From
[email protected] Wed Oct 1 10:20:28 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA31432;
Wed, 1 Oct 1997 10:18:08 -0500 (CDT)
Received: from gatekeeper.ph.ucla.edu (
[email protected] [128.97.116.86])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA04638
for <
[email protected]>; Wed, 1 Oct 1997 10:11:07 -0500 (CDT)
Received: from emerald (emerald.ph.ucla.edu [128.97.25.5]) by gatekeeper.ph.ucla.edu (8.6.12/8.6.9) with SMTP id IAA05352; Wed, 1 Oct 1997 08:10:55 -0700
Message-Id: <
[email protected]>
Date: Wed, 01 Oct 1997 08:14:52 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Brian Pape <
[email protected]>
To: Derek Leung <
[email protected]>
Cc:
[email protected]
Subject: Re: Virtual user on WU-FTPD?
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: Windows Eudora Pro Version 3.0 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> Perhaps, U might be not clear what I mean. Let me tell you the situation
>about this. I have a virtual domain bar.com on my server. bar.com is a web
>hosting company which sell their web space under their v-server. They want
>to let their user ftp to their v-server and upload web page. For example, I
>have already got a user called Joe in my /etc/passwd, so bar.com can not
>create another user called Joe to ftp into their v-server. However, the user
>Joe in bar.com will only have ftp access but not telnet access. Therefore,
>it will be nice that wu-ftpd that can read ~bar.com/etc/passwd. If I can
>specify the location of passwd file on a per-domain basis, bar.com can create
>a user Joe for ftp access only while I have a user Joe in /etc/passwd for
>both telnet and ftp access. In other words, the administrator of a virtual
>domain can create as many virtual user he need while not worrying about
>duplicate username in the main /etc/passwd file. ~bar.com/etc/passwd is only
>for ftp access only, no telnet will be allowed. Do you understand what I am
>saying now?
Then my previous answer is what you need:
------
If you just want access for ftp, then put all users under
virtual host bar.com into /home/bar.com/ , so joe's home dir is
/home/bar.com/joe, then put him in a guestgroup with chroot(/home/bar.com).
Then if you have virtual host foo.com, they'd all be under /home/foo.com,
etc..
-----------
Brian Pape
Computer Resource Services
University California Los Angeles
[email protected]
From
[email protected] Wed Oct 1 10:59:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA12328;
Wed, 1 Oct 1997 10:54:44 -0500 (CDT)
Received: from ns2.tiba.net (
[email protected] [168.75.225.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA13569
for <
[email protected]>; Wed, 1 Oct 1997 10:51:00 -0500 (CDT)
Received: from localhost (chuque@localhost)
by ns2.tiba.net (8.8.5/8.8.5/TIBA-0301-2006) with SMTP id KAA00213
for <
[email protected]>; Wed, 1 Oct 1997 10:51:29 -0500
Message-Id: <
[email protected]>
Date: Wed, 1 Oct 1997 10:51:28 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Chuque Berry <
[email protected]>
To:
[email protected]
Subject: /bin/ls not displaying
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I followed the guest how-to to the T and got everything working great,
execpt for /bin/ls seems to launch and work with out error, jsut that
nothing displays client side, any sugestions would be great.
running AIX 4.1.3
thanks
Charles (chuque) Berry
From
[email protected] Wed Oct 1 13:28:54 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA30915;
Wed, 1 Oct 1997 13:24:52 -0500 (CDT)
Received: from gateway1.isite.net (gateway1.isite.net [198.207.204.66])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA16396
for <
[email protected]>; Wed, 1 Oct 1997 13:20:35 -0500 (CDT)
Received: from proxy1.noc.isite.net (proxy1.noc.isite.net [172.16.1.11] (may be forged)) by gateway1.isite.net (8.8.6/8.8) with ESMTP id SAA11195; Wed, 1 Oct 1997 18:23:35 GMT
Received: from netservice.ca.navigist.com (netservice.ca.navigist.com [172.16.8.5]) by proxy1.noc.isite.net (8.8.6/8.8) with ESMTP id LAA03347; Wed, 1 Oct 1997 11:25:09 -0700 (PDT)
Received: (from jrhett@localhost) by netservice.ca.navigist.com (8.8.7/8.8) id LAA16700; Wed, 1 Oct 1997 11:26:24 -0700 (PDT)
Message-Id: <
[email protected]>
Date: Wed, 1 Oct 1997 11:26:24 -0700 (PDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Joe Rhett <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: List Noise Level
In-Reply-To: <
[email protected]> from "
[email protected]" at "Sep 26, 97 11:56:09 pm"
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4ME+ PL32 (25)]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> And nuking the first mail someone sends would probably also be useful, but
> that's not an option most of us will like I guess :)
Actually, that has been an EXTREMELY effective effort on several
different lists. It cut the FAQs by 3/4 immediately.
Yes, it's annoying, but people get over it. And those of us who read the
list seriously won't have this problem.
--
Joe Rhett Systems Engineer
[email protected] Navigist
PGP keys and contact information:
http://www.navigist.com/Staff/JRhett
From
[email protected] Wed Oct 1 13:33:11 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA32626;
Wed, 1 Oct 1997 13:31:09 -0500 (CDT)
Received: from sgi.sgi.com (SGI.COM [192.48.153.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA26077
for <
[email protected]>; Wed, 1 Oct 1997 13:28:27 -0500 (CDT)
Received: from eagle.clubfed.sgi.com ([169.238.2.15]) by sgi.sgi.com (950413.SGI.8.6.12/970507) via ESMTP id LAA25823
for <@external-mail-relay.sgi.com:
[email protected]>; Wed, 1 Oct 1997 11:28:18 -0700
env-from (
[email protected])
Received: from sgi.com by eagle.clubfed.sgi.com via ESMTP (950413.SGI.8.6.12/930416.SGI)
for <
[email protected]> id OAA00264; Wed, 1 Oct 1997 14:27:01 -0400
Message-Id: <
[email protected]>
Date: Wed, 01 Oct 1997 14:27:01 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: "Richard Norwood Jr." <
[email protected]>
To:
[email protected]
Subject: wu-ftpd-2.4 changes for Irix 5.X and 6.X
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="------------5B164E9D09B09CE65D1A80F7"
X-Sender:
[email protected]
X-Mailer: Mozilla 4.02 [en] (X11; I; IRIX 6.3 IP32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
This is a multi-part message in MIME format.
--------------5B164E9D09B09CE65D1A80F7
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
FYI
I have attached the files I modified for the install to complete
on SGI Irix 5.X and 6.X systems. Here is a brief overview of the
changes I made. Note the changes were not that major:
1. The Makefile in the root directory failed do to incompatable install
parameters. I fixed these so the ./build install would complete.
2. Makefile.sgi:
- The varible LIBC variable is not needed.
- The support library is not needed for ftpcount and ftpshut
3. config.sgi:
- Need to define NCARGS. This is a kernel parameter and it's value
can be fetched using the following command 'systune -i | grep -i
ncargs'
- The function realpath is defined in <stdlib.h> and <sys/param.h>, so
to make sure WU's realpath function was used I created a define to
to rename the function.
#define realpath wu_realpath
Other than the above problems everything is working great.
Thanks,
Rick Norwood
--
----------------------------------------------------------------------
|| Richard Norwood (SGI) | "We have not inherited the Earth ||
|| Technology Services | from our ancestors." ||
|| | ||
|| Phone: (301)-572-3296 | "We have only borrowed it from ||
|| Email:
[email protected] | our children." ||
|| Beeper: 1-800-792-7933 | - Ancient Proverb ||
|| Alpha Pager: | ||
||
[email protected] | ||
----------------------------------------------------------------------
--------------5B164E9D09B09CE65D1A80F7
Content-Type: text/plain; charset=us-ascii; name="Makefile"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline; filename="Makefile"
BINDIR= /usr/local/bin
ETCDIR= /usr/local/etc
MANDIR= /usr/local/man
MANEXT= 8
OWNER= root
GROUP= sys
SHELL= /bin/csh
all:
@ echo 'Use the "build" command (shell script) to make ftpd.'
@ echo 'You can say "build help" for details on how it works.'
install: bin/ftpd bin/ftpcount bin/ftpshut
- mv -f ${ETCDIR}/ftpd ${ETCDIR}/ftpd-old
@echo "Installing executables"
cd bin; install -F ${ETCDIR} -u ${OWNER} -g ${GROUP} -m 755 ftpd
cd bin; install -F ${BINDIR} -u ${OWNER} -g ${GROUP} -m 755 ftpshut ftpcount ftpwho
@echo "Installing manpages"
cd doc; install -F ${MANDIR}/man8 -u ${OWNER} -g ${GROUP} -m 444 ftpd.8 ftpshut.8
cd doc; install -F ${MANDIR}/man1 -u ${OWNER} -g ${GROUP} -m 444 ftpcount.1 ftpwho.1
cd doc; install -F ${MANDIR}/man5 -u ${OWNER} -g ${GROUP} -m 444 ftpaccess.5 ftphosts.5 ftpconversions.5 xferlog.5
--------------5B164E9D09B09CE65D1A80F7
Content-Type: image/x-xbitmap; name="config.sgi"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline; filename="config.sgi"
#define HAVE_SYMLINK
#undef F_SETOWN
#undef IP_TOS
#define HAVE_DIRENT
#define HAVE_D_NAMLEN
#undef HAVE_FLOCK
#define HAVE_FTW
#define HAVE_GETCWD
#define HAVE_GETDTABLESIZE
#undef HAVE_PSTAT
#undef HAVE_ST_BLKSIZE
#undef HAVE_SYSINFO
#undef HAVE_UT_UT_HOST
#define HAVE_VPRINTF
#define OVERWRITE
#undef REGEX
#define SETPROCTITLE
#undef SHADOW_PASSWORD
#define SVR4
#define UPLOAD
#define USG
#define vfork fork
#include <malloc.h>
#include <stdlib.h>
#include <unistd.h>
#ifndef FACILITY
#define FACILITY LOG_DAEMON
#endif
typedef void SIGNAL_TYPE;
/*
* The definition for NCARGS can be obtained by performing
* the following command:
*
* systune | grep -i ncargs
*
* Richard H. Norwood Jr.
* September 30, 1997
*/
#ifndef NCARGS
#define NCARGS 0x5000
#endif
/*
* The define below allows for the use of WU's realpath function,
* since there is already one defined in irix's compiler libraries.
*/
#ifndef realpath
#define realpath wu_realpath
#endif
#include "../config.h"
--------------5B164E9D09B09CE65D1A80F7
Content-Type: image/x-sgi-rgba; name="Makefile.sgi"
Content-Transfer-Encoding: base64
Content-Disposition: inline; filename="Makefile.sgi"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--------------5B164E9D09B09CE65D1A80F7--
From
[email protected] Wed Oct 1 13:54:36 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA01509;
Wed, 1 Oct 1997 13:50:26 -0500 (CDT)
Received: from sgi.sgi.com (SGI.COM [192.48.153.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA01146
for <
[email protected]>; Wed, 1 Oct 1997 13:44:24 -0500 (CDT)
Received: from eagle.clubfed.sgi.com ([169.238.2.15]) by sgi.sgi.com (950413.SGI.8.6.12/970507) via ESMTP id LAA00039
for <@external-mail-relay.sgi.com:
[email protected]>; Wed, 1 Oct 1997 11:44:15 -0700
env-from (
[email protected])
Received: from sgi.com by eagle.clubfed.sgi.com via ESMTP (950413.SGI.8.6.12/930416.SGI)
for <
[email protected]> id OAA01197; Wed, 1 Oct 1997 14:42:58 -0400
Message-Id: <
[email protected]>
Date: Wed, 01 Oct 1997 14:42:58 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: "Richard Norwood Jr." <
[email protected]>
To:
[email protected]
Subject: Additional Changes for Irix 5.X and 6.X
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 4.02 [en] (X11; I; IRIX 6.3 IP32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
It seems that I forgot a change to config.sgi that I had to make:
va_start is defined in various system include files. So to make
sure the correct definition was being used I needed to use
<sys/syslog.h> instead of <syslog.h>. Another define was added to
config.sgi:
#ifndef SYSSYSLOG
#define SYSSYSLOG
#endif
Thanks,
Rick
--
----------------------------------------------------------------------
|| Richard Norwood (SGI) | "We have not inherited the Earth ||
|| Technology Services | from our ancestors." ||
|| | ||
|| Phone: (301)-572-3296 | "We have only borrowed it from ||
|| Email:
[email protected] | our children." ||
|| Beeper: 1-800-792-7933 | - Ancient Proverb ||
|| Alpha Pager: | ||
||
[email protected] | ||
----------------------------------------------------------------------
From
[email protected] Wed Oct 1 14:00:08 1997
Received: from relay1.UU.NET by relay1.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdjkc02344; Wed, 1 Oct 1997 12:42:31 -0400 (EDT)
Received: from wugate.wustl.edu by relay1.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdjkc02308; Wed, 1 Oct 1997 12:42:24 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA15797;
Wed, 1 Oct 1997 11:38:26 -0500 (CDT)
Received: from mailhost.xciv.org (
[email protected] [193.128.6.138])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA12911
for <
[email protected]>; Wed, 1 Oct 1997 11:36:06 -0500 (CDT)
Received: from vantage.xciv.org [193.128.6.138] (paul)
by mailhost.xciv.org with esmtp (Exim 1.70 #1)
id 0xGRkp-0001dY-00; Wed, 1 Oct 1997 17:36:03 +0100
Message-Id: <
[email protected]>
Date: Wed, 01 Oct 1997 17:36:03 +0100
Reply-To:
[email protected]
Sender:
[email protected]
From: Paul Civati <
[email protected]>
To:
[email protected]
Subject: Re: gets nice and fast, puts take way too long
In-Reply-To: Your message of "Mon, 29 Sep 1997 14:35:10 PDT."
<
[email protected]>
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Jim Davis <
[email protected]> wrote:
> > Installed V2.4 on a sparc10 running Slowlaris 2.5.
>
> Have you installed the latest recommended patches for 2.5?
>
> Sun cranked out a lot of tcp/ip fixes for 2.5, and some of them could make
> a big difference in performance.
Especially problems with retransmissions over slow links, ie. dialup
connections. Get the recommended patch bundle.
-Paul-
From
[email protected] Wed Oct 1 14:00:12 1997
Received: from relay4.UU.NET by relay4.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdjkd06043; Wed, 1 Oct 1997 12:47:33 -0400 (EDT)
Received: from wugate.wustl.edu by relay4.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdjkd06032; Wed, 1 Oct 1997 12:47:31 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA18856;
Wed, 1 Oct 1997 11:44:33 -0500 (CDT)
Received: from mailhost.xciv.org (
[email protected] [193.128.6.138])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA06625
for <
[email protected]>; Wed, 1 Oct 1997 11:38:34 -0500 (CDT)
Received: from vantage.xciv.org [193.128.6.138] (paul)
by mailhost.xciv.org with esmtp (Exim 1.70 #1)
id 0xGRnE-0001eE-00; Wed, 1 Oct 1997 17:38:32 +0100
Message-Id: <
[email protected]>
Date: Wed, 01 Oct 1997 17:38:31 +0100
Reply-To:
[email protected]
Sender:
[email protected]
From: Paul Civati <
[email protected]>
To:
[email protected]
Subject: Re: ftp2mail gateway
In-Reply-To: Your message of "Tue, 30 Sep 1997 11:30:33 +0700."
