/home/ftp /upload yes root sys 0600
#********************************************************

log commands anonymous
log transfer anonymous inbound, outbound

log commands guest
log transfer guest inbound, outbound

log commands real
log transfer real inbound, outbound

email [email protected]

I'm practically a wu-ftp-beginner so some parts of the file above may
be unnessesary and unelegant but it works. The three guest users are
guest (in group guestgroup), sofi (in group sofi) and sktgrupp (in
group circles. Each of those users has a home folder of the same name
as themselves, each folder with bin, dev, etc, and usr file
structures below them (once made, those folders can be copied from one
user to the others - NB!! WITH THE EXCEPTION OF THE dev FOLDER, the
contents of which must be created anew for each user with the mknod
command) - three devices should be created in dev, like this:

#mknod zero c 13 12
#mknod tcp c 11 42
#mknod udp c 11 41
#mknod ticotsord c 105 1

(So don't try to make those by copying them from somewhere else - my
system at least (Solaris 2.5.1) hangs irrevocably if try something
like that.)

I see now that I might have replied to the part of your question
where you may already know the answers (?). As to the permission part
I suppose you can manipulate perms in the ordinary way (plus putting
or not putting the commands in question - cmod etc.- in each user's
etc directory).

Good Luck!
Greetings from Lund, Sweden.

Stig

------------------------------------------------------------
Stig Isaksson
Dialekt- och ortnamnsarkivet
Helgonabacken 14
S-223 62 LUND
S W E D E N
tel.: +46 46 222 74 68 fax: +46 46 15 23 81
e-mail: [email protected]

<Forstaor MIME Understands MIME>
------------------------------------------------------------

From [email protected] Tue Aug 26 10:30:59 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA28706;
Tue, 26 Aug 1997 10:16:48 -0500 (CDT)
Received: from nomina.lu.se (nomina.lu.se [130.235.132.90])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA26825
for <[email protected]>; Tue, 26 Aug 1997 10:10:28 -0500 (CDT)
Received: from lu-dal2.ling.lu.se by nomina.lu.se with SMTP
(5.65/IDA-1.2.8) id AA15524; Tue, 26 Aug 97 17:12:36 +0200
Received: from LU-DAL2/SpoolDir by lu-dal2.dal.lu.se (Mercury 1.21); 26 Aug 97 17:20:17 +0100
Received: from SpoolDir by LU-DAL2 (Mercury 1.21); 26 Aug 97 17:19:52 +0100
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 17:19:46 GMT+200
Reply-To: [email protected]
Sender: [email protected]
From: "Stig Isaksson" <[email protected]>
To: [email protected]
Subject: Multiple guest groups (correction)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7BIT
X-Pmrqc: 1
X-Mailer: Pegasus Mail for Windows (v2.33)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Sorry Randy,

In my reply to you I slipped unforgivably and happened to write:
"... (puttin or not putting the commands in question - cmod etc.- in
each user's etc directory)." Of course I mean "... ... each user's
usr/bin directory)."

Stig

------------------------------------------------------------
Stig Isaksson
Dialekt- och ortnamnsarkivet
Helgonabacken 14
S-223 62 LUND
S W E D E N
tel.: +46 46 222 74 68 fax: +46 46 15 23 81
e-mail: [email protected]

<Forstaor MIME Understands MIME>
------------------------------------------------------------

From [email protected] Tue Aug 26 11:39:10 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA01189;
Tue, 26 Aug 1997 11:26:15 -0500 (CDT)
Received: from jpmorgan.com (firewall-user@[169.71.1.11])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA30607
for <[email protected]>; Tue, 26 Aug 1997 11:23:49 -0500 (CDT)
Received: (from uucp@localhost)
by jpmorgan.com (8.8.5/8.8.5) id MAA27773
for <[email protected]>; Tue, 26 Aug 1997 12:23:08 -0400 (EDT)
Received: from mrzip.ny.jpmorgan.com(146.149.1.2) by threshold2.jpmorgan.com via smap (3.2)
id xma016226; Tue, 26 Aug 97 12:04:50 -0400
Received: from rlanzone (rlanzone.ny.jpmorgan.com [169.124.80.94]) by mrzip.ny.jpmorgan.com (8.8.4/8.7.6) with ESMTP id MAA10361; Tue, 26 Aug 1997 12:02:11 -0400 (EDT)
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 11:54:40 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Robert Lanzone <[email protected]>
To: [email protected]
Cc: Gary Grosvalet <[email protected]>
Subject: ls problem with wu-ftpd V2.4 academ
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.01 [en] (WinNT; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I'm having trouble getting the long output i.e. dir with an account set
up with the wu-ftpd V2.4 academ account on Sun Solaris V2.5.1. Plain
ls's works fine. What could be wrong with the configuration?