<
[email protected]>
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Eugeny Kuzakov <
[email protected]> wrote:
> Can anybody advice good ftp2mail gateway ?
Actual gateways or s/w to run a gateway?
Try <URL:
ftp://sunsite.doc.ic.ac.uk/packages/ftpmail/>.
-Paul-
From
[email protected] Wed Oct 1 14:00:19 1997
Received: from relay5.UU.NET by relay5.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdjkb19876; Wed, 1 Oct 1997 12:29:50 -0400 (EDT)
Received: from wugate.wustl.edu by relay5.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdjkb19845; Wed, 1 Oct 1997 12:29:42 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA14201;
Wed, 1 Oct 1997 11:26:28 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA15672
for <
[email protected]>; Wed, 1 Oct 1997 11:20:30 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id LAA07986;
Wed, 1 Oct 1997 11:20:24 -0500
Message-Id: <
[email protected]>
Date: Wed, 1 Oct 1997 11:20:24 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Chuque Berry <
[email protected]>
Cc:
[email protected]
Subject: Re: /bin/ls not displaying
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
ls is not working w/o error; you just aren't seeing it. ls is missing a
device, library, or something it needs.
-- Michael
On Wed, 1 Oct 1997, Chuque Berry wrote:
> I followed the guest how-to to the T and got everything working great,
> execpt for /bin/ls seems to launch and work with out error, jsut that
> nothing displays client side, any sugestions would be great.
> running AIX 4.1.3
From
[email protected] Wed Oct 1 14:00:16 1997
Received: from relay1.UU.NET by relay1.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdjke11184; Wed, 1 Oct 1997 13:06:35 -0400 (EDT)
Received: from wugate.wustl.edu by relay1.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdjke11172; Wed, 1 Oct 1997 13:06:34 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA20331;
Wed, 1 Oct 1997 12:03:26 -0500 (CDT)
Received: from kodakr.kodak.com (kodakr.kodak.com [150.220.251.69])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA20194
for <
[email protected]>; Wed, 1 Oct 1997 11:57:25 -0500 (CDT)
Received: from doolittle.ycc.Kodak.COM by kodakr.kodak.com with SMTP id AA22924
(5.67b/IDA-1.5 for <
[email protected]>); Wed, 1 Oct 1997 12:54:52 -0400
Received: from crestone.ycc.kodak.com (crestone.ycc.Kodak.COM [129.126.74.4]) by doolittle.ycc.Kodak.COM (8.7.3/8.7.3) with SMTP id MAA09832; Wed, 1 Oct 1997 12:53:35 -0400 (EDT)
Received: from lorax.PCD1 (lorax.ycc.Kodak.COM) by crestone.ycc.kodak.com with SMTP id AA20966
(5.65c/IDA-1.5); Wed, 1 Oct 1997 12:53:35 -0400
Received: by lorax.PCD1 (SMI-8.6/SMI-SVR4)
id MAA00711; Wed, 1 Oct 1997 12:53:33 -0400
Message-Id: <
[email protected]>
Date: Wed, 1 Oct 1997 12:53:33 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Larry Strollo)
To:
[email protected]
Cc:
[email protected]
Subject: Re: gets nice and fast, puts take way too long
In-Reply-To: <
[email protected]> (message from Paul Civati on Wed, 01 Oct 1997 17:36:03 +0100)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
LMS> When I do "get"s, things hum along quite nicely. But when I do a
LMS> "put", it takes much more time to complete than it should.
Jim Davis>
Jim Davis> Have you installed the latest recommended patches for 2.5?
Jim Davis>
Jim Davis> Sun cranked out a lot of tcp/ip fixes for 2.5, and some of them
Jim Davis> could make a big difference in performance.
Paul Civati> Especially problems with retransmissions over slow links,
Paul Civati> ie. dialup connections. Get the recommended patch bundle.
I installed the recommended patch bundle. I also built and installed
wu-ftpd-2.4.2-beta-15, and it still happens.
xferlog shows that small files (less than 2k) either take 1 second or 41
seconds of elapsed time, and I've been unable to find a method to the
madness. Interestingly enough, a 150k file takes one second consistently.
So, I'm still stumped and still looking for ideas).
LMS
----------------------------------------------------------------------
Larry Strollo Eastman Kodak Company
[email protected] Rochester, NY 14653-5400
----------------------------------------------------------------------
From
[email protected] Wed Oct 1 14:00:45 1997
Received: from relay7.UU.NET by relay7.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdjkf05097; Wed, 1 Oct 1997 13:18:36 -0400 (EDT)
Received: from wugate.wustl.edu by relay7.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdjkf05091; Wed, 1 Oct 1997 13:18:34 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA20558;
Wed, 1 Oct 1997 12:15:55 -0500 (CDT)
Received: from mailhost.xciv.org (
[email protected] [193.128.6.138])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA21466
for <
[email protected]>; Wed, 1 Oct 1997 12:12:30 -0500 (CDT)
Received: from vantage.xciv.org [193.128.6.138] (paul)
by mailhost.xciv.org with esmtp (Exim 1.70 #1)
id 0xGSK4-0001ke-00; Wed, 1 Oct 1997 18:12:28 +0100
Message-Id: <
[email protected]>
Date: Wed, 01 Oct 1997 18:12:27 +0100
Reply-To:
[email protected]
Sender:
[email protected]
From: Paul Civati <
[email protected]>
To:
[email protected]
Subject: Re: gets nice and fast, puts take way too long
In-Reply-To: Your message of "Wed, 01 Oct 1997 12:53:33 EDT."
<
[email protected]>
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
[email protected] (Larry Strollo) wrote:
> Jim Davis> Have you installed the latest recommended patches for 2.5?
> Jim Davis> Sun cranked out a lot of tcp/ip fixes for 2.5, and some of the
> Jim Davis> could make a big difference in performance.
>
> Paul Civati> Especially problems with retransmissions over slow links,
> Paul Civati> ie. dialup connections. Get the recommended patch bundle.
>
> I installed the recommended patch bundle. I also built and installed
> wu-ftpd-2.4.2-beta-15, and it still happens.
Time to get out tcpdump and see what's going on.
> xferlog shows that small files (less than 2k) either take 1 second or 41
> seconds of elapsed time, and I've been unable to find a method to the
> madness. Interestingly enough, a 150k file takes one second consistently.
The only time I've experienced such oddness was when a customer was
trying to upload files and they would stall completely after a
certain point. Turned out in the end that the ISP the customer was
connecting through had their Ascend terminal servers misconfigured
(with the wrong MTU, IIRC).
-Paul-
From
[email protected] Wed Oct 1 14:00:50 1997
Received: from relay5.UU.NET by relay5.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdjkg14222; Wed, 1 Oct 1997 13:39:53 -0400 (EDT)
Received: from wugate.wustl.edu by relay5.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdjkg14202; Wed, 1 Oct 1997 13:39:50 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA15397;
Wed, 1 Oct 1997 12:36:22 -0500 (CDT)
Received: from svha0001.clipper.ssb.com (svha0001.clipper.ssb.com [192.250.113.12])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA16453
for <
[email protected]>; Wed, 1 Oct 1997 12:30:23 -0500 (CDT)
Received: from ssga.statestreet.com (ga010082.ssga.ssb.com [147.141.10.82])
by svha0001.clipper.ssb.com (8.8.5/8.8.5) with SMTP id NAA06402
for <
[email protected]>; Wed, 1 Oct 1997 13:30:09 -0400 (EDT)
Received: from am693.ssga.statestreet.com by ssga.statestreet.com (SMI-8.6/SMI-SVR4)
id NAA13929; Wed, 1 Oct 1997 13:32:56 -0400
Received: by am693.ssga.statestreet.com (4.1/SMI-4.1)
id AA27119; Wed, 1 Oct 97 17:37:08 EDT
Received: by am693.ssga.statestreet.com (4.1/SMI-4.1)
id AA27111; Wed, 1 Oct 97 17:37:07 EDT
Received: from SSGA with "Lotus Notes Mail Gateway for SMTP" id
D0E1C190C9DD0C9E85256523005FDDD9; Wed, 1 Oct 97 17:37:04
Message-Id: <
[email protected]>
Date: 1 Oct 97 13:33:53 EDT
Reply-To:
[email protected]
Sender:
[email protected]
From: Liang Chen/BOSTON/SSGA <
[email protected]>
To: Larry Strollo <
[email protected]>
Cc: paul <
[email protected]>, wu-ftpd <
[email protected]>
Subject: Re: gets nice and fast, puts take way too long
Mime-Version: 1.0
Content-Type: Text/Plain
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
The problem may be not only from the speed of tcp/ip but also the disk i/o. Why
don't try the S.E. Tool to find which part is wrong? See
http://www.sun.com/960301/columns/adrian/column7.html
To: paul @ xciv.org @ smtp1
cc: wu-ftpd @ wugate.wustl.edu @ smtp1 (bcc: Liang Chen/BOSTON/SSGA)
From: lms @ kodak.com (Larry Strollo) @ smtp1
Date: 10/01/97 12:53:33 PM
Subject: Re: gets nice and fast, puts take way too long
LMS> When I do "get"s, things hum along quite nicely. But when I do a
LMS> "put", it takes much more time to complete than it should.
Jim Davis>
Jim Davis> Have you installed the latest recommended patches for 2.5?
Jim Davis>
Jim Davis> Sun cranked out a lot of tcp/ip fixes for 2.5, and some of them
Jim Davis> could make a big difference in performance.
Paul Civati> Especially problems with retransmissions over slow links,
Paul Civati> ie. dialup connections. Get the recommended patch bundle.
I installed the recommended patch bundle. I also built and installed
wu-ftpd-2.4.2-beta-15, and it still happens.
xferlog shows that small files (less than 2k) either take 1 second or 41
seconds of elapsed time, and I've been unable to find a method to the
madness. Interestingly enough, a 150k file takes one second consistently.
So, I'm still stumped and still looking for ideas).
LMS
----------------------------------------------------------------------
Larry Strollo Eastman Kodak Company
[email protected] Rochester, NY 14653-5400
----------------------------------------------------------------------
From
[email protected] Wed Oct 1 15:02:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA08619;
Wed, 1 Oct 1997 14:59:49 -0500 (CDT)
Received: from ns2.tiba.net (
[email protected] [168.75.225.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA06350
for <
[email protected]>; Wed, 1 Oct 1997 14:52:55 -0500 (CDT)
Received: from localhost (chuque@localhost)
by ns2.tiba.net (8.8.5/8.8.5/TIBA-0301-2006) with SMTP id OAA02168
for <
[email protected]>; Wed, 1 Oct 1997 14:53:28 -0500
Message-Id: <
[email protected]>
Date: Wed, 1 Oct 1997 14:53:28 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Chuque Berry <
[email protected]>
To:
[email protected]
Subject: Re: /bin/ls not displaying
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
well I got it. thank you Michael.
fyi on AIX the /home/mort/libdir needs
libc.a and libcurses.a
thanks to all that helped
Chuque
On Wed, 1 Oct 1997, Michael Brennen wrote:
>
> ls is not working w/o error; you just aren't seeing it. ls is missing a
> device, library, or something it needs.
>
> -- Michael
>
> On Wed, 1 Oct 1997, Chuque Berry wrote:
>
> > I followed the guest how-to to the T and got everything working great,
> > execpt for /bin/ls seems to launch and work with out error, jsut that
> > nothing displays client side, any sugestions would be great.
> > running AIX 4.1.3
>
From
[email protected] Wed Oct 1 15:58:01 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA20540;
Wed, 1 Oct 1997 15:55:31 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA17779
for <
[email protected]>; Wed, 1 Oct 1997 15:49:37 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id PAA14534;
Wed, 1 Oct 1997 15:49:37 -0500
Message-Id: <
[email protected]>
Date: Wed, 1 Oct 1997 15:49:37 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Chuque Berry <
[email protected]>
Cc:
[email protected]
Subject: Re: /bin/ls not displaying
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Wierd. On other Unix boxes that I've been on, .a is a library that is
linked in at compile time, and .so is the dynamic link extension. Is .a
dynamic on AIX?
-- Michael
On Wed, 1 Oct 1997, Chuque Berry wrote:
> fyi on AIX the /home/mort/libdir needs
> libc.a and libcurses.a
From
[email protected] Wed Oct 1 16:11:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA17288;
Wed, 1 Oct 1997 16:08:32 -0500 (CDT)
Received: from hwl.sduteam.com (hwl.sduteam.com [207.212.140.236])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA21803
for <
[email protected]>; Wed, 1 Oct 1997 16:06:21 -0500 (CDT)
Received: from sduteam.com ([207.212.140.142])
by hwl.sduteam.com (8.8.5/8.8.5) with ESMTP id OAA15615
for <
[email protected]>; Wed, 1 Oct 1997 14:15:32 -0700 (PDT)
Message-Id: <
[email protected]>
Date: Wed, 01 Oct 1997 14:00:13 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Derek Leung <
[email protected]>
To:
[email protected]
Subject: Re: Virtual user on WU-FTPD?
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.03 [en] (Win95; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> Then my previous answer is what you need:
> ------
> If you just want access for ftp, then put all users under
> virtual host bar.com into /home/bar.com/ , so joe's home dir is
> /home/bar.com/joe, then put him in a guestgroup with
chroot(/home/bar.com).
>
> Then if you have virtual host foo.com, they'd all be under /home/foo.com,
> etc..
>
I understand, I create a user in /etc/passwd like this:
joe:*:1045:1002::0:0:test:/usr/home/foo.com/./joe/:/bin/ftponly
Ok, now, what about for the domain bar.com then? I want to also create
another
user Joe for bar.com in home dir /usr/home/bar.com for ftp access only
I can't put another joe entry in /etc/passwd , right?
joe:*:1045:1002::0:0:foo.com user joe:/usr/home/foo.com/./joe/:/bin/ftponly
joe:*:1046:1002::0:0:bar.com user joe:/usr/home/bar.com/./joe/:/bin/ftponly
This is what I want to do. However, /etc/passwd do not allow dublicate
username.
How can I create two users joe in /etc/passwd while they are refering to two
different people and two different root dir?
That's why I am saying I do need a separate passwd file for different domain
for
ftp access.
Perhaps, I did not explain it clear enough..... =P
rgd,
Derek
From
[email protected] Wed Oct 1 16:22:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA23573;
Wed, 1 Oct 1997 16:20:33 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA23725
for <
[email protected]>; Wed, 1 Oct 1997 16:18:12 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Wed, 1 Oct 1997 16:18:22 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: Virtual user on WU-FTPD?
In-Reply-To: <
[email protected]> from "Derek Leung" at Oct 1, 97 02:00:13 pm
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
What really is needed is a hacked set of pw routines so that virtual
users get their passwd file information from a different place than
the system users. There are some real nasty problems just waiting
to bite us here. To do it right will take enhancements to the code
and is not possible with the existing software.
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected],
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
From
[email protected] Wed Oct 1 16:54:24 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA27641;
Wed, 1 Oct 1997 16:52:07 -0500 (CDT)
Received: from mh.rdc.noaa.gov (mh.rdc.noaa.gov [140.90.27.61])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA27328
for <
[email protected]>; Wed, 1 Oct 1997 16:48:10 -0500 (CDT)
Message-Id:
<05E7834328E6800E*/c=US/admd=ATTMAIL/prmd=GOV+NOAA/o=CCNWS/s=Matusiewicz/g=Joseph/@MHS>
Date: 01 Oct 1997 13:54:48 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Joseph Matusiewicz <
[email protected]>
To:
[email protected] (Return requested)
Subject: /bin/ls not displaying
Content-Identifier: 05E7834328E6800E
Content-Return: Allowed
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Under AIX, each guest user needs libc.a in a ~/lib directory to get
external ls commands to work.
Hope this helps....
joe matusiewicz
national weather service
silver spring, md 20910
301.713.0864 ext 174
[email protected]
______________________________ Reply Separator
_________________________________ Subject: /bin/ls not displaying
Author:
[email protected] at EXTERNAL Date: 10/1/97 12:39 PM
I followed the guest how-to to the T and got everything working great,
execpt for /bin/ls seems to launch and work with out error, jsut that
nothing displays client side, any sugestions would be great.
running AIX 4.1.3
thanks
Charles (chuque) Berry
From
[email protected] Wed Oct 1 18:11:09 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA06044;
Wed, 1 Oct 1997 18:07:39 -0500 (CDT)
Received: from news.IAEhv.nl (
[email protected] [194.151.64.4])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA24504
for <
[email protected]>; Wed, 1 Oct 1997 18:01:56 -0500 (CDT)
Received: from LOCAL (uucp@localhost)
by news.IAEhv.nl (8.6.13/1.63) with IAEhv.nl; pid 20052
on Wed, 1 Oct 1997 23:01:54 GMT; id XAA20052
efrom:
[email protected]; eto:
[email protected]
Received: (from news@localhost)
by Garfield.IAEhv.nl (8.8.6/8.8.5) id AAA15616;
Thu, 2 Oct 1997 00:52:18 +0200
Message-Id: <
[email protected]>
Date: 1 Oct 1997 22:52:17 GMT
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected]
Subject: Re: Virtual user on WU-FTPD?
References: <
[email protected]>
X-no-archive: yes
X-bofh-archive: yes
X-Newsreader: TIN [UNIX 1.3 unoff BETA 970324; i586 Linux 2.0.28]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Pink elephants with an attitude inspired Kent Landfield <
[email protected]> to tell garfield.mail.wu-ftpd:
: What really is needed is a hacked set of pw routines so that virtual
: users get their passwd file information from a different place than
: the system users. There are some real nasty problems just waiting
: to bite us here. To do it right will take enhancements to the code
: and is not possible with the existing software.
Could PAM (Pluggable Authentication Module) be of help here? Defining a
different way to authenticate users seems to be what that is about..
--
Perry Rovers (
[email protected])
From
[email protected] Wed Oct 1 19:13:33 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA12983;
Wed, 1 Oct 1997 19:11:02 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA05242
for <
[email protected]>; Wed, 1 Oct 1997 19:09:08 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id TAA18677
for <
[email protected]>; Wed, 1 Oct 1997 19:09:17 -0500
Message-Id: <
[email protected]>
Date: Wed, 1 Oct 1997 19:09:17 -0500 (CDT)
Reply-To: Michael Brennen <
[email protected]>
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To:
[email protected]
Subject: Re: /bin/ls not displaying
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Thanks to Chuque and Joseph Matusiewicz -- I've added this requirement to
the guest howto in the OS specifics section.
-- Michael
On Wed, 1 Oct 1997, Chuque Berry wrote:
> fyi on AIX the /home/mort/libdir needs
> libc.a and libcurses.a
From
[email protected] Thu Oct 2 03:37:13 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA22009;
Thu, 2 Oct 1997 03:36:25 -0500 (CDT)
Received: from nnx.neuronnexion.fr (nnx.neuronnexion.fr [195.10.4.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id DAA26140
for <
[email protected]>; Thu, 2 Oct 1997 03:33:52 -0500 (CDT)
Received: from toxic.nnx.fr (fgw.neuronnexion.fr [195.10.4.6])
by nnx.neuronnexion.fr (8.8.6/8.8.6) with SMTP id KAA18184
for <
[email protected]>; Thu, 2 Oct 1997 10:34:03 +0200
Message-Id: <
[email protected]>
Date: Thu, 02 Oct 1997 11:32:56 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Romain Guesdon <
[email protected]>
To:
[email protected]
Subject: acl and virtual ftp
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.3 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Can the ftpd have different acl for a virtual ftp server ?
--
Romain Guesdon
Neuronnexion [
http://www.neuronnexion.fr]
From
[email protected] Thu Oct 2 06:07:49 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA11045;
Thu, 2 Oct 1997 06:07:07 -0500 (CDT)
Received: from jupiter.leirianet.pt ([195.23.69.129])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id GAA11561
for <
[email protected]>; Thu, 2 Oct 1997 06:00:34 -0500 (CDT)
Received: from vortex.pluriproj.pt ([195.23.69.137]) by jupiter.leirianet.pt (8.7.6/8.7.3) with SMTP id LAA22077 for <
[email protected]>; Thu, 2 Oct 1997 11:58:40 +0100
Message-Id: <
[email protected]>
Date: Thu, 02 Oct 1997 10:59:22 GMT
Reply-To: Jose Monteiro <
[email protected]>
Sender:
[email protected]
From:
[email protected] (Jose Monteiro)
To:
[email protected]
Subject: disabling anonymous ftp to virtual servers
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 8bit
X-Mailer: Forte Agent 1.5/32.451
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id GAA11426
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
Im using wu-ftpd's virtual ftp support and i have the following
problem:
I defined a guest user to update webpages under a domain
www.something.com.
When i ftp to www.something.com using the guest user's login and pword
everything works as it should, the problem is if i login as anonymous.
The system let me in and chroot's me to / in www.something.com!
If i ftp to the machine (physical) using an anonymous login, I go to
the anonymous ftp area as it should be.
How can I set the system so that any anonymous login to a virtual ftp
goes to the machine's anonymous ftp area and the guest login goes to
the proper chrooted directory of that virtual site?
Thanks in advance,
Jose
From
[email protected] Thu Oct 2 11:18:24 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA29364;
Thu, 2 Oct 1997 11:16:56 -0500 (CDT)
Received: from ns2.tiba.net (
[email protected] [168.75.225.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA11972
for <
[email protected]>; Thu, 2 Oct 1997 11:14:21 -0500 (CDT)
Received: from localhost (chuque@localhost)
by ns2.tiba.net (8.8.5/8.8.5/TIBA-0301-2006) with SMTP id LAA00595
for <
[email protected]>; Thu, 2 Oct 1997 11:14:54 -0500
Message-Id: <
[email protected]>
Date: Thu, 2 Oct 1997 11:14:54 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Chuque Berry <
[email protected]>
To:
[email protected]
Subject: error 421
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I get an error 421 service not avaiable, remote server has closed
connection
when I del a file, this only happens with guest users, real users it works
fine.
I recompiled the binaries, and still get the error, see no referance in
the faq.
Any suggestions?
running AIX 4.1.3
thank you
Charles (Chuque) Berry
From
[email protected] Thu Oct 2 11:35:42 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA10511;
Thu, 2 Oct 1997 11:34:53 -0500 (CDT)
Received: from ddibastion2.digidyne.ca ([199.202.151.125])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA07394
for <
[email protected]>; Thu, 2 Oct 1997 11:30:50 -0500 (CDT)
Received: from ddimtl1.mtl.digidyne.ca (ddimtl1.mtl.digidyne.ca [192.168.100.211])
by ddibastion2 with ESMTP (DuhMail/2.0)
id MAA02597; Thu, 2 Oct 1997 12:23:05 -0400
Received: from nissan.mtl.digidyne.ca by mtl.digidyne.ca (SMI-8.6/SMI-SVR4)
id MAA03590; Thu, 2 Oct 1997 12:24:36 -0400
Received: by nissan.mtl.digidyne.ca (SMI-8.6/SMI-SVR4)
id MAA14652; Thu, 2 Oct 1997 12:31:31 -0400
Message-Id: <Pine.SUN.3.91.971002122450.12916L-100000@nissan>
Date: Thu, 2 Oct 1997 12:31:30 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Felix Tran <
[email protected]>
To:
[email protected]
Subject: non-anonymous users and standalone daemon
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: felix@nissan
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
1) Lee McLoughlin wrote some modifications to the code to make the ftpd
daemon run without the need of inetd. It works really well and I'de
like to thank him for his help, I'm wondering tought, is there any
chance that this feature will be officially implemanted in a
soon to come new release of wu-ftpd ?
2) I've tried to add up users and restrict them to the ftp home directory
as the base directory but it's not working and they are able to
go back pass the ftp base directory...
Do I have to add up a feature ? or is it impossible for a non-anonymous
user to have a restricted base directory ?
Here was my entry in the /etc/passwd if it's needeed...
felix:x:100:100:Felix Tran:/data/ftp/./felixhome:/bin/false
Thanks :)
/Felix
From
[email protected] Thu Oct 2 11:47:47 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA14100;
Thu, 2 Oct 1997 11:47:01 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA16389
for <
[email protected]>; Thu, 2 Oct 1997 11:46:05 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id LAA03440;
Thu, 2 Oct 1997 11:44:09 -0500
Message-Id: <
[email protected]>
Date: Thu, 2 Oct 1997 11:44:09 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Felix Tran <
[email protected]>
Cc:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
In-Reply-To: <Pine.SUN.3.91.971002122450.12916L-100000@nissan>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 2 Oct 1997, Felix Tran wrote:
> 2) I've tried to add up users and restrict them to the ftp home directory
> as the base directory but it's not working and they are able to
> go back pass the ftp base directory...
> Do I have to add up a feature ? or is it impossible for a non-anonymous
> user to have a restricted base directory ?
guest howto, FAQ, and mailing list archives will answer this.
-- Michael
This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to
[email protected]
with a subject line: send faq
guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "
[email protected]"
(immediate autoresponder; subject does not matter)
wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
There are additional security references in the above docs.
From
[email protected] Thu Oct 2 12:12:52 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA19488;
Thu, 2 Oct 1997 12:12:15 -0500 (CDT)
Received: from ns2.tiba.net (
[email protected] [168.75.225.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA30718
for <
[email protected]>; Thu, 2 Oct 1997 12:07:09 -0500 (CDT)
Received: from localhost (chuque@localhost)
by ns2.tiba.net (8.8.5/8.8.5/TIBA-0301-2006) with SMTP id MAA01021
for <
[email protected]>; Thu, 2 Oct 1997 12:07:44 -0500
Message-Id: <
[email protected]>
Date: Thu, 2 Oct 1997 12:07:44 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Chuque Berry <
[email protected]>
To:
[email protected]
Subject: Re: error 421
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 2 Oct 1997, Chuque Berry wrote:
> I get an error 421 service not avaiable, remote server has closed
> connection
>
> when I del a file, this only happens with guest users, real users it works
> fine.
>
> I recompiled the binaries, and still get the error, see no referance in
> the faq.
> Any suggestions?
>
> running AIX 4.1.3
>
>
> thank you
> Charles (Chuque) Berry
>
also the file is accually deleted, but the conection is still droped.
From
[email protected] Thu Oct 2 12:32:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA19647;
Thu, 2 Oct 1997 12:32:00 -0500 (CDT)
Received: from gatekeeper.ph.ucla.edu (
[email protected] [128.97.116.86])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA10673
for <
[email protected]>; Thu, 2 Oct 1997 12:25:11 -0500 (CDT)
Received: from emerald (emerald.ph.ucla.edu [128.97.25.5]) by gatekeeper.ph.ucla.edu (8.6.12/8.6.9) with SMTP id KAA07951; Thu, 2 Oct 1997 10:24:59 -0700
Message-Id: <
[email protected]>
Date: Thu, 02 Oct 1997 10:28:51 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Brian Pape <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: Windows Eudora Pro Version 3.0 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
At 12:31 PM 10/2/97 -0400, you wrote:
>
>1) Lee McLoughlin wrote some modifications to the code to make the ftpd
> daemon run without the need of inetd. It works really well and I'de
> like to thank him for his help, I'm wondering tought, is there any
> chance that this feature will be officially implemanted in a
> soon to come new release of wu-ftpd ?
>2) I've tried to add up users and restrict them to the ftp home directory
> as the base directory but it's not working and they are able to
> go back pass the ftp base directory...
> Do I have to add up a feature ? or is it impossible for a non-anonymous
> user to have a restricted base directory ?
> Here was my entry in the /etc/passwd if it's needeed...
>
> felix:x:100:100:Felix Tran:/data/ftp/./felixhome:/bin/false
Are you using guestgroup? see the man page for more information.
Brian Pape
Computer Resource Services
University California Los Angeles
[email protected]
From
[email protected] Thu Oct 2 14:26:25 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA31316;
Thu, 2 Oct 1997 14:06:56 -0500 (CDT)
Received: from jupiter.leirianet.pt ([195.23.69.129])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA31996
for <
[email protected]>; Thu, 2 Oct 1997 14:00:35 -0500 (CDT)
Received: from vortex.pluriproj.pt ([195.23.69.137]) by jupiter.leirianet.pt (8.7.6/8.7.3) with SMTP id TAA01165 for <
[email protected]>; Thu, 2 Oct 1997 19:59:32 +0100
Message-Id: <
[email protected]>
Date: Thu, 02 Oct 1997 18:59:15 GMT
Reply-To: Jose Monteiro <
[email protected]>
Sender:
[email protected]
From:
[email protected] (Jose Monteiro)
To:
[email protected]
Subject: anonymous ftp problem
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: Forte Agent 1.5/32.451
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id OAA10440
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
I've set guest accounts so that the users can upload their pages
directly to the site.
When they login as guests, the can cd to /web (with write permission)
and upload the pages. How can a avoid access to the web directory or
hide it to someone doing anon ftp to the virtual ftp site?
Thanks,
*--------------Jose Monteiro <
[email protected]>--------------*
| Pluriproj - Redes e Sistemas de Comunicacoes Lda. |
| Agente IP em Leiria
http://www.pluriproj.pt |
*.��.���`�.��.���`�.��.���`�.��.���`�.��.���`�.��.���`�.��.�*
| Tel: +351 44 8182063 Fax: +351 44 8182061 |
| Finger me or search key servers for my PGP public key |
*-----------------------------------------------------------*
From
[email protected] Thu Oct 2 14:47:04 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA25957;
Thu, 2 Oct 1997 14:36:28 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA30499
for <
[email protected]>; Thu, 2 Oct 1997 14:35:40 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id OAA07631;
Thu, 2 Oct 1997 14:35:31 -0500
Message-Id: <
[email protected]>
Date: Thu, 2 Oct 1997 14:35:31 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Jose Monteiro <
[email protected]>
Cc:
[email protected]
Subject: Re: anonymous ftp problem
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Sounds like your guest ftp is not working. If they can see the whole Web
tree, guest isn't working. Go over the setup in detail again.
-- Michael
On Thu, 2 Oct 1997, Jose Monteiro wrote:
> I've set guest accounts so that the users can upload their pages
> directly to the site.
>
> When they login as guests, the can cd to /web (with write permission)
> and upload the pages. How can a avoid access to the web directory or
> hide it to someone doing anon ftp to the virtual ftp site?