Rob
--
Rob Lanzone J.P. Morgan
Webmaster - Bell Atlantic Network Integration 15 Broad Street
Internet / Web Services Group New York, NY 10260
[email protected] +1 212.235.4454

From [email protected] Tue Aug 26 11:50:47 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA27879;
Tue, 26 Aug 1997 11:39:13 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA06217
for <[email protected]>; Tue, 26 Aug 1997 11:36:30 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id LAA15427;
Tue, 26 Aug 1997 11:36:33 -0500
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 11:36:33 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: Robert Lanzone <[email protected]>
Cc: [email protected], Gary Grosvalet <[email protected]>
Subject: Re: ls problem with wu-ftpd V2.4 academ
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Extremely FAQ. Check the guest how and list archives below.

-- Michael

On Tue, 26 Aug 1997, Robert Lanzone wrote:

> I'm having trouble getting the long output i.e. dir with an account set
> up with the wu-ftpd V2.4 academ account on Sun Solaris V2.5.1. Plain
> ls's works fine. What could be wrong with the configuration?

This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.

ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-14.tar.Z

wu-ftpd FAQ: http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to [email protected]
with a subject line: send faq

guest howto: ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "[email protected]"
(immediate autoresponder; subject does not matter)

wu-ftpd Resource Center: http://www.landfield.com/wu-ftpd/
wu-ftpd list archive: http://www.landfield.com/wu-ftpd/mail-archive/

There are additional security references in the above docs.

From [email protected] Tue Aug 26 12:02:18 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA04245;
Tue, 26 Aug 1997 11:51:52 -0500 (CDT)
Received: from bird.iagnet.net ([email protected] [207.206.8.180])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA22322
for <[email protected]>; Tue, 26 Aug 1997 11:47:10 -0500 (CDT)
Received: from bird.iagnet.net ([email protected] [207.206.8.180])
by bird.iagnet.net (8.8.5/8.8.5) with SMTP id MAA02394
for <[email protected]>; Tue, 26 Aug 1997 12:42:33 -0400 (EDT)
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 12:42:32 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Ravi Pina <[email protected]>
To: [email protected]
Subject: Upload Permissions
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 3.0Gold (X11; U; BSD/OS 3.0 i386)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I have a directory structure setup where /hidden/admin is a upload dir.
I'd like anonymous users to be able to login and be able to create dirs,
and upload files to newly created dirs. Right now, people can upload to
/hidden/admin, and create dirs in that dir, but cannot upload to newloy
created dirs. What should the upload entry look like?

-ravi

From [email protected] Tue Aug 26 13:28:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA03574;
Tue, 26 Aug 1997 13:13:45 -0500 (CDT)
Received: from mailhost.paradyne.com (mailhost.paradyne.com [204.128.146.19])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA19411
for <[email protected]>; Tue, 26 Aug 1997 13:09:50 -0500 (CDT)
Received: from hermes.eng.paradyne.com by mailhost.paradyne.com (SMI-8.6/SMI-SVR4)
id OAA28739; Tue, 26 Aug 1997 14:09:19 -0400
Received: from harpoon.eng.paradyne.com (harpoon.eng.paradyne.com [135.26.6.36]) by hermes.eng.paradyne.com (8.7.5/8.7.3) with SMTP id OAA19743 for <[email protected]>; Tue, 26 Aug 1997 14:09:17 -0400 (EDT)
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 14:09:18 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Rich Bowhall <[email protected]>
To: [email protected]
Subject: FTP Server Question
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: [email protected]
X-Mailer: Mozilla 3.01Gold (X11; U; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hello,

I have a question on FTP Servers. If a client is sending a large file
to a server and the server has an error, how does the server inform
the client to stop sending the file?

Thanks for any Info,
-Richard A. Bowhall

From [email protected] Tue Aug 26 13:40:32 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA13779;
Tue, 26 Aug 1997 13:32:09 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA11123
for <[email protected]>; Tue, 26 Aug 1997 13:25:28 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id NAA18006;
Tue, 26 Aug 1997 13:25:27 -0500
Message-Id: <[email protected]>
Date: Tue, 26 Aug 1997 13:25:27 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: Ravi Pina <[email protected]>
Cc: [email protected]
Subject: Re: Upload Permissions
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

This probably has more to do with the permissions on the created
directories, and I don't think there is a way to control that from the
ftpaccess file. Check the source to see what it does; seems like this has
come up before, so you might find something in the list archives.

wu-ftpd list archive: http://www.landfield.com/wu-ftpd/mail-archive/

-- Michael

On Tue, 26 Aug 1997, Ravi Pina wrote:

> I have a directory structure setup where /hidden/admin is a upload dir.
> I'd like anonymous users to be able to login and be able to create dirs,
> and upload files to newly created dirs. Right now, people can upload to
> /hidden/admin, and create dirs in that dir, but cannot upload to newloy
> created dirs. What should the upload entry look like?

From [email protected] Wed Aug 27 06:06:58 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA28852;
Wed, 27 Aug 1997 05:56:35 -0500 (CDT)
Received: from mailhost.tue.nl (mailhost.tue.nl [131.155.2.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id FAA00324
for <[email protected]>; Wed, 27 Aug 1997 05:55:00 -0500 (CDT)
Received: from rce.urc.tue.nl [131.155.190.21] by mailhost.tue.nl (8.8.5)
for <[email protected]>
id MAA26668 (SMTP). Wed, 27 Aug 1997 12:54:53 +0200 (MET DST)
Message-Id: <[email protected]>
Date: Wed, 27 Aug 1997 12:51:00 +0200
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected]
Subject: MAXSYMLINKS
X-VMS-To: [email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I've just installed wu-ftpd Version wu-2.4.2-academ[BETA-14](2) on a sun
Solaris 2.5 system and gcc 2.6.0. When I try to change directory I get the
following error:

550 tue-ftp: Number of symbolic links encountered during path name traversal
exceeds MAXSYMLINKS.

wu-ftpd Version wu-2.4.2-academ[BETA-13](1) doesn't have this problem.
Any ideas??

kind regards,

Ivan

----
Ivan Saez Scheihing , Eindhoven University of Technology
Computing Center 1.33, +31 40 2472139
P.O.Box 513, 5600 MB Eindhoven, The Netherlands
E-Mail: [email protected]

From [email protected] Wed Aug 27 07:47:53 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA03389;
Wed, 27 Aug 1997 07:38:49 -0500 (CDT)
Received: from intouch.intouch.com ([163.121.157.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id HAA02985
for <[email protected]>; Wed, 27 Aug 1997 07:32:11 -0500 (CDT)
Received: from aossama.intouch.com (aossama [163.121.157.200]) by intouch.intouch.com (8.8.6/8.7.2) with ESMTP id PAA14089 for <[email protected]>; Wed, 27 Aug 1997 15:19:54 +0300 (EET DST)
Message-Id: <[email protected]>
Date: Wed, 27 Aug 1997 15:31:24 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Ahmed Ossama <[email protected]>
To: [email protected]
Subject: FTPHOSTS???
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.01 [en] (Win95; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hello,

[Cluas], I managed to get that error code that is preventing the server
from authentication any users.

Can anyone tell me what this error means?
>530 FTP LOGIN REFUSED (name in /etc/ftphosts) FROM ........., aossama
>Login failed.

What is this ftphosts file used for? What should I write in it???

Thanks,

Ahmed Ossama.
__________________________________________________________________

InTouch Communications Services Tel: +(20.2)337.6407
3 Musadak Street, Dokki, Fax: +(20.2)337.6480
Cairo 12311, Egypt. Email: [email protected]
__________________________________________________________________

From [email protected] Wed Aug 27 10:20:32 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA19434;
Wed, 27 Aug 1997 10:13:19 -0500 (CDT)
Received: from ncts01.engg.upd.edu.ph (noriel@[165.220.18.119])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA18857
for <[email protected]>; Wed, 27 Aug 1997 10:09:51 -0500 (CDT)
Received: from localhost (noriel@localhost) by ncts01.engg.upd.edu.ph (8.7.5/8.7.3) with SMTP id XAA32720 for <[email protected]>; Wed, 27 Aug 1997 23:09:28 +0800
Message-Id: <[email protected]>
Date: Wed, 27 Aug 1997 23:09:28 +0800 (PST)
Reply-To: [email protected]
Sender: [email protected]
From: "Noriel Christopher C. Tiglao" <[email protected]>
To: [email protected]
Subject: password support
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: [email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi all!

I would like to ask whether you can suggest to me a site to download the
latest version of wu-ftpd with password support.

I am running Linux 2.0.0 on my server.

------------------------------------------
Noriel Christopher C. Tiglao
National Center for Transportation studies
University of the Philippines
Diliman, Quezon City

Tel.: (632) 929-0494 to 96
Fax.: (632) 929-0496

E-mail: [email protected]
[email protected]
------------------------------------------

From [email protected] Wed Aug 27 10:41:35 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA21437;
Wed, 27 Aug 1997 10:31:34 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA20792
for <[email protected]>; Wed, 27 Aug 1997 10:26:24 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id KAA09759;
Wed, 27 Aug 1997 10:25:51 -0500
Message-Id: <[email protected]>
Date: Wed, 27 Aug 1997 10:25:50 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: "Noriel Christopher C. Tiglao" <[email protected]>
Cc: [email protected]
Subject: Re: password support
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Wed, 27 Aug 1997, Noriel Christopher C. Tiglao wrote:

> I would like to ask whether you can suggest to me a site to download the
> latest version of wu-ftpd with password support.

This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.

ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-14.tar.Z

wu-ftpd FAQ: http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to [email protected]
with a subject line: send faq

guest howto: ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "[email protected]"
(immediate autoresponder; subject does not matter)

wu-ftpd Resource Center: http://www.landfield.com/wu-ftpd/
wu-ftpd list archive: http://www.landfield.com/wu-ftpd/mail-archive/

There are additional security references in the above docs.