From
[email protected] Thu Oct 2 17:02:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA12414;
Thu, 2 Oct 1997 16:51:21 -0500 (CDT)
Received: from staff2.texas.net (
[email protected] [207.207.0.39])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA09989
for <
[email protected]>; Thu, 2 Oct 1997 16:44:50 -0500 (CDT)
Received: (from mikedoug@localhost) by staff2.texas.net (8.8.5/8.7.5) id QAA21111; Thu, 2 Oct 1997 16:44:49 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Thu, 2 Oct 1997 16:44:48 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Douglass <
[email protected]>
To:
[email protected]
Cc: Felix Tran <
[email protected]>,
[email protected]
Subject: Re: non-anonymous users and standalone daemon
In-Reply-To: <
[email protected]>; from Michael Brennen on Thu, Oct 02, 1997 at 11:44:09AM -0500
References: <Pine.SUN.3.91.971002122450.12916L-100000@nissan> <
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.74
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, Oct 02, 1997 at 11:44:09AM -0500, Michael Brennen said:
> On Thu, 2 Oct 1997, Felix Tran wrote:
>
> > 2) I've tried to add up users and restrict them to the ftp home directory
> > as the base directory but it's not working and they are able to
> > go back pass the ftp base directory...
> > Do I have to add up a feature ? or is it impossible for a non-anonymous
> > user to have a restricted base directory ?
>
> guest howto, FAQ, and mailing list archives will answer this.
Let me just say this... If they do, I wish, perhaps, you would point
him _and_ myself in the right direction inside these faqs.... I would
love to have this feature myself, but nowhere that I've read does it
explain to me how to do this--perhaps I haven't read the right FAQ and
whatnot since there seem to be quite a few, and all quite lengthy...
--
Michael Douglass
Texas Networking, Inc.
"For all that you see, there is much hidden from your view;
for all that you know, there is truth yet to be learned."
- Me, some years ago.
From
[email protected] Thu Oct 2 17:05:05 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA15958;
Thu, 2 Oct 1997 16:49:05 -0500 (CDT)
Received: from staff2.texas.net (
[email protected] [207.207.0.39])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA09476
for <
[email protected]>; Thu, 2 Oct 1997 16:43:27 -0500 (CDT)
Received: (from mikedoug@localhost) by staff2.texas.net (8.8.5/8.7.5) id QAA21102; Thu, 2 Oct 1997 16:43:17 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Thu, 2 Oct 1997 16:43:16 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Douglass <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
In-Reply-To: <Pine.SUN.3.91.971002122450.12916L-100000@nissan>; from Felix Tran on Thu, Oct 02, 1997 at 12:31:30PM -0400
References: <Pine.SUN.3.91.971002122450.12916L-100000@nissan>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.74
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, Oct 02, 1997 at 12:31:30PM -0400, Felix Tran said:
I did this for one of our web sites. It has been a while since
doing this--I hacked alot of work into the code base to make it
work. I may be redoing my efforts again with an updated version
of wu-ftpd soon. If there is a way of doing this without having
to do a bunch of hacks in the code, I'd love to know!
> 1) Lee McLoughlin wrote some modifications to the code to make the ftpd
> daemon run without the need of inetd. It works really well and I'de
> like to thank him for his help, I'm wondering tought, is there any
> chance that this feature will be officially implemanted in a
> soon to come new release of wu-ftpd ?
> 2) I've tried to add up users and restrict them to the ftp home directory
> as the base directory but it's not working and they are able to
> go back pass the ftp base directory...
> Do I have to add up a feature ? or is it impossible for a non-anonymous
> user to have a restricted base directory ?
> Here was my entry in the /etc/passwd if it's needeed...
>
> felix:x:100:100:Felix Tran:/data/ftp/./felixhome:/bin/false
>
>
> Thanks :)
>
> /Felix
--
Michael Douglass
Texas Networking, Inc.
"For all that you see, there is much hidden from your view;
for all that you know, there is truth yet to be learned."
- Me, some years ago.
From
[email protected] Thu Oct 2 18:09:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA18871;
Thu, 2 Oct 1997 17:57:32 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA17116
for <
[email protected]>; Thu, 2 Oct 1997 17:53:30 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id RAA11968;
Thu, 2 Oct 1997 17:53:35 -0500
Message-Id: <
[email protected]>
Date: Thu, 2 Oct 1997 17:53:35 -0500 (CDT)
Reply-To: Michael Brennen <
[email protected]>
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Michael Douglass <
[email protected]>
Cc:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 2 Oct 1997, Michael Douglass wrote:
> > On Thu, 2 Oct 1997, Felix Tran wrote:
> >
> > > 2) I've tried to add up users and restrict them to the ftp home directory
> > > as the base directory but it's not working and they are able to
> > > go back pass the ftp base directory...
> > > Do I have to add up a feature ? or is it impossible for a non-anonymous
> > > user to have a restricted base directory ?
> >
> > guest howto, FAQ, and mailing list archives will answer this.
>
> Let me just say this... If they do, I wish, perhaps, you would point
> him _and_ myself in the right direction inside these faqs.... I would
> love to have this feature myself, but nowhere that I've read does it
> explain to me how to do this--perhaps I haven't read the right FAQ and
> whatnot since there seem to be quite a few, and all quite lengthy...
DING! Round 2.....
If you can't get it out of reading the material, another explanation won't
do it either. If the steps spelled out for creating a chroot'ed account
don't make sense from what is already documented, write a better document
-- PLEASE!!!
If you don't know what a chroot'ed account is (and I think you do):
man 2 chroot
man 8 chroot
It tells you *exactly* how to do it, and many people over the past 2+
years can attest to that.
Read it. Do it. Test it. If it doesn't work, go to start of line.
If after N iterations of the above it does not work, ask the list. With
few exceptions it will work if you will follow it closely.
I've got a business to run. If you want technical support, call me for a
contract and I'll teach you one on one until we're both blue in the face.
-- Michael
From
[email protected] Thu Oct 2 19:45:58 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA28201;
Thu, 2 Oct 1997 19:31:28 -0500 (CDT)
Received: from staff2.texas.net (
[email protected] [207.207.0.39])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA26047
for <
[email protected]>; Thu, 2 Oct 1997 19:30:14 -0500 (CDT)
Received: (from mikedoug@localhost) by staff2.texas.net (8.8.5/8.7.5) id TAA21624; Thu, 2 Oct 1997 19:30:13 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Thu, 2 Oct 1997 19:30:13 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Douglass <
[email protected]>
To: Michael Brennen <
[email protected]>
Cc:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
In-Reply-To: <
[email protected]>; from Michael Brennen on Thu, Oct 02, 1997 at 05:53:35PM -0500
References: <
[email protected]> <
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.74
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, Oct 02, 1997 at 05:53:35PM -0500, Michael Brennen said:
Then you haven't read the question correctly.. DING, DING!!! Round three...
The question, as I have read it, and from what I would like is just as
this fine person wrote it: "restrict them to their home directories"...
Now, a chrooted environment works nifty if you are doing ANONYMOUS FTP...
But that is not what we want--we want an ftp server that restricts people
to working in their home directory... But we don't want to setup an
etc/ bin/ lib/ for every person on the planet... In otherwords, an ftpd
level restriction __not__ a lets-cheat-and-use-chroot level... For anonymous
ftp, chrooting is perfect...
> It tells you *exactly* how to do it, and many people over the past 2+
> years can attest to that.
I'm not an idiot... I've done anonymous ftp before.. That's not what we
are asking about. Like he said is this a pre-done feature, or do we have
to program it in ourselves???
Simple, understand the question before giving a stock reply that doesn't
answer the question...
--
Michael Douglass
Texas Networking, Inc.
"For all that you see, there is much hidden from your view;
for all that you know, there is truth yet to be learned."
- Me, some years ago.
From
[email protected] Thu Oct 2 23:19:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id XAA12673;
Thu, 2 Oct 1997 23:11:42 -0500 (CDT)
Received: from optima.cs.arizona.edu (optima.CS.Arizona.EDU [192.12.69.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id XAA13240
for <
[email protected]>; Thu, 2 Oct 1997 23:08:09 -0500 (CDT)
Received: from lectura.CS.Arizona.EDU (lectura.CS.Arizona.EDU [192.12.69.186])
by optima.cs.arizona.edu (8.8.7/8.8.7) with ESMTP id VAA12539;
Thu, 2 Oct 1997 21:08:07 -0700 (MST)
Received: from localhost (localhost [127.0.0.1])
by lectura.CS.Arizona.EDU (8.8.7/8.8.7) with SMTP id VAA19862;
Thu, 2 Oct 1997 21:08:06 -0700 (MST)
Message-Id: <
[email protected]>
Date: Thu, 2 Oct 1997 21:08:06 -0700 (MST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Jim Davis <
[email protected]>
To: Michael Douglass <
[email protected]>
Cc:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 2 Oct 1997, Michael Douglass wrote:
> On Thu, Oct 02, 1997 at 05:53:35PM -0500, Michael Brennen said:
>
> The question, as I have read it, and from what I would like is just as
> this fine person wrote it: "restrict them to their home directories"...
> Now, a chrooted environment works nifty if you are doing ANONYMOUS FTP...
> But that is not what we want--we want an ftp server that restricts people
> to working in their home directory... But we don't want to setup an
> etc/ bin/ lib/ for every person on the planet... In otherwords, an ftpd
> level restriction __not__ a lets-cheat-and-use-chroot level...
I can't imagine you can program an ftpd-level restriction that's going to
be anywhere near as secure as one the kernel enforces -- ie, using chroot.
Calling that a "cheat", is, well, weird.
(In fact it's not at all clear to me that's even possible with the current
ftpd code, but I haven't studied it at length.)
Now if the objection to the obvious (and well-tested) chroot solution is
the potential need to populate each /home/user with libraries and such,
then at least on some systems you may be able to dodge that. On some
systems you may be able to build ls (or whatever you need them to run)
statically; other systems, like Solaris, have 'loopback mounts' that let
you set up one directory of libraries and simply mount it under each
/home/user directory. And on still other systems you may be able to use
hard links from one directory of libraries to each /home/user/lib, and
so on.
From
[email protected] Thu Oct 2 23:25:19 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id XAA13366;
Thu, 2 Oct 1997 23:17:36 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id XAA10508
for <
[email protected]>; Thu, 2 Oct 1997 23:11:47 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id XAA18309;
Thu, 2 Oct 1997 23:11:55 -0500
Message-Id: <
[email protected]>
Date: Thu, 2 Oct 1997 23:11:55 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Michael Douglass <
[email protected]>
Cc:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 2 Oct 1997, Michael Douglass wrote:
> On Thu, Oct 02, 1997 at 05:53:35PM -0500, Michael Brennen said:
>
> Then you haven't read the question correctly.. DING, DING!!! Round three...
I understood the question. You haven't understood the answer.
> The question, as I have read it, and from what I would like is just as
> this fine person wrote it: "restrict them to their home directories"...
Read the docs and get a clue. chrooted environments for REAL user logins
are defined to be guest ftp, and it restricts them to their home
directories.
Can it be said any more plainly?
> Now, a chrooted environment works nifty if you are doing ANONYMOUS FTP...
A chrooted environment works nifty if you are a real user; it is called
guest FTP.
Yes, anonymous FTP is chrooted; not all chrooted FTP is anonymous. This
is not anonymous FTP.
> But that is not what we want--we want an ftp server that restricts people
> to working in their home directory... But we don't want to setup an
Read the docs and get a clue. This is called guest ftp.
> etc/ bin/ lib/ for every person on the planet... In otherwords, an ftpd
> level restriction __not__ a lets-cheat-and-use-chroot level... For anonymous
> ftp, chrooting is perfect...
Setting up ~/etc, ~/bin, ~/lib is not absolutely necessary to the chroot.
Some level of file structure is required to get an external ls and other
utilities to work, depending on whether or not ls is statically linked and
whether or not you want names or numbers to show for uid/gid in the ls.
Read the guest howto; this is all covered in there.
An FTP server cannot restrict people to their home directories
independently of the OS. That is why chroot is necessary; it is an OS
level control.
Once you chroot, nothing outside the chroot point is available, including
/bin/ls. That is why ~/bin/ls and so forth are necessary.
> > It tells you *exactly* how to do it, and many people over the past 2+
> > years can attest to that.
>
> I'm not an idiot... I've done anonymous ftp before.. That's not what we
> are asking about. Like he said is this a pre-done feature, or do we have
> to program it in ourselves???
This is not anonymous FTP. Never has been. Yes, it is a predone feature.
Guest ftp has been available for a long time; you don't have to program a
thing. All you have to do is read the existing documentation and do it.
> Simple, understand the question before giving a stock reply that doesn't
> answer the question...
Better yet, understand the answer that has been given by those that
understood the question long before you did.
The question was understood and answered long ago. The answers are stock
because the question is stock. All you have to do is read the stock
answer and apply the stock solution.
-- Michael
From
[email protected] Thu Oct 2 23:33:00 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id XAA12740;
Thu, 2 Oct 1997 23:23:49 -0500 (CDT)
Received: from Bahamut.dragonfire.net (Bahamut.dragonfire.net [209.70.16.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id XAA04098
for <
[email protected]>; Thu, 2 Oct 1997 23:21:41 -0500 (CDT)
Received: (from achurch@localhost) by Bahamut.dragonfire.net (8.8.5/8.7.5) id AAA27691; Fri, 3 Oct 1997 00:21:37 -0400
Message-Id: <
[email protected]>
Date: Fri, 03 Oct 1997 00:21:36 EDT
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Andy Church)
To:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
X-Mailer: MMail v4.62
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>The question, as I have read it, and from what I would like is just as
>this fine person wrote it: "restrict them to their home directories"...
>Now, a chrooted environment works nifty if you are doing ANONYMOUS FTP...
>But that is not what we want--we want an ftp server that restricts people
>to working in their home directory... But we don't want to setup an
>etc/ bin/ lib/ for every person on the planet... In otherwords, an ftpd
>level restriction __not__ a lets-cheat-and-use-chroot level...
"Cheat"? That's what chroot is _designed_ for. Imagine that wu-ftpd
_did_ have an option for a "restricted chdir", leaving the filesystem root
alone (no, it doesn't actually have such an option)... how long do you
think it would be before crackers found holes in it? We have no trouble
whatsoever putting a copy of bin/ls in each user's anonymous FTP directory;
if you can't afford the space for that, get a bigger hard disk. (And yes,
bin/ls is all you need [not counting Solaris dev/* braindeath]. Hint:
gcc -static)
--Andy Church | If Bell Atlantic really is the heart
[email protected] | of communication, then it desperately
www.dragonfire.net/~achurch/ | needs a quadruple bypass.
From
[email protected] Fri Oct 3 01:06:01 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id AAA24571;
Fri, 3 Oct 1997 00:58:35 -0500 (CDT)
Received: from staff2.texas.net (
[email protected] [207.207.0.39])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id AAA21875
for <
[email protected]>; Fri, 3 Oct 1997 00:52:38 -0500 (CDT)
Received: (from mikedoug@localhost) by staff2.texas.net (8.8.5/8.7.5) id AAA22448; Fri, 3 Oct 1997 00:52:35 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Fri, 3 Oct 1997 00:52:34 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Douglass <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
In-Reply-To: <
[email protected]>; from Andy Church on Fri, Oct 03, 1997 at 12:21:36AM -0500
References: <
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.74
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Fri, Oct 03, 1997 at 12:21:36AM -0500, Andy Church said:
> "Cheat"? That's what chroot is _designed_ for. Imagine that wu-ftpd
> _did_ have an option for a "restricted chdir", leaving the filesystem root
> alone (no, it doesn't actually have such an option)... how long do you
> think it would be before crackers found holes in it? We have no trouble
> whatsoever putting a copy of bin/ls in each user's anonymous FTP directory;
> if you can't afford the space for that, get a bigger hard disk. (And yes,
> bin/ls is all you need [not counting Solaris dev/* braindeath]. Hint:
> gcc -static)
Okay okay.. So I choose my word 'cheat' badly. How about 'clunky'? And
(unfortunately?) I am working on a Solaris box so... That is where the
'clunky' comes in. Bad choice of words.
--
Michael Douglass
Texas Networking, Inc.
"For all that you see, there is much hidden from your view;
for all that you know, there is truth yet to be learned."
- Me, some years ago.
From
[email protected] Fri Oct 3 01:50:19 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id BAA23755;
Fri, 3 Oct 1997 01:29:45 -0500 (CDT)
Received: from Bahamut.dragonfire.net (Bahamut.dragonfire.net [209.70.16.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id BAA28826
for <
[email protected]>; Fri, 3 Oct 1997 01:24:01 -0500 (CDT)
Received: (from achurch@localhost) by Bahamut.dragonfire.net (8.8.5/8.7.5) id CAA04033; Fri, 3 Oct 1997 02:23:54 -0400
Message-Id: <
[email protected]>
Date: Fri, 03 Oct 1997 02:23:53 EDT
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Andy Church)
To: Michael Douglass <
[email protected]>
Cc:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
X-Mailer: MMail v4.62
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>Okay okay.. So I choose my word 'cheat' badly. How about 'clunky'? And
>(unfortunately?) I am working on a Solaris box so... That is where the
>'clunky' comes in. Bad choice of words.
----------------------
#!/bin/sh
#
# Set up appropriate FTP files to allow chroot'd operation in a user's
# home directory. This assumes the user is chroot'd to his/her home
# directory. This also assumes a statically compiled `ls' is present in
# /bin/static/ls.
user=$1
if [ ! "$user" ] ; then
echo >&2 "Usage: $0 <username>"
exit 1
fi
pw=`grep \^${user}: /etc/passwd`
if [ ! "$pw" ] ; then
echo >&2 "User $user not found!"
exit 1
fi
dir=`echo $pw | cut -d: -f6`
if [ ! "$dir" -o ! -d "$dir" ] ; then
echo >&2 Directory \""$dir"\"" for user $user does not exist!"
exit 1
fi
mkdir $dir/bin
cp -p /bin/static/ls $dir/bin/ls
chmod 111 $dir/bin $dir/bin/ls
# If you're on Solaris, you'll need to uncomment the following lines:
#mkdir $dir/dev
#mknod $dir/dev/tcp c 11 42
#mknod $dir/dev/udp c 11 41
#mknod $dir/dev/zero c 13 12
#mknod $dir/dev/ticotsord c 105 1
#chmod 666 $dir/dev/*
#chmod 111 $dir/dev
----------------------
(Disclaimer: this may not work because I just wrote it in the last ten
minutes, including looking up the Solaris braindeath stuff.)
Point: chroot'd operation doesn't _have_ to be painful or "clunky".
A few extra files, even including a statically linked ls, is not going to
be significant compared to your average user's account size, and with
scripts like the above or programs which perform the setup automatically,
there's hardly any work involved.
--Andy Church | If Bell Atlantic really is the heart
[email protected] | of communication, then it desperately
www.dragonfire.net/~achurch/ | needs a quadruple bypass.
From
[email protected] Fri Oct 3 08:21:58 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA15416;
Fri, 3 Oct 1997 08:12:57 -0500 (CDT)
Received: from sps.lane.edu (sps.lane.edu [157.246.2.4])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA15041
for <
[email protected]>; Fri, 3 Oct 1997 08:08:00 -0500 (CDT)
Received: from [157.246.5.20] (gshepher.sps.lane.edu [157.246.5.20]) by sps.lane.edu (8.8.5/8.6.5.Beta7) with ESMTP id GAA26743 for <
[email protected]>; Fri, 3 Oct 1997 06:09:30 -0700 (PDT)
Message-Id: <v03007805b05aae992a62@[157.246.5.20]>
Date: Fri, 3 Oct 1997 07:16:34 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Greg Shepherd <
[email protected]>
To:
[email protected]
Subject: chroot: was chmod +
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Oops, that's chroot, not chmod.
Greg
>
>My wuftp install locks all users into their home directories as I planned;
>thanks to the help from this group.
>
>Now I'm getting requests for working groups to have ftp access to the group
>directory. I don't want to create a group account, but would like the users
>to be able to ftp into that dir, with the same locking they get in their
>home directory.
>
>Is there a way to allow the users to have more than one directory for ftp
>access?
>
>Greg
>
>===================================================================
>Greg Shepherd
>Springfield Public Schools
>Springfield, OR
>Systems Engineer
>(541) 726-3268
>
[email protected]
>
>"...It is somewhat of a rude awakening for many of these parents to
> find that America is facing a most serious situation regarding its
> popular music. Welfare workers tell us that never in the history of
> our land have there been such immoral conditions among our
> young people, and in the surveys made by many organizations
> regarding these conditions, the blame is laid on jazz music and its
> evil influence on the young people of today... That it has a
> demoralizing effect upon the human brain has been demonstrated
> by many scientists."
> - Ladies Home Journal, 1921
>===================================================================
>
From
[email protected] Fri Oct 3 08:42:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA32492;
Fri, 3 Oct 1997 07:55:25 -0500 (CDT)
Received: from sps.lane.edu (sps.lane.edu [157.246.2.4])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id HAA14113
for <
[email protected]>; Fri, 3 Oct 1997 07:48:33 -0500 (CDT)
Received: from [157.246.5.20] (gshepher.sps.lane.edu [157.246.5.20]) by sps.lane.edu (8.8.5/8.6.5.Beta7) with ESMTP id FAA26575 for <
[email protected]>; Fri, 3 Oct 1997 05:50:12 -0700 (PDT)
Message-Id: <v03007800b05aa992fbc4@[157.246.5.20]>
Date: Fri, 3 Oct 1997 06:57:15 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Greg Shepherd <
[email protected]>
To:
[email protected]
Subject: chmod +
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
My wuftp install locks all users into their home directories as I planned;
thanks to the help from this group.
Now I'm getting requests for working groups to have ftp access to the group
directory. I don't want to create a group account, but would like the users
to be able to ftp into that dir, with the same locking they get in their
home directory.
Is there a way to allow the users to have more than one directory for ftp
access?
Greg
===================================================================
Greg Shepherd
Springfield Public Schools
Springfield, OR
Systems Engineer
(541) 726-3268
[email protected]
"...It is somewhat of a rude awakening for many of these parents to
find that America is facing a most serious situation regarding its
popular music. Welfare workers tell us that never in the history of
our land have there been such immoral conditions among our
young people, and in the surveys made by many organizations
regarding these conditions, the blame is laid on jazz music and its
evil influence on the young people of today... That it has a
demoralizing effect upon the human brain has been demonstrated
by many scientists."
- Ladies Home Journal, 1921
===================================================================
From
[email protected] Fri Oct 3 09:51:30 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA24475;
Fri, 3 Oct 1997 09:40:58 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA24811
for <
[email protected]>; Fri, 3 Oct 1997 09:36:46 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA27869;
Fri, 3 Oct 1997 09:36:48 -0500
Message-Id: <
[email protected]>
Date: Fri, 3 Oct 1997 09:36:48 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Greg Shepherd <
[email protected]>
Cc:
[email protected]
Subject: Re: chmod +
In-Reply-To: <v03007800b05aa992fbc4@[157.246.5.20]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Noting your chmod/chown correction... :)
I don't fully understand what you mean by 'group directory'. Do you mean
the parent directory of a bunch of chrooted users? Can you draw the
directory tree you want?
-- Michael
On Fri, 3 Oct 1997, Greg Shepherd wrote:
> My wuftp install locks all users into their home directories as I
> planned; thanks to the help from this group.
>
> Now I'm getting requests for working groups to have ftp access to the
> group directory. I don't want to create a group account, but would like
> the users to be able to ftp into that dir, with the same locking they
> get in their home directory.
From
[email protected] Fri Oct 3 11:31:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA32742;
Fri, 3 Oct 1997 11:23:13 -0500 (CDT)
Received: from deliverator.sgi.com (deliverator.sgi.com [204.94.214.10])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA32757
for <
[email protected]>; Fri, 3 Oct 1997 11:16:18 -0500 (CDT)
Received: from eagle.clubfed.sgi.com (eagle.clubfed.sgi.com [169.238.2.15]) by deliverator.sgi.com (950413.SGI.8.6.12/970507) via ESMTP id JAA21949
for <@external-mail-relay.sgi.com:
[email protected]>; Fri, 3 Oct 1997 09:16:15 -0700
env-from (
[email protected])
Received: from sgi.com by eagle.clubfed.sgi.com via ESMTP (950413.SGI.8.6.12/930416.SGI)
for <
[email protected]> id MAA01553; Fri, 3 Oct 1997 12:16:13 -0400
Message-Id: <
[email protected]>
Date: Fri, 03 Oct 1997 12:16:13 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: "Richard Norwood Jr." <
[email protected]>
To:
[email protected]
Subject: SYSLOG Messages
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 4.02 [en] (X11; I; IRIX 6.3 IP32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Oct 3 15:50:33 3D:system ftpd[1440]: open of pid file failed: No such
file or directory
Oct 3 15:50:33 3D:system ftpd[1440]: open of pid file failed: No such
file or directory
Does anyone know why the following messages are populating in my SYSLOG
?
I have a pid file associated with each class.
Thanks,
Rick
--
----------------------------------------------------------------------
|| Richard Norwood (SGI) | "We have not inherited the Earth ||
|| Technology Services | from our ancestors." ||
|| | ||
|| Phone: (301)-572-3296 | "We have only borrowed it from ||
|| Email:
[email protected] | our children." ||
|| Beeper: 1-800-792-7933 | - Ancient Proverb ||
|| Alpha Pager: | ||
||
[email protected] | ||
----------------------------------------------------------------------
From
[email protected] Fri Oct 3 12:33:00 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA00106;
Fri, 3 Oct 1997 12:24:44 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA06836
for <
[email protected]>; Fri, 3 Oct 1997 12:20:47 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id MAA31448
for <
[email protected]>; Fri, 3 Oct 1997 12:20:52 -0500
Message-Id: <
[email protected]>
Date: Fri, 3 Oct 1997 12:20:52 -0500 (CDT)
Reply-To: Michael Brennen <
[email protected]>
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To:
[email protected]
Subject: Re: non-anonymous users and standalone daemon
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
It will be quite clear from my response to Mr. Douglass that I was quite
angry. I was very angry that for the second time in a week someone has
taken me to task for not handholding them through when a good body of
documentation has been built to answer exactly the questions asked.
I have discussed this off list with Mr. Douglass. I hold no unforgiveness
or anger against Mr. Douglass or any other person on this list, and I
genuinely hope that we can work to improve the quality of support. This
stuff is not necessarily obvious, and people do run into questions.
However: support on this or any other list is free, and it *MUST* have
limits. That is why the docs were written. This is not Unix school; other
resources are available for that. People are going to have to do the work
to learn it for themselves.
No one on this list has *ANY RIGHT* to expect anything from other list
members. This is a give and take list, and others' limits must be
respected. Please approach the list with that attitude, and be willing to
work and even be frustrated to get your problems resolved -- just don't be
angry at other list members because we didn't answer your questions the
way you thought you deserved.
I give back where I can, because I have received from many others more
than I have ever given. The guest howto is one way I try to give back.
On the list I can usually give very little, very quickly, because I am
extremely busy running my own business first. Mabye short answers seem
rude or curt; they aren't meant to be.
I have added the text below at the beginning of the guest howto to explain
more clearly what guest FTP is; hopefully this will make it more clear to
people new to wu-ftpd. I would appreciate it if you would review it and
make suggestions that will make it more accurate or clear.
-- Michael
*******************************
There are three kinds of FTP logins that wu-ftpd provides:
1: anonymous FTP
2: real FTP
3: guest FTP
Anonymous FTP is well known; one logs in with the username 'anonymous'
and an email type password.
Real FTP is when someone logs in with a real username and password and
has access to the entire disk structure. This form of access can be
extremely dangerous to system security and should be avoided unless
absolutely necessary and well controlled.
Guest FTP is a form of real FTP; one logs in with a real user name and
password, but the user is chroot'ed to his home directory and cannot
escape from it. This is much safer, and it is a useful way for remote
clients to maintain their Web accounts.
If you want to learn more about 'chroot', the following two commands
should help, as should any good Unix text.
man 2 chroot
man 8 chroot
This howto will describe in detail the steps necessary to set up a
guest FTP account. It does not describe anonymous or real FTP setup,
though the procedures for setting up an operational 'ls' command will
apply equally to anonymous FTP because of the chroot'ed nature of
anonymous FTP.
(etc....)
From
[email protected] Fri Oct 3 12:49:47 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA10423;
Fri, 3 Oct 1997 12:37:00 -0500 (CDT)
Received: from sps.lane.edu (sps.lane.edu [157.246.2.4])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA06564
for <
[email protected]>; Fri, 3 Oct 1997 12:31:03 -0500 (CDT)
Received: from [157.246.5.20] (gshepher.sps.lane.edu [157.246.5.20]) by sps.lane.edu (8.8.5/8.6.5.Beta7) with ESMTP id KAA02922; Fri, 3 Oct 1997 10:32:49 -0700 (PDT)
Message-Id: <v03007800b05ae4e1ec81@[157.246.5.20]>
Date: Fri, 3 Oct 1997 11:39:52 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Greg Shepherd <
[email protected]>
To:
[email protected],
[email protected]
Subject: Re: chmod +
In-Reply-To: <
[email protected]>
References: <v03007800b05aa992fbc4@[157.246.5.20]>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Okay.
Each user has a home directory in /home/users/uname
When they ftp in, they are chroot'd into their homes and locked their. From
there, they can modify their personal web documents.
BUT, some users are working as groups to make department web documents
stored in /home/web/depts/dept-name.
Those who can only access the server via ftp need to ftp into that
directory. I would like the same locked environment they have in their home
directories that the chroot provides. Unfortunatly, I can't figure a way to
allow them to ftp, chroot'd, into multiple directories.
Does this help?
Greg
>Noting your chmod/chown correction... :)
>
>I don't fully understand what you mean by 'group directory'. Do you mean
>the parent directory of a bunch of chrooted users? Can you draw the
>directory tree you want?
>
> -- Michael
>
>On Fri, 3 Oct 1997, Greg Shepherd wrote:
>
>> My wuftp install locks all users into their home directories as I
>> planned; thanks to the help from this group.
>>
>> Now I'm getting requests for working groups to have ftp access to the
>> group directory. I don't want to create a group account, but would like
>> the users to be able to ftp into that dir, with the same locking they
>> get in their home directory.