From [email protected] Wed Aug 27 11:11:06 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA25082;
Wed, 27 Aug 1997 11:03:48 -0500 (CDT)
Received: from dolly.massart.edu (dolly.massart.edu [209.6.44.7])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA24773
for <[email protected]>; Wed, 27 Aug 1997 11:01:33 -0500 (CDT)
Received: (from daemon@localhost)
by dolly.massart.edu (8.8.5/8.8.4)
id MAA01710 for <[email protected]>; Wed, 27 Aug 1997 12:01:01 -0400
Received: from UNKNOWN(172.22.101.87), claiming to be "spock.massart.edu"
via SMTP by dolly.massart.edu, id smtpd01695aaa; Wed Aug 27 12:00:36 1997
Message-Id: <[email protected]>
Date: Wed, 27 Aug 1997 12:00:14 -0400 (EDT)
Reply-To: [email protected]
Sender: [email protected]
From: poppy <[email protected]>
To: [email protected]
Subject: IDENT needs to go
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-X-Sender: [email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I'm trying to set up a new www server with wu-ftp, but the
problem I'm running into is with my firewall. The wu server
is a Debian 1.31 linux box, which exists outside the firewall.
Most of the poeple uploading to the site will be inside the
The firewall won't allow wu-ftpd to send back the IDENT
information to the client behind the firewall. I have calls
into Cisco, but an easier solution is to turn off the recipricol
transmission of IDENT info.

SO
How do I turn off the transmission of the IDENT info
from the server to the client?

ALSO
Is there a way to set-up wu-ftpd in linux so that a user
(not anonymous) is limited to one partition of the drive alone?

Thanks for any help.

poppy

From [email protected] Wed Aug 27 20:16:29 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA10156;
Wed, 27 Aug 1997 20:08:02 -0500 (CDT)
Received: from colonelk.puffin.org ([email protected] [194.159.247.36])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id UAA08400
for <[email protected]>; Wed, 27 Aug 1997 20:04:46 -0500 (CDT)
Received: (from apw@localhost)
by colonelk.puffin.org (8.8.5/8.8.5) id CAA09828
for [email protected].; Thu, 28 Aug 1997 02:06:32 +0100 (BST)
Message-Id: <[email protected]>
Date: Thu, 28 Aug 1997 02:06:29 +0100 (BST)
Reply-To: [email protected]
Sender: [email protected]
From: Ade Wilkinson <[email protected]>
To: [email protected]
Subject: Passive Mode Xfers
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4ME+ PL32 (25)]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Dear All,

Using wu-2.4.2-academ[BETA-13] on a FreeBSD 2.2 system, I have had
several users report to me that they are able to upload files using
passive transfers, but not download them again.

They are using a program called "FXP" which apparently does direct
data transfers between two FTP servers allowing people to transfer
files at the speeds the two FTP servers are connected instead of
limiting to their connection speed.

In order to achieve this, FXP uses passive transfers and
(apparently) is happy to transfer up at max. speed
but if they try to transfer -from- my system it uses their
connection speed.

Some people have suggested that it is because wu-ftpd doesn't
allow passive downloads, which sounds a little strange to me.
Could someone please advise me on what is going on and how
to enable passive xfers?

Regards, Ade.

--
Ade Wilkinson | "We took 70ml of ordinary tap water and placed it
Systems Administrator | inside this beaker. We then took 70ml of rain
-----------------------| water taken from the labratory roof and placed it
http://www.puffin.org/ | in this beaker ... don't ask me why, we just did."

From [email protected] Wed Aug 27 21:34:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA16885;
Wed, 27 Aug 1997 21:23:24 -0500 (CDT)
Received: from nuinfo.nwu.edu (nuinfo.nwu.edu [129.105.212.72])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA16827
for <[email protected]>; Wed, 27 Aug 1997 21:21:31 -0500 (CDT)
Received: by nuinfo.nwu.edu
(1.39.111.2/16.2) id AA216054890; Wed, 27 Aug 1997 21:21:30 -0500
Message-Id: <[email protected]>
Date: Wed, 27 Aug 1997 21:21:29 CDT
Reply-To: [email protected] (Albert Lunde)
Sender: [email protected]
From: [email protected] (Albert Lunde)
To: [email protected]
Subject: Re: Passive Mode Xfers
In-Reply-To: <[email protected]>; from "Ade Wilkinson" at Aug 28, 97 2:06 am
X-Sender: [email protected] (Albert Lunde)
X-Mailer: Elm [revision: 112.6]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

> Dear All,
>
> Using wu-2.4.2-academ[BETA-13] on a FreeBSD 2.2 system, I have had
> several users report to me that they are able to upload files using
> passive transfers, but not download them again.
>
> They are using a program called "FXP" which apparently does direct
> data transfers between two FTP servers allowing people to transfer
> files at the speeds the two FTP servers are connected instead of
> limiting to their connection speed.