From
[email protected] Fri Oct 3 12:56:48 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA11869;
Fri, 3 Oct 1997 12:49:12 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA12302
for <
[email protected]>; Fri, 3 Oct 1997 12:46:29 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id MAA32025;
Fri, 3 Oct 1997 12:46:33 -0500
Message-Id: <
[email protected]>
Date: Fri, 3 Oct 1997 12:46:33 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Greg Shepherd <
[email protected]>
Cc:
[email protected]
Subject: Re: chmod +
In-Reply-To: <v03007800b05ae4e1ec81@[157.246.5.20]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Defining a separate login for each department Web directory would do it;
give the necessary login info to each dept. member, let them log in with
that one group account.
If you want per member accountability, define a Unix group for that
departmental group, define multiple accounts for each user in that group,
each chrooted to the dept. web tree. Make file permissions 0775, owned by
the user/group, and set an upload directive in /etc/ftpaccess to upload
files with permissions of 0775. Or set the overall daemon umask to 002.
-- Michael
On Fri, 3 Oct 1997, Greg Shepherd wrote:
> BUT, some users are working as groups to make department web documents
> stored in /home/web/depts/dept-name.
>
> Those who can only access the server via ftp need to ftp into that
> directory. I would like the same locked environment they have in their home
> directories that the chroot provides. Unfortunatly, I can't figure a way to
> allow them to ftp, chroot'd, into multiple directories.
From
[email protected] Fri Oct 3 13:04:35 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA26848;
Fri, 3 Oct 1997 12:55:21 -0500 (CDT)
Received: from Bahamut.dragonfire.net (Bahamut.dragonfire.net [209.70.16.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA28726
for <
[email protected]>; Fri, 3 Oct 1997 12:54:28 -0500 (CDT)
Received: (from achurch@localhost) by Bahamut.dragonfire.net (8.8.5/8.7.5) id NAA09052; Fri, 3 Oct 1997 13:54:06 -0400
Message-Id: <
[email protected]>
Date: Fri, 03 Oct 1997 13:54:05 EDT
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Andy Church)
To: Greg Shepherd <
[email protected]>
Cc:
[email protected]
Subject: Re: chmod +
X-Mailer: MMail v4.62
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>Each user has a home directory in /home/users/uname
>
>When they ftp in, they are chroot'd into their homes and locked their. From
>there, they can modify their personal web documents.
>
>BUT, some users are working as groups to make department web documents
>stored in /home/web/depts/dept-name.
>
>Those who can only access the server via ftp need to ftp into that
>directory. I would like the same locked environment they have in their home
>directories that the chroot provides. Unfortunatly, I can't figure a way to
>allow them to ftp, chroot'd, into multiple directories.
So it sounds like what you want to be able to happen is this:
mymachine:~> ftp your.machine
Username: joe
Password: <whatever>
ftp> cd /
ftp> put file.in.joes.home.directory
ftp> cd /depts/dept-name
ftp> put file.in.dept.directory
If this is what you're looking for, it's not possible; the best you
could do would be chroot them to /home and have them start out in their
home directory (i.e. the directory entry in /etc/passwd would be
/home/./users/uname). Of course, another option is simply to assign them
a second username with the same UID but a different home directory, e.g.:
joe:x:501:100:Joe User:/home/users/joe:/bin/false
joe2:x:501:100:Joe User:/home/web/depts/joes-dept:/bin/false
I haven't tested this approach, mind you, but it _ought_ to work, at least
theoretically...
--Andy Church | If Bell Atlantic really is the heart
[email protected] | of communication, then it desperately
www.dragonfire.net/~achurch/ | needs a quadruple bypass.
From
[email protected] Sat Oct 4 18:44:04 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA09481;
Sat, 4 Oct 1997 18:34:01 -0500 (CDT)
Received: from asimov.lib.uaa.alaska.edu (
[email protected] [137.229.112.145])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA06658
for <
[email protected]>; Sat, 4 Oct 1997 18:28:16 -0500 (CDT)
Received: from tolkien (tolkien.lib.uaa.alaska.edu [137.229.112.148])
by asimov.lib.uaa.alaska.edu (8.8.7/8.8.7) with SMTP id PAA26194
for <
[email protected]>; Sat, 4 Oct 1997 15:28:07 -0800
Message-Id: <
[email protected]>
Date: Sat, 04 Oct 1997 15:28:04 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Tibor <
[email protected]>
To:
[email protected]
Subject: MD5 Encrypted Passwords
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 3.03 (WinNT; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I just installed shadow-970616, and I tried to enable md5 encrypted
passwords, but beta-15 doesn't seem to understand md5 (after I enable
md5 in /etc/login.defs, run 'passwd <user>' to generate a new password,
that particular user cannot ftp in to the server).
When I compiled wu-ftpd I did make the changes necessary for shadow
passwords, and users whose passwords were not generated using md5 *are*
successfully authenticated.
My system is a Slackware box running 2.0.31-pre5 and wu-ftpd-beta-15
Is md5 support just not included yet? I'm guessing that's the case
because I could find no references to it in any of the docs included
with the distribution, or in the FAQ.
Mike
--
Mike Tibor University of Alaska Anchorage (907) 786-1001 voice
LAN Technician Consortium Library (907) 786-6050 fax
http://www.lib.uaa.alaska.edu/~tibor/ mailto:
[email protected]
From
[email protected] Sun Oct 5 11:38:42 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA14462;
Sun, 5 Oct 1997 11:26:30 -0500 (CDT)
Received: from inorganic5.fdt.net (inorganic5.fdt.net [205.229.48.42])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA13233
for <
[email protected]>; Sun, 5 Oct 1997 11:24:59 -0500 (CDT)
Received: from localhost (jlewis@localhost)
by inorganic5.fdt.net with SMTP id MAA03533;
Sun, 5 Oct 1997 12:24:49 -0400
Message-Id: <
[email protected]>
Date: Sun, 5 Oct 1997 12:24:47 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Jon Lewis <
[email protected]>
To: Michael Tibor <
[email protected]>
Cc:
[email protected]
Subject: Re: MD5 Encrypted Passwords
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-To-Stop-Spam-See:
http://inorganic5.fdt.net/~jlewis/spam.html
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Sat, 4 Oct 1997, Michael Tibor wrote:
> I just installed shadow-970616, and I tried to enable md5 encrypted
> passwords, but beta-15 doesn't seem to understand md5 (after I enable
> md5 in /etc/login.defs, run 'passwd <user>' to generate a new password,
> that particular user cannot ftp in to the server).
>
> My system is a Slackware box running 2.0.31-pre5 and wu-ftpd-beta-15
>
> Is md5 support just not included yet? I'm guessing that's the case
did you add -lc -lcrypt to LIBS in the makefile?
------------------------------------------------------------------
Jon Lewis <
[email protected]> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______
http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____
From
[email protected] Sun Oct 5 12:44:18 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA17622;
Sun, 5 Oct 1997 11:32:17 -0500 (CDT)
Received: from mailhub.east.cn.net (ns1.east.cn.net [202.96.49.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA07327
for <
[email protected]>; Sun, 5 Oct 1997 11:28:34 -0500 (CDT)
Received: from public.east.cn.net (ns.east.cn.net [202.96.49.1]) by mailhub.east.cn.net with ESMTP ; Mon, 6 Oct 1997 00:23:52 +0800
Received: from 202.96.49.1 ([202.99.62.8]) by public.east.cn.net with SMTP id AAA14396; Mon, 6 Oct 1997 00:19:22 +0800
Message-Id: <
[email protected]>
Date: Mon, 6 Oct 1997 00:19:22 +0800
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To: rwang <
[email protected]>
Cc: stockway <
[email protected]>
Subject: ���
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 8bit
X-mailer: FoxMail 1.4.2
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id LAA10889
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
���ʣ�
Ë֪���������վ�Ķ�Ʊ�绰��
\|||/
��@^@��
0
Ҳ����Ӧ��Ϊ��ժһö����
Ȼ���������������һ������ܡ�
May I pick a green apple
and say "xiong" in the soft spainish
From
[email protected] Tue Oct 7 09:23:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA12329;
Tue, 7 Oct 1997 09:16:02 -0500 (CDT)
Received: from att.com (cagw2.att.com [192.128.52.90])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA07831
for <
[email protected]>; Tue, 7 Oct 1997 09:06:00 -0500 (CDT)
Received: by cagw2.att.com; Tue Oct 7 10:02 EDT 1997
Received: from lynxhub.lz.att.com ([135.25.204.10])
by caig2.att.att.com (AT&T/GW-1.0) with SMTP id KAA16194
for <
[email protected]>; Tue, 7 Oct 1997 10:17:14 -0400 (EDT)
Received: by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA03790; Tue, 7 Oct 1997 10:03:38 -0400
Message-Id: <
[email protected]>
Date: Tue, 7 Oct 1997 10:03:37 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected] (ftp archive)
Subject: question about mdel and globbing
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
I have beta 13 with the globbing patch for the directory problem. My
question is, if you have a directory with subdirectories should the
command mdel * remove all the files in the current directory and all
the files in the subdirectory? That is the behavior I am seeing now.
Thanks for any info
Doug
--
Doug Courtney
[email protected]
(732)576-5572
From
[email protected] Tue Oct 7 11:52:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA27809;
Tue, 7 Oct 1997 11:43:55 -0500 (CDT)
Received: from MIT.EDU (SOUTH-STATION-ANNEX.MIT.EDU [18.72.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA24225
for <
[email protected]>; Tue, 7 Oct 1997 11:41:12 -0500 (CDT)
Received: from STARKILLER.MIT.EDU by MIT.EDU with SMTP
id AA17744; Tue, 7 Oct 97 12:41:10 EDT
Received: by starkiller.MIT.EDU (SMI-8.6/4.7) id MAA07442; Tue, 7 Oct 1997 12:41:03 -0400
Message-Id: <
[email protected]>
Date: Tue, 07 Oct 1997 12:41:02 EDT
Reply-To:
[email protected]
Sender:
[email protected]
From: Kev <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: ftpd.c reply() and lreply() bogusness
X-Sender:
[email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
If HAVE_VPRINTF is not defined, the versions of reply() and lreply()
declaredto handle that case, besides being almost exactly the same
code as the HAVE_VPRINTF case (*mumble* redundancy *mumble*
redundancy *mumble* redundancy ...), are declared as "void void
reply()" and "void void lreply()". For reply(), the first "void"
declaration is just before the #if defined (HAVE_VPRINTF)
(specifically, it appears on line 2688 of ftpd.c); for lreply(), the
redundant declaration is just before the VARARGS2 comment
(specifically, line 2810).
--
Kevin L. Mitchell
[email protected]
-----------------------------------------------------------------------------
MIT Kerberos Development Team Work: (617) 253-9483
http://web.mit.edu/klmitch/www/ PGP keys available upon request
From
[email protected] Tue Oct 7 12:23:26 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA28754;
Tue, 7 Oct 1997 12:13:24 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA31512
for <
[email protected]>; Tue, 7 Oct 1997 12:09:51 -0500 (CDT)
Received: from egate.mnet.uswest.com (egate-co1.mnet.uswest.com [151.119.130.8])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id LAA13557
for <
[email protected]>; Tue, 7 Oct 1997 11:09:20 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate.mnet.uswest.com (8.7.1/8.7.1) with SMTP id LAA10167 for <
[email protected]>; Tue, 7 Oct 1997 11:09:19 -0600 (MDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id MAA16811 for <
[email protected]>; Tue, 7 Oct 1997 12:15:47 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA15691
for <
[email protected]>; Tue, 7 Oct 1997 11:09:16 -0600
Message-Id: <
[email protected]>
Date: Tue, 07 Oct 1997 11:12:31 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: Problems w/sgi
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hey all. Was trying to install beta 15 last night ( and this morning),
and am having some problems. Here's what gets shoved into syslog:
Oct 6 22:54:59 3D:ns1 ftpd[14450]: getpeername (ftpd): Socket operation
on non-socket
It compiled fine on my 4D35 running IRIX 5.3 with gcc (cc, too). Here
is what I believe to be the offending piece of code:
ftpd.c:
425 if (getpeername(0, (struct sockaddr *) &his_addr, &addrlen) <
0) {
426 syslog(LOG_ERR, "getpeername (%s): %m", argv[0]);
427 #ifndef DEBUG
428 exit(1);
429 #endif
430 }
431 addrlen = sizeof(ctrl_addr);
432 if (getsockname(0, (struct sockaddr *) &ctrl_addr, &addrlen) <
0) {
433 syslog(LOG_ERR, "getsockname (%s): %m", argv[0]);
434 #ifndef DEBUG
435 exit(1);
436 #endif
I initally tried compiling with -DVIRTUAL, but am not just trying to get
a single server version working. After it spits out the error, it dies
(maybe from the "edit(1)"??).
If anyone can help, I'd greatly appreciate it. Thanks in advance.
-Brad
From
[email protected] Tue Oct 7 12:58:27 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA32030;
Tue, 7 Oct 1997 12:51:38 -0500 (CDT)
Received: from MIT.EDU (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.69.0.28])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA02094
for <
[email protected]>; Tue, 7 Oct 1997 12:45:26 -0500 (CDT)
Received: from STARKILLER.MIT.EDU by MIT.EDU with SMTP
id AA27339; Tue, 7 Oct 97 13:44:58 EDT
Received: by starkiller.MIT.EDU (SMI-8.6/4.7) id NAA07928; Tue, 7 Oct 1997 13:44:12 -0400
Message-Id: <
[email protected]>
Date: Tue, 07 Oct 1997 13:44:11 EDT
Reply-To:
[email protected]
Sender:
[email protected]
From: Kev <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: #2 in the reply() and lreply() bogon saga
X-Sender:
[email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
This is in the first lreply() declaration, starting on line 2741 of ftpd.c:
--- Begin code fragment
VA_START(fmt);
if (!dolreplies)
return;
--- End code fragment
Note the missing VA_END before the return. While this wouldn't be a problem
on most UNIX systems, ANSI C specifies that you MUST always clean up after
a VA_START() (well, va_start(), anyway). Moreover, both lreply() and the
reply() declaration just before it (hmmm...I'm using "declaration" rather
loosely, aren't I?) have yet another problem. Basically, the VA_START() and
VA_END() macros should wrap each instance of a v*printf function.
Since I'm rewriting these functions anyway for doing the GSSAPI authentication
stuff, what I've planned on doing is simply ripping the existing code out
and replacing it with two functions, reply() and lreply(), that call out to
a single function, vreply(), which builds the numeric string, does encryption
if necessary, does the debugging syslog, and returns. If you desire (which
I presume you will), I can submit a patch which does the proper replacement
as soon as I get to the point where it's been tested and proven to have
some reasonable pretext of working without bugs :)
--
Kevin L. Mitchell
[email protected]
-----------------------------------------------------------------------------
MIT Kerberos Development Team Work: (617) 253-9483
http://web.mit.edu/klmitch/www/ PGP keys available upon request
From
[email protected] Tue Oct 7 12:59:36 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA31616;
Tue, 7 Oct 1997 12:53:06 -0500 (CDT)
Received: from academ.com (
[email protected] [198.137.249.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA28568
for <
[email protected]>; Tue, 7 Oct 1997 12:47:00 -0500 (CDT)
Received: (from sob@localhost)
by academ.com (8.8.5/8.8.5) id MAA06007;
Tue, 7 Oct 1997 12:46:51 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Tue, 7 Oct 1997 12:46:51 CDT
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Stan Barber)
To: Kev <
[email protected]>,
[email protected]
Cc:
[email protected],
[email protected]
Subject: Re: [ACADEM-SW-SUPPORT #508] #2 in the reply() and lreply() bogon saga
X-Mailer: Mail User's Shell (7.2.5 10/14/92)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> Since I'm rewriting these functions anyway for doing the GSSAPI authentication
> stuff, what I've planned on doing is simply ripping the existing code out
> and replacing it with two functions, reply() and lreply(), that call out to
> a single function, vreply(), which builds the numeric string, does encryption
> if necessary, does the debugging syslog, and returns. If you desire (which
> I presume you will), I can submit a patch which does the proper replacement
> as soon as I get to the point where it's been tested and proven to have
> some reasonable pretext of working without bugs :)
Great!