There's a little used feature in the FTP protocols that allows a client to
set up third-party transfers, but I was under the impression
that it was disabled by security checks in wu-ftpd.

I don't completely understand this but I thought it was distinct
from passive mode transfers.

--
Albert Lunde [email protected]

From [email protected] Wed Aug 27 22:19:29 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id WAA20706;
Wed, 27 Aug 1997 22:07:20 -0500 (CDT)
Received: from Bahamut.dragonfire.net (Bahamut.dragonfire.net [209.70.16.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id WAA20512
for <[email protected]>; Wed, 27 Aug 1997 22:05:28 -0500 (CDT)
Received: (from achurch@localhost) by Bahamut.dragonfire.net (8.8.5/8.7.5) id XAA09476; Wed, 27 Aug 1997 23:05:20 -0400
Message-Id: <[email protected]>
Date: Wed, 27 Aug 1997 23:05:20 EDT
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (Andy Church)
To: [email protected]
Subject: Re: Passive Mode Xfers
X-Mailer: MMail v4.62
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

>Using wu-2.4.2-academ[BETA-13] on a FreeBSD 2.2 system, I have had
>several users report to me that they are able to upload files using
>passive transfers, but not download them again.
>
>They are using a program called "FXP" which apparently does direct
>data transfers between two FTP servers allowing people to transfer
>files at the speeds the two FTP servers are connected instead of
>limiting to their connection speed.
>
>In order to achieve this, FXP uses passive transfers and
>(apparently) is happy to transfer up at max. speed
>but if they try to transfer -from- my system it uses their
>connection speed.

I'd guess you're running into the limitation of wu-ftpd (around since
the Hobbit fix-kit?) which prevents PORT commands from any host other than
the host the source host--look for "refused PORT 0,xxxx" in your syslog.
This is really a double-edged patch: It prevents things like the so-called
"FTP bounce attack" which can be used to get around certain access
restrictions, and prevents someone from making ftpd connect to reserved
ports (can anyone think of a _real_ DoS [denial of service] attack based on
this? I can't). On the other hand, it prevents legitimate use of PORT
commands for hosts other than the one sending the command, and this is at
least the second program I've heard of which takes advantage of this
feature of FTP. I personally prefer it off; the code is around line 770 in
ftpcmd.y if you want to tinker with it.

Of course, your problem might be completely different. <shrug>

--Andy Church | If Bell Atlantic really is the heart
[email protected] | of communication, then it desperately
www.dragonfire.net/~achurch/ | needs a quadruple bypass.

From [email protected] Thu Aug 28 02:17:18 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA14883;
Thu, 28 Aug 1997 02:07:37 -0500 (CDT)
Received: from mailhost.tue.nl (mailhost.tue.nl [131.155.2.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id CAA14350
for <[email protected]>; Thu, 28 Aug 1997 02:02:22 -0500 (CDT)
Received: from rce.urc.tue.nl [131.155.190.21] by mailhost.tue.nl (8.8.5)
for <[email protected]>
id JAA01665 (SMTP). Thu, 28 Aug 1997 09:02:20 +0200 (MET DST)
Message-Id: <[email protected]>
Date: Thu, 28 Aug 1997 08:58:59 +0200
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: [email protected], [email protected]
Subject: Re: MAXSYMLINKS
X-VMS-To: SMTP%"[email protected]"
X-VMS-Cc: [email protected],RCIVAN
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

>
> On Wed, 27 Aug 1997 [email protected] wrote:
> > I've just installed wu-ftpd Version wu-2.4.2-academ[BETA-14](2) on a sun
> > Solaris 2.5 system and gcc 2.6.0. When I try to change directory I get the
> > following error:
> >
> > 550 tue-ftp: Number of symbolic links encountered during path name traversal
> > exceeds MAXSYMLINKS.
>
> Ivan,
> I can't help with your problem except to say that I've
> just compiled wu-2.4.2-beta-14 for testing on Sol 2.5.1 with
> gcc 2.7.2.2 and I am not seeing that error.
>
> If you haven't tried it yet, "ftpck" uncovered some problems here. I got
> it from "www.landfield.com/wu-ftpd" under tools. It had a compilation
> error which I fixed with the following modification...
>
> diff -r wu-ftpd-2.4.2-beta-14/src/ftpck.1.11/ftpck.c
> wu-ftpd-2.4.2-beta-14.FCS/src/ftpck.1.11/ftpck.c
> 78,79c78,79
> < #include "../config.h"
> < #include "../pathnames.h"
> ---
> > #include "pathnames.h"
> > #include "config.h"
>

Greg,

Thanks!
ftpck didn't discover any errors. Till now no one has a solution for the
problem.

>
> -greg
>
> Greg Parmer
> Network Engineer
> Auburn University, AL(USA) -- AAES/ACES/COA
>
>

regards,

Ivan

----
Ivan Saez Scheihing , Eindhoven University of Technology
Computing Center 1.33, +31 40 2472139
P.O.Box 513, 5600 MB Eindhoven, The Netherlands
E-Mail: [email protected]

From [email protected] Thu Aug 28 08:24:19 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA08134;
Thu, 28 Aug 1997 08:16:44 -0500 (CDT)
Received: from ar4web.dlh.de (ar4web.dlh.de [195.212.93.254])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA07143
for <[email protected]>; Thu, 28 Aug 1997 08:06:44 -0500 (CDT)
Received: from tb2-ws01.tb2.ham.dlh.de (tb2-ws01 [195.212.93.5])
by ar4web.dlh.de (8.8.5/8.8.5) with SMTP id PAA06359
for <[email protected]>; Thu, 28 Aug 1997 15:03:26 +0200 (MET DST)
Received: from xnt-fralic-1.dlh.de
by tb2-ws01.tb2.ham.dlh.de with ESMTP (SMI-8.6/GEN-1.0.17)
via smtp for ar4web
id PAA11152; Thu, 28 Aug 1997 15:03:59 +0200
Received: by XNT-FRALIC-1 with Internet Mail Service (5.0.1458.49)
id <RTFC3YF5>; Thu, 28 Aug 1997 15:04:41 +0200
Message-Id: <D03BAB5DE155D011A33E4000610102573617DF@XNT-FRALIC-2>
Date: Thu, 28 Aug 1997 15:04:40 +0200
Reply-To: [email protected]
Sender: [email protected]
From: "WITTE, CLAUS" <[email protected]>
To: "'[email protected]'" <[email protected]>
Subject: Keep timestamps when ftp'ing files
MIME-Version: 1.0
Content-Type: text/plain
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1458.49)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi everybody,

it's a simple question that I have, but simple questions are sometimes
hard ... :)

Is it possible to configure wu-ftpd and/or my ftp-client in that way,
that the
timestamp of a downloaded file is the same than the one of the original
file ?

I am using wu-ftpd Version wu-2.4.2-academ[BETA-13](1) on a HP K460
running HPUX 10.20 .

Thanks in advance
Claus

------------------------------------------------------------
Dipl.Ing. Claus Witte Phone: +49 (0)69 696 95497
Lufthansa Systems GmbH FAX : +49 (0)69 696 95300
FRA AK/E-DS SITA : QLHIILH
Am Weiher 24 eMail: [email protected]
D-65451 Kelsterbach

From [email protected] Thu Aug 28 11:00:52 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA23452;
Thu, 28 Aug 1997 10:53:04 -0500 (CDT)
Received: from xl5.polyhedra.com (xl5.polyhedra.com [194.217.58.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA23019
for <[email protected]>; Thu, 28 Aug 1997 10:49:32 -0500 (CDT)
Received: (from mail@localhost) by xl5.polyhedra.com (8.8.3/8.6.10) id QAA20284 for <[email protected]>; Thu, 28 Aug 1997 16:49:31 +0100
Received: from pinky.polyhedra.com(10.1.2.3) by xl5.polyhedra.com via smap (V1.3)
id sma020280; Thu Aug 28 16:49:26 1997
Received: by tim.polyhedra.com with Microsoft Mail
id <[email protected]>; Thu, 28 Aug 1997 16:50:09 +-100
Message-Id: <[email protected]>
Date: Thu, 28 Aug 1997 16:50:08 +-100
Reply-To: [email protected]
Sender: [email protected]
From: Tim Bedding <[email protected]>
To: "'wuf'" <[email protected]>
Subject: Running ftpd from shell
X-Authentication-Warning: xl5.polyhedra.com: mail set sender to <[email protected]> using -f
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hi. I am new to this list.
Is there a way of running wu-ftpd from the command line, rather than
via inetd?

Tim Bedding

From [email protected] Thu Aug 28 16:53:51 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA21577;
Thu, 28 Aug 1997 16:45:43 -0500 (CDT)
Received: from alpha.xerox.com (alpha.Xerox.COM [13.1.64.93])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA22319
for <[email protected]>; Thu, 28 Aug 1997 16:38:53 -0500 (CDT)
Received: from silas.cp10.es.xerox.com ([13.241.236.13]) by alpha.xerox.com with SMTP id <54128(1)>; Thu, 28 Aug 1997 14:37:46 PDT
Received: by silas.cp10.es.xerox.com (4.1/SMI-4.1)
id AA07984; Thu, 28 Aug 97 14:36:29 PDT
Message-Id: <[email protected]>
Date: Thu, 28 Aug 1997 14:36:29 PDT
Reply-To: [email protected]
Sender: [email protected]
From: [email protected] (joseph yang)
To: [email protected]
Cc: [email protected]
Subject: Re: syslog statics
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Hello,

When I get message on my console like :

Aug 28 14:30:35 mymachine ftpd[7957]: exiting on signal 541622273

How do I intepret those signal numbers? Is there a doc somewhere?