--
Stan | Academ Consulting Services |internet:
[email protected]
Olan | For more info on academ, see this |uucp: {mcsun|amdahl}!academ!sob
Barber | URL-
http://www.academ.com/academ |Opinions expressed are only mine.
From
[email protected] Tue Oct 7 13:39:48 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA04659;
Tue, 7 Oct 1997 13:30:23 -0500 (CDT)
Received: from paris.tactech.com (paris.tactech.com [199.107.8.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA04295
for <
[email protected]>; Tue, 7 Oct 1997 13:27:56 -0500 (CDT)
Received: (from jleung@localhost)
by paris.tactech.com (8.8.7/8.8.7) id LAA26469;
Tue, 7 Oct 1997 11:27:14 -0700 (PDT)
Message-Id: <Pine.3.89.9710071110.A26285-0100000@paris>
Date: Tue, 7 Oct 1997 11:27:11 -0700 (PDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Janet Leung <
[email protected]>
To:
[email protected]
Subject: Help w/ 425 Can't create data socket (0.0.0.0,20): No such device or address
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
We have installed wu-2.4.2-academ[BETA-15] onto Solaris 2.5 system, but
"ls" would give the following error:
425 Can't create data socket (0.0.0.0,20): No such device or address
Could somebody please tell me what went wrong.
Thanks,
Janet Leung, TACTech, Inc., Yorba Linda, CA 92887-4608
P.S. Running wu-2.4.2-academ[BETA-15] on Solaris 2.3 seems to be fine
though....
From
[email protected] Tue Oct 7 13:41:06 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA04598;
Tue, 7 Oct 1997 13:29:15 -0500 (CDT)
Received: from alpha.xerox.com (alpha.Xerox.COM [13.1.64.93])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA06297
for <
[email protected]>; Tue, 7 Oct 1997 13:24:34 -0500 (CDT)
Received: from silas.cp10.es.xerox.com ([13.241.236.13]) by alpha.xerox.com with SMTP id <51874(3)>; Tue, 7 Oct 1997 11:24:02 PDT
Received: by silas.cp10.es.xerox.com (4.1/SMI-4.1)
id AA01575; Tue, 7 Oct 97 11:24:01 PDT
Message-Id: <
[email protected]>
Date: Tue, 7 Oct 1997 11:24:01 PDT
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (joseph yang)
To:
[email protected]
Cc:
[email protected]
Subject: ftp access from web browser
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
I'm trying to get wuftp to work over a web browser.
I'm sure someone went through this already. I checked the FAQ and chmod 666 to my ~/dev/zero and ~/dev/tcp files but I still get:
FTP Error
Could not login to FTP server
User anonymous access denied..
Anonymous access works with regular ftp from command line as well as other clients (ie: Chameleon NetManag's ftp).
I'm running SunOS4.1.3U1 using 2.4.2-beta13. Any help would be appreciated.
Thanx.
--Joe
From
[email protected] Tue Oct 7 14:03:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA08489;
Tue, 7 Oct 1997 13:55:13 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA30177
for <
[email protected]>; Tue, 7 Oct 1997 13:48:11 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id NAA29690;
Tue, 7 Oct 1997 13:47:58 -0500
Message-Id: <
[email protected]>
Date: Tue, 7 Oct 1997 13:47:58 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Janet Leung <
[email protected]>
Cc:
[email protected]
Subject: Re: Help w/ 425 Can't create data socket (0.0.0.0,20): No such device or address
In-Reply-To: <Pine.3.89.9710071110.A26285-0100000@paris>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
The guest howto (toward the bottom) and FAQ have answers to this.
-- Michael
On Tue, 7 Oct 1997, Janet Leung wrote:
> We have installed wu-2.4.2-academ[BETA-15] onto Solaris 2.5 system, but
> "ls" would give the following error:
>
> 425 Can't create data socket (0.0.0.0,20): No such device or address
This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to
[email protected]
with a subject line: send faq
guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "
[email protected]"
(immediate autoresponder; subject does not matter)
wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
There are additional security references in the above docs.
From
[email protected] Tue Oct 7 14:22:29 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA04391;
Tue, 7 Oct 1997 14:13:28 -0500 (CDT)
Received: from finwe.jrnl.com (FINWE.JRNL.COM [199.244.139.200])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA06630
for <
[email protected]>; Tue, 7 Oct 1997 14:11:51 -0500 (CDT)
Received: from jrnl.com ([152.163.66.131]) by finwe.jrnl.com
(post.office MTA v2.0 0813 ID# 0-29013) with ESMTP id AAA17513;
Tue, 7 Oct 1997 15:13:11 -0400
Message-Id: <
[email protected]>
Date: Tue, 07 Oct 1997 15:11:48 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Jenice Darner <
[email protected]>
To:
[email protected],
[email protected]
Subject: Re: ftp access from web browser
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: thorn
X-Mailer: Mozilla 4.03 [en] (X11; I; IRIX 6.2 IP22)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
joseph yang wrote:
>
> Hi,
>
> I'm trying to get wuftp to work over a web browser.
>
> I'm sure someone went through this already. I checked the FAQ and chmod 666 to my ~/dev/zero and ~/dev/tcp files but I still get:
>
> FTP Error
>
> Could not login to FTP server
> User anonymous access denied..
>
> Anonymous access works with regular ftp from command line as well as other clients (ie: Chameleon NetManag's ftp).
>
> I'm running SunOS4.1.3U1 using 2.4.2-beta13. Any help would be appreciated.
The FTP server is either configured to deny anonymous ftp login or you
are running tcp/ip wrappers at the same time that are denying anonymous
access from your domain. Go back over the config of your ftpserver with
a tool like ftpcheck from
ftp://ftp.cle.ab.com/pub/ftpcheck.v2.3
and make sure that it is configured to allow anonymous ftp access if you
know you aren't using tcp/ip wrappers.
You should also be careful ftping from the host to the host if your
machine was configured by someone other than yourself. To deny many
spoofs, a number of admins will not accept tcp packets that have the
same send-to and return domain...
Another thing to keep in mind is if your network is firewalled and is
denying some ports, there will be restrictions on people trying to reach
your machine.
--
--------------------
Denise Garner
FTP Administrator
Internet Operations
From
[email protected] Tue Oct 7 19:23:03 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA25997;
Tue, 7 Oct 1997 19:10:50 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA02056
for <
[email protected]>; Tue, 7 Oct 1997 19:04:34 -0500 (CDT)
Received: from egate.mnet.uswest.com (egate-co1.mnet.uswest.com [151.119.130.8])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id SAA19928
for <
[email protected]>; Tue, 7 Oct 1997 18:04:03 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate.mnet.uswest.com (8.7.1/8.7.1) with SMTP id SAA04096 for <
[email protected]>; Tue, 7 Oct 1997 18:04:02 -0600 (MDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id TAA05625 for <
[email protected]>; Tue, 7 Oct 1997 19:10:31 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA14797
for <
[email protected]>; Tue, 7 Oct 1997 18:03:59 -0600
Message-Id: <
[email protected]>
Date: Tue, 07 Oct 1997 18:07:14 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: Re: Problems w/sgi
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Harumph. All it needed was a reboot. Somehow inetd stopped listening
to ANY port, so I rebooted and voila! ftpd woke up just fine.
>
> Hey all. Was trying to install beta 15 last night ( and this morning),
> and am having some problems. Here's what gets shoved into syslog:
>
> Oct 6 22:54:59 3D:ns1 ftpd[14450]: getpeername (ftpd): Socket operation
> on non-socket
>
> It compiled fine on my 4D35 running IRIX 5.3 with gcc (cc, too). Here
> is what I believe to be the offending piece of code:
>
> ftpd.c:
>
> 425 if (getpeername(0, (struct sockaddr *) &his_addr, &addrlen) <
> 0) {
> 426 syslog(LOG_ERR, "getpeername (%s): %m", argv[0]);
> 427 #ifndef DEBUG
> 428 exit(1);
> 429 #endif
> 430 }
> 431 addrlen = sizeof(ctrl_addr);
> 432 if (getsockname(0, (struct sockaddr *) &ctrl_addr, &addrlen) <
> 0) {
> 433 syslog(LOG_ERR, "getsockname (%s): %m", argv[0]);
> 434 #ifndef DEBUG
> 435 exit(1);
> 436 #endif
>
> I initally tried compiling with -DVIRTUAL, but am not just trying to get
> a single server version working. After it spits out the error, it dies
> (maybe from the "exit(1)"??).
From
[email protected] Tue Oct 7 19:46:57 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA01432;
Tue, 7 Oct 1997 19:29:17 -0500 (CDT)
Received: from mail1.global2000.net (
[email protected] [198.69.121.4])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA29252
for <
[email protected]>; Tue, 7 Oct 1997 19:26:21 -0500 (CDT)
Received: from wired (gateway.firebug.net [205.247.145.45]) by mail1.global2000.net (8.9.2/SecureMode) with SMTP id UAA16469 for <
[email protected]>; Tue, 7 Oct 1997 20:26:19 -0400
Message-Id: <
[email protected]>
Date: Tue, 07 Oct 1997 20:24:11 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Tom <
[email protected]>
To:
[email protected]
Subject: linux/version.h: No such file or directory
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected] (Unverified)
X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.3 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hello. Why I try to compile wu-ftpd-2.4.2-beta-15 under Linux 2.0.29
(Slackware) i get the error "config.h:5: linux/version.h: No such file or
directory". How can i fix this?
- tom
From
[email protected] Tue Oct 7 20:01:13 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA03187;
Tue, 7 Oct 1997 19:42:28 -0500 (CDT)
Received: from detroit.gci.com (detroit.gci.com [205.140.80.57])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA31462
for <
[email protected]>; Tue, 7 Oct 1997 19:41:05 -0500 (CDT)
Received: by detroit.gci.com with Microsoft Exchange (IMC 4.0.837.3)
id <
[email protected]>; Tue, 7 Oct 1997 16:35:50 -0800
Message-Id: <c=US%a=_%p=gci%
[email protected]>
Date: Tue, 7 Oct 1997 16:37:25 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: Leif Sawyer <
[email protected]>
To: "'
[email protected]'" <
[email protected]>
Subject: Chroot'd server denying access to files
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Exchange Server Internet Mail Connector Version 4.0.837.3
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I'm trying to figure out how to deny user access to certain files.
I've got my system set up as a chroot'd server, and i've killed read
permissions on all the secured directories. However, any user
can still type
> get /etc/passwd
and have the full password list. Is there a way to secure this?
>
From
[email protected] Tue Oct 7 20:10:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA07739;
Tue, 7 Oct 1997 19:54:42 -0500 (CDT)
Received: from detroit.gci.com (detroit.gci.com [205.140.80.57])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA03526
for <
[email protected]>; Tue, 7 Oct 1997 19:49:36 -0500 (CDT)
Received: by detroit.gci.com with Microsoft Exchange (IMC 4.0.837.3)
id <
[email protected]>; Tue, 7 Oct 1997 16:44:31 -0800
Message-Id: <c=US%a=_%p=gci%
[email protected]>
Date: Tue, 7 Oct 1997 16:46:06 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: Leif Sawyer <
[email protected]>
To: "'
[email protected]'" <
[email protected]>
Subject: RE: Chroot'd server denying access to files
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Exchange Server Internet Mail Connector Version 4.0.837.3
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Arg.. of course, as soon as I post, i find the info i'm looking for:
in your ftpaccess file:
noretrieve /etc/passwd
noretrieve /etc/group
noretrieve /etc/ftpaccess
etc, etc..
Thanks all who responded anyway!
>-----Original Message-----
>From: Leif Sawyer
>Sent: Tuesday, October 07, 1997 4:44 PM
>To:
[email protected]
>Subject: Chroot'd server denying access to files
>
>I'm trying to figure out how to deny user access to certain files.
>
>I've got my system set up as a chroot'd server, and i've killed read
>permissions on all the secured directories. However, any user
>can still type
>
>> get /etc/passwd
>
>and have the full password list. Is there a way to secure this?
>
>
>
>
>
From
[email protected] Tue Oct 7 20:11:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA08489;
Tue, 7 Oct 1997 20:00:56 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA03026
for <
[email protected]>; Tue, 7 Oct 1997 19:58:45 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id TAA06112;
Tue, 7 Oct 1997 19:58:49 -0500
Message-Id: <
[email protected]>
Date: Tue, 7 Oct 1997 19:58:49 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Leif Sawyer <
[email protected]>
Cc: "'
[email protected]'" <
[email protected]>
Subject: Re: Chroot'd server denying access to files
In-Reply-To: <c=US%a=_%p=gci%
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Tue, 7 Oct 1997, Leif Sawyer wrote:
> I'm trying to figure out how to deny user access to certain files.
>
> I've got my system set up as a chroot'd server, and i've killed read
> permissions on all the secured directories. However, any user
> can still type
>
> > get /etc/passwd
>
> and have the full password list. Is there a way to secure this?
In /etc/ftpaccess:
# Hobbit's debian extensions
noretrieve /etc/passwd /etc/group /etc/ /bin/ core
This is covered in the documentation included in the beta distribution.
Read permissions have to do with reading the directory contents, not files
in the directory. There is a big difference.
As explained in the guest howto, you shouldn't have the full password list
in the chrooted account anyway. It should be the absolute bare minimum,
with either bogus passwords or * where the passwords normally are.
Are you sure the account is chrooted?
-- Michael
From
[email protected] Tue Oct 7 21:36:32 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA16827;
Tue, 7 Oct 1997 21:24:58 -0500 (CDT)
Received: from blacker.network1.net (
[email protected] [208.142.243.15])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA04612
for <
[email protected]>; Tue, 7 Oct 1997 21:17:30 -0500 (CDT)
Received: from localhost (aholtz@localhost) by blacker.network1.net (8.8.5/8.8.5) with SMTP id WAA32066 for <
[email protected]>; Tue, 7 Oct 1997 22:17:13 -0400
Message-Id: <
[email protected]>
Date: Tue, 7 Oct 1997 22:17:13 -0400 (EDT)
Reply-To: Aaron Holtz <
[email protected]>
Sender:
[email protected]
From: Aaron Holtz <
[email protected]>
To:
[email protected]
Subject: Wildcard/globbing in ftpaccess file
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Authentication-Warning: blacker.network1.net: aholtz owned process doing -bs
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
This talk of 'noretrieve' in the ftpaccess file has me wondering:
Would it be difficult to implement wildcards in the ftpaccess file?