A side question, is there something that tracks errors occurring with wuftp (ie: login probs, transfer probs, access probs,...)

Thanx.

--Joe

From [email protected] Fri Aug 29 04:26:26 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA17634;
Fri, 29 Aug 1997 04:19:44 -0500 (CDT)
Received: from volans.senbvs43.uni-bremen.de (inter.senbvs43.uni-bremen.de [134.102.148.129])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA17241
for <[email protected]>; Fri, 29 Aug 1997 04:16:03 -0500 (CDT)
Received: from camelopardalis.hb.dlm ([email protected] [194.59.46.129])
by volans.senbvs43.uni-bremen.de (8.8.5/8.8.5) with ESMTP id LAA20556;
Fri, 29 Aug 1997 11:08:56 +0200 (MET DST)
Received: (from muewi@localhost)
by camelopardalis.hb.dlm (8.8.5/8.8.5) id LAA09339;
Fri, 29 Aug 1997 11:18:07 +0200 (MET DST)
Message-Id: <[email protected]>
Date: Fri, 29 Aug 1997 11:18:07 +0200 (MET DST)
Reply-To: [email protected]
Sender: [email protected]
From: Wilhelm Mueller <[email protected]>
To: [email protected]
Cc: "[email protected]" <[email protected]>
Subject: Re: Keep timestamps when ftp'ing files
In-Reply-To: <D03BAB5DE155D011A33E4000610102573617DF@XNT-FRALIC-2>
References: <D03BAB5DE155D011A33E4000610102573617DF@XNT-FRALIC-2>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: VM 6.33 under 19.15 XEmacs Lucid
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

On Thu, 1997-08-28 15:04:40 +0200, <[email protected]>
WITTE, CLAUS felt compelled to utter:

> Is it possible to configure wu-ftpd and/or my ftp-client in that way,
> that the
> timestamp of a downloaded file is the same than the one of the original
> file ?

To retain time stamps, the ftpd must support the MDTM command (which
wu-ftpd does, aftpd doesn't), and your client must use it. (You might
try something like 'quote HELP' to find out what commands the server
knows about).

Usually, clients either know about MDTM and retain time stamps auto-
matically, or they don't and you won't have a chance to convince them
to learn it. Usually, your vendor's ftp doesn't know it, neither does
llnl-xftp, but ncftp does.

-- Wilhelm

--

Every program has two purposes -- one for which it was written and
another for which it wasn't.

--

***************************************************
Der Senator f�r Bau, Verkehr und Stadtentwicklung
Referat 43 (Dienststelle Schlachte 32)
Wilhelm M�ller Tel: +49-421-361-10629
Ansgaritorstra�e 2 Fax: +49-421-361-2295
D-28195 Bremen, Germany

Bits KeyID Fingerprint
2048 C2F0A2D1 B1452644 DEBB647F 94AA3DA9 01608E0A
1024 9548B531 AE9AD94C 978ABC3F 4B25B52B 1E752137
512 48B324ED 885C3131 DDF53740 DB7F9421 2A5431EE

From [email protected] Fri Aug 29 08:17:21 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA01430;
Fri, 29 Aug 1997 08:08:41 -0500 (CDT)
Received: from svha0001.clipper.ssb.com (svha0001.clipper.ssb.com [192.250.113.12])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA01781
for <[email protected]>; Fri, 29 Aug 1997 08:04:40 -0500 (CDT)
Received: from ssga.statestreet.com (ga010082.ssga.ssb.com [147.141.10.82])
by svha0001.clipper.ssb.com (8.8.5/8.8.5) with SMTP id JAA12696
for <[email protected]>; Fri, 29 Aug 1997 09:04:39 -0400 (EDT)
Received: from am693.ssga.statestreet.com by ssga.statestreet.com (SMI-8.6/SMI-SVR4)
id JAA25929; Fri, 29 Aug 1997 09:07:25 -0400
Received: by am693.ssga.statestreet.com (4.1/SMI-4.1)
id AA13255; Fri, 29 Aug 97 13:11:03 EDT
Received: by am693.ssga.statestreet.com (4.1/SMI-4.1)
id AA13250; Fri, 29 Aug 97 13:11:02 EDT
Received: from SSGA with "Lotus Notes Mail Gateway for SMTP" id
D6400BC3FE11D8CB852565020046FAE2; Fri, 29 Aug 97 13:11:02
Message-Id: <[email protected]>
Date: 29 Aug 97 9:04:19 EDT
Reply-To: [email protected]
Sender: [email protected]
From: Liang Chen/BOSTON/SSGA <[email protected]>
To: wu-ftpd <[email protected]>
Subject: How to disallow guest users changing directory?
Mime-Version: 1.0
Content-Type: Text/Plain
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I started to read this news recently. I missed a lot of related topics in this
area in the past. I have a question to set up a rule in the ftpaccess file to
reject requests from the guest users for changing directory. If you can help,
please do so. Thanks in advance.

From [email protected] Fri Aug 29 09:53:35 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA11398;
Fri, 29 Aug 1997 09:46:08 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA10865
for <[email protected]>; Fri, 29 Aug 1997 09:39:11 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA31004;
Fri, 29 Aug 1997 09:39:09 -0500
Message-Id: <[email protected]>
Date: Fri, 29 Aug 1997 09:39:09 -0500 (CDT)
Reply-To: [email protected]
Sender: [email protected]
From: Michael Brennen <[email protected]>
To: Liang Chen/BOSTON/SSGA <[email protected]>
Cc: wu-ftpd <[email protected]>
Subject: Re: How to disallow guest users changing directory?
In-Reply-To: <[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

Extremely FAQ. Check the guest howto and list archives.

-- Michael

On 29 Aug 1997, Liang Chen/BOSTON/SSGA wrote:

> I started to read this news recently. I missed a lot of related topics in this
> area in the past. I have a question to set up a rule in the ftpaccess file to
> reject requests from the guest users for changing directory. If you can help,
> please do so. Thanks in advance.

This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.

ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-14.tar.Z

wu-ftpd FAQ: http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to [email protected]
with a subject line: send faq

guest howto: ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "[email protected]"
(immediate autoresponder; subject does not matter)

wu-ftpd Resource Center: http://www.landfield.com/wu-ftpd/
wu-ftpd list archive: http://www.landfield.com/wu-ftpd/mail-archive/

There are additional security references in the above docs.

From [email protected] Fri Aug 29 11:01:33 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA18941;
Fri, 29 Aug 1997 10:54:05 -0500 (CDT)
Received: from in2002.biosis.org (in2002.biosis.org [204.5.105.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA17916
for <[email protected]>; Fri, 29 Aug 1997 10:47:14 -0500 (CDT)
Received: by in2002.biosis.org (5.65/DEC-Ultrix/4.4)
id AA28517; Fri, 29 Aug 1997 11:44:11 -0400
Received: from ccMail by mail.biosis.org (ccMail Link to SMTP R6.00.02)
id AA872869336; Fri, 29 Aug 97 11:42:19 -0500
Message-Id: <[email protected]>
Date: Fri, 29 Aug 97 11:42:24 -0500
Reply-To: [email protected]
Sender: [email protected]
From: [email protected]
To: <[email protected] (wu-ftpd listserv)>
Cc: <[email protected]>
Subject: wu-ftpd & AIX 4.2
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ccMail Link to SMTP R6.00.02
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

I'm attempting to install wu-ftpd 2.4 on an RS/6000 running AIX 4.2. I'm getting
compile errors. Has anyone out there installed wu-ftpd 2.4 on AIX 4.2
successfully?

| S. Veryl Ellis [email protected]
| Technical Services Section Chief
| BIOSIS
| 2100 Arch Street
| Philadelphia, Pennsylvania 19103
| 215.587.2042
|
| Madness takes it's toll. Please have exact change.

From [email protected] Fri Aug 29 12:04:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA25655;
Fri, 29 Aug 1997 11:54:34 -0500 (CDT)
Received: from noaardc.noaa.gov (noaardc.noaa.gov [140.90.27.61])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA24955
for <[email protected]>; Fri, 29 Aug 1997 11:52:55 -0500 (CDT)
Message-Id:
<051313406FE50009*/c=US/admd=ATTMAIL/prmd=GOV+NOAA/o=CCNWS/s=Matusiewicz/g=Joseph/@MHS>
Date: 29 Aug 1997 12:52:32 -0400
Reply-To: [email protected]
Sender: [email protected]
From: Joseph Matusiewicz <[email protected]>
To: [email protected] (Return requested),
[email protected] (Return requested)
Cc: [email protected] (Return requested)
Subject: Re: wu-ftpd & AIX 4.2
Content-Identifier: 051313406FE50009
Content-Return: Allowed
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN

No, but I have installed it successfully on an AIX 3.2.5 machine. I
then moved the binaries to a 4.2 box and it worked OK because they are
compatible. I can send you the binaries if you want.

Hope this helps....

______________________________ Reply Separator _________________________________
Subject: wu-ftpd & AIX 4.2
Author: [email protected] at EXTERNAL
Date: 8/29/97 12:07 PM

I'm attempting to install wu-ftpd 2.4 on an RS/6000 running AIX 4.2. I'm getting
compile errors. Has anyone out there installed wu-ftpd 2.4 on AIX 4.2
successfully?

| S. Veryl Ellis [email protected]
| Technical Services Section Chief
| BIOSIS
| 2100 Arch Street
| Philadelphia, Pennsylvania 19103
| 215.587.2042
|
| Madness takes it's toll. Please have exact change.