For example:
noretrieve /etc/*
noretrieve /bin/*
That way no file in that directory could be retrieved? I've tried some
combinations in the ftpaccess file, but I can simply 'cd' to /etc/ and
grab the file that I want that isn't explicitly denied. I'm working on
fixing this by setting up a chroot'd guest account filesystem, but since
there are 30,000+ accounts on this server, a quick fix would be nice as
well. I'm explicitly denying files right now, but was wondering if there
is a better approach using the existing code. A man page I read
stated no globbing is done, but someone out there may have hacked a
local version for themselves that does this. Thanks!
--Aaron
--------------------------------------------------------------------------
Aaron Holtz
First Network Group "The First Name in Internetworking"
Manager, UNIX Systems Admin
Email:
[email protected]
"Those that do not accept Unix are doomed to reproduce it"
--------------------------------------------------------------------------
From
[email protected] Tue Oct 7 23:19:30 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id XAA11667;
Tue, 7 Oct 1997 23:11:21 -0500 (CDT)
Received: from blacker.network1.net (
[email protected] [208.142.243.15])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id XAA21494
for <
[email protected]>; Tue, 7 Oct 1997 23:04:57 -0500 (CDT)
Received: from localhost (aholtz@localhost) by blacker.network1.net (8.8.5/8.8.5) with SMTP id AAA32739 for <
[email protected]>; Wed, 8 Oct 1997 00:04:51 -0400
Message-Id: <
[email protected]>
Date: Wed, 8 Oct 1997 00:04:51 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Aaron Holtz <
[email protected]>
To:
[email protected]
Subject: Re: Wildcard/globbing in ftpaccess file (update)
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Authentication-Warning: blacker.network1.net: aholtz owned process doing -bs
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
In an update to my previous question, I was told that what should be the
case is that if I use:
noretrieve /etc/
then that would prohibit any file from being gotten out of the /etc
directory. This is true if I try and grab the file by doing:
> get /etc/file
However, if I:
> cd /etc
> get file
I can retrieve the file!!! This looks to be a bug in the intended coding
for the noretrieve option. It was suggested to me to report this bug to
Stan, which I (as soon as I find the proper address!) will do. Just an
FYI and an update to the list. If anyone has the proper
method/channel/email address for bug reporting, I'd greatly appreciate it.
--Aaron
>This talk of 'noretrieve' in the ftpaccess file has me wondering:
>Would it be difficult to implement wildcards in the ftpaccess file?
>For example:
>
>noretrieve /etc/*
>noretrieve /bin/*
>
>
>That way no file in that directory could be retrieved? I've tried some
>combinations in the ftpaccess file, but I can simply 'cd' to /etc/ and
>grab the file that I want that isn't explicitly denied. I'm working on
>fixing this by setting up a chroot'd guest account filesystem, but since
>there are 30,000+ accounts on this server, a quick fix would be nice as
>well. I'm explicitly denying files right now, but was wondering if there
>is a better approach using the existing code. A man page I read
>stated no globbing is done, but someone out there may have hacked a
>local version for themselves that does this. Thanks!
>
>
> --Aaron
>
>--------------------------------------------------------------------------
>Aaron Holtz
>First Network Group "The First Name in Internetworking"
>Manager, UNIX Systems Admin
>Email:
[email protected]
>"Those that do not accept Unix are doomed to reproduce it"
>--------------------------------------------------------------------------
>
>
>
>
From
[email protected] Tue Oct 7 23:38:01 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id XAA08260;
Tue, 7 Oct 1997 23:29:54 -0500 (CDT)
Received: from staff2.texas.net (
[email protected] [207.207.0.39])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id XAA19726
for <
[email protected]>; Tue, 7 Oct 1997 23:27:43 -0500 (CDT)
Received: (from mikedoug@localhost) by staff2.texas.net (8.8.5/8.7.5) id XAA16215; Tue, 7 Oct 1997 23:27:37 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Tue, 7 Oct 1997 23:27:37 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Douglass <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: Wildcard/globbing in ftpaccess file (update)
In-Reply-To: <
[email protected]>; from Aaron Holtz on Wed, Oct 08, 1997 at 12:04:51AM -0400
References: <
[email protected]> <
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.74
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Wed, Oct 08, 1997 at 12:04:51AM -0400, Aaron Holtz said:
This is almost exactly the type of option that I was asking about
a while back... Well, almost exactly--but not quite. If this
feature is programmed into wu-ftpd, then programming a 'retrieve
yada/yada/yada' should be simplistic. Basically, what I'd like to
be able to do is specify:
noretrieve *
retrieve ~/
(~ behind a symbol for the home dir)
The reason I say this should be easy is because you must be checking
the files being retrieved against the list of 'noretrieve' before sending
the file. And, this is the same thing--except instead of specifying those
files that can't be retrieved, I'd like to specify directories that can be
retrieved from. (And if that is possible, then being able to use wild
cards for the current user's home directory would be simplistic...)
Thoughts.. Just thoughts...
> In an update to my previous question, I was told that what should be the
> case is that if I use:
>
> noretrieve /etc/
>
> then that would prohibit any file from being gotten out of the /etc
> directory. This is true if I try and grab the file by doing:
>
> > get /etc/file
>
>
> However, if I:
>
> > cd /etc
> > get file
>
>
> I can retrieve the file!!! This looks to be a bug in the intended coding
> for the noretrieve option. It was suggested to me to report this bug to
> Stan, which I (as soon as I find the proper address!) will do. Just an
> FYI and an update to the list. If anyone has the proper
> method/channel/email address for bug reporting, I'd greatly appreciate it.
>
>
>
> --Aaron
>
>
> >This talk of 'noretrieve' in the ftpaccess file has me wondering:
> >Would it be difficult to implement wildcards in the ftpaccess file?
> >For example:
> >
> >noretrieve /etc/*
> >noretrieve /bin/*
> >
> >
> >That way no file in that directory could be retrieved? I've tried some
> >combinations in the ftpaccess file, but I can simply 'cd' to /etc/ and
> >grab the file that I want that isn't explicitly denied. I'm working on
> >fixing this by setting up a chroot'd guest account filesystem, but since
> >there are 30,000+ accounts on this server, a quick fix would be nice as
> >well. I'm explicitly denying files right now, but was wondering if there
> >is a better approach using the existing code. A man page I read
> >stated no globbing is done, but someone out there may have hacked a
> >local version for themselves that does this. Thanks!
> >
> >
> > --Aaron
> >
> >--------------------------------------------------------------------------
> >Aaron Holtz
> >First Network Group "The First Name in Internetworking"
> >Manager, UNIX Systems Admin
> >Email:
[email protected]
> >"Those that do not accept Unix are doomed to reproduce it"
> >--------------------------------------------------------------------------
> >
> >
> >
> >
--
Michael Douglass
Texas Networking, Inc.
"For all that you see, there is much hidden from your view;
for all that you know, there is truth yet to be learned."
- Me, some years ago.
From
[email protected] Wed Oct 8 00:17:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id AAA21127;
Wed, 8 Oct 1997 00:08:58 -0500 (CDT)
Received: from blacker.network1.net (
[email protected] [208.142.243.15])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id AAA12180
for <
[email protected]>; Wed, 8 Oct 1997 00:04:19 -0500 (CDT)
Received: from localhost (aholtz@localhost) by blacker.network1.net (8.8.5/8.8.5) with SMTP id BAA00349 for <
[email protected]>; Wed, 8 Oct 1997 01:04:08 -0400
Message-Id: <
[email protected]>
Date: Wed, 8 Oct 1997 01:04:08 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Aaron Holtz <
[email protected]>
To:
[email protected]
Subject: Wildcard/globbing in ftpaccess file (update II)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Authentication-Warning: blacker.network1.net: aholtz owned process doing -bs
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Folks:
In testing a bit further, I've determined that no form
of:
noretrieve /etc/
works. I made an error on my part that was keeping something like:
> get /etc/file
from working. Maybe we're looking at a feature request at this point and
not a bug in the code since it doesn't appear to be working??
Just an FYI for anyone following.....
--Aaron
--------------------------------------------------------------------------
Aaron Holtz
First Network Group "The First Name in Internetworking"
Manager, UNIX Systems Admin
Email:
[email protected]
"Those that do not accept Unix are doomed to reproduce it"
--------------------------------------------------------------------------
From
[email protected] Wed Oct 8 06:10:47 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA11382;
Wed, 8 Oct 1997 06:02:04 -0500 (CDT)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id FAA11985
for <
[email protected]>; Wed, 8 Oct 1997 05:57:28 -0500 (CDT)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id MAA30937
for <
[email protected]>; Wed, 8 Oct 1997 12:56:04 GMT
Message-Id: <
[email protected]>
Date: Wed, 8 Oct 1997 12:56:03 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To:
[email protected]
Subject: Proposition for safer default-config
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Problem: if one switches from a Debian wu-ftpd to academ one might get an
insecure server where download of f.ex. /etc/passwd becomes
possible because users are not chrooted.
Version: from Debian wu-ftpd (maybe original wu-ftpd too, if anybody's
interested, then please test it with the original) to academ
(2.4.2.15 and a few lower ones)
Details: Original ftpaccess file (not relevant stuff left out!):
class any real,guest,anonymous *
Original /etc/passwd (dito):
a_user:x:99:class_B_users:I am a user:/home/a_user/./:/bin/true
Here deb-wu-ftp will chroot to the users dir, where as academ
doesn't. That means that if you do not test your setup with all
possible groups, you might have missed one, and that one will
have access to the whole file-sys.
The academ doc/examples/ftpaccess does exactly the same thing:
class all real,guest,anonymous *
that means that by default all users with a correct
username/passwd will be able to see the whole fs, as the setting:
private yes
seems to be the default.
The other thing is that if a user is not in the "guestgroup", he's
automatically private so he doesn't get chrooted.
Proposition: Either:
a) change academs behaveour to >allways< chroot if a users homedir
contains /./
b) change the default from "private yes" to "private no".
c) enforce the use of "privategroup groups" with the effect that
if someone's not in privategroup then he's at least in
"guestgroup". Even better would be if not in privategroup and
not in guestgroup then not allowed.
d) change at least the doc/examples from
class all real,guest,anonymous *
to
class all real,guest,anonymous *
private no
# guestgroup's empty
guestgroup
Comment: Well this is my first post here, I hope you people take it easy.
I think I'm pretty stupid but not an idiot and as such I have
allready commited the above stated misstake, which happily enough
nobody had time or was willing to exploit. Personaly I think
implementing points a) to c) would be a good idea.
Hope this post is of use. Greets, and thanks to all the activists
*t
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
Tom: So far, der winter kommt, ich schaff mir glaub ich noch ein paar
Tom: Zyxel traffos an...
Roli: Aber genug davon nehmen. Wenn die Dinger kapput gehen werden sie
Roli: nicht mehr warm.
From
[email protected] Wed Oct 8 09:43:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA32327;
Wed, 8 Oct 1997 09:33:47 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA20815
for <
[email protected]>; Wed, 8 Oct 1997 09:29:55 -0500 (CDT)
Received: from egate2.mnet.uswest.com (egate-ne1.mnet.uswest.com [151.117.138.135])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id IAA15213
for <
[email protected]>; Wed, 8 Oct 1997 08:29:24 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate2.mnet.uswest.com (8.7.1/8.7.1) with SMTP id JAA06949 for <
[email protected]>; Wed, 8 Oct 1997 09:29:23 -0500 (CDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id JAA08000 for <
[email protected]>; Wed, 8 Oct 1997 09:35:49 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA2903
for <
[email protected]>; Wed, 8 Oct 1997 08:29:21 -0600
Message-Id: <
[email protected]>
Date: Wed, 08 Oct 1997 08:32:37 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: Tracking user ratios
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Is there any way to track user send/get ratios in wu-ftpd? I didn't see
anything in the source or docs, but thought I'd ask.
If there's not, would it be possible to write a 'log wrapper' that tails
the log files and makes adjustments to ftpaccess? And if it were
possible (I'm assuming it is), comments on feasability?
-Brad Waite
From
[email protected] Wed Oct 8 09:52:41 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA12004;
Wed, 8 Oct 1997 09:43:21 -0500 (CDT)
Received: from earth.astro.umd.edu (
[email protected] [129.2.163.100])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA31681
for <
[email protected]>; Wed, 8 Oct 1997 09:32:24 -0500 (CDT)
Received: (wls@localhost)
by earth.astro.umd.edu (8.8.6/8.6.6mWLS)
id KAA22062; Wed, 8 Oct 1997 10:32:00 -0400 (EDT)
Message-Id: <
[email protected]>
Date: Wed, 8 Oct 1997 10:32:00 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (William L. Sebok)
To:
[email protected],
[email protected]
Subject: Re: Wildcard/globbing in ftpaccess file
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Aaron Holtz <
[email protected]> said:
> This talk of 'noretrieve' in the ftpaccess file has me wondering:
> Would it be difficult to implement wildcards in the ftpaccess file?
> For example:
>
> noretrieve /etc/*
> noretrieve /bin/*
>
>
> That way no file in that directory could be retrieved?
On April 22.1997 I posted to this list a patch which implements this. It
implements regular expression type globbing
(i.e.
notretrieve /incoming/.*
). I have been running with this patch installed from then until now
(wu-2.4.2-academ[BETA-15]).
Bill Sebok Computer Software Manager, Univ. of Maryland, Astronomy
Internet:
[email protected] URL:
http://www.astro.umd.edu/~wls/
---- Begin Quote ----
I consider this patch a hack. I believe that the proper fix would implement a
"download" command with the same syntax and options as the present "upload"
command. Still, this patch did the job and was quick to implement.
Bill Sebok Computer Software Manager, Univ. of Maryland, Astronomy
Internet:
[email protected] URL:
http://www.astro.umd.edu/~wls/
Patch against wu-ftpd-2.4.2-beta-13:
*** src/extensions.c.ORIG Mon Mar 3 04:39:54 1997
--- src/extensions.c Mon Apr 21 16:51:06 1997
***************
*** 1113,1118 ****
--- 1113,1120 ----
}
/* The following is from the Debian add-ons. */
+ /* hacked by W. Sebok (
[email protected]) to support regex expressions in
+ * noretrieve expressions */
#define lbasename(x) (strrchr(x,'/')?1+strrchr(x,'/'):x)
***************
*** 1125,1130 ****
--- 1127,1133 ----
#endif
{
char cwd[MAXPATHLEN+1], realwd[MAXPATHLEN+1], realname[MAXPATHLEN+1];
+ char *p, *q;
int i;
struct aclmember *entry = NULL;
***************
*** 1144,1161 ****
if (ARG0 == (char *)NULL)
continue;
for (i = 0; i< MAXARGS &&
! (entry->arg[i] != (char *)NULL) && (*(entry->arg[i]) !='\0'); i++)
! if (strcmp (((*(entry->arg[i]) == '/') ? realname :
! lbasename (realname)), entry->arg[i]) == 0)
{
! reply (550, "%s is marked unretrievable", entry->arg[i]);
return 1;
}
}
return 0;
}
--- 1147,1209 ----
if (ARG0 == (char *)NULL)
continue;
for (i = 0; i< MAXARGS &&
! ((q = entry->arg[i]) != (char *)NULL) && (*q !='\0'); i++) {
! p = (*q == '/') ? realname : lbasename (realname);
! if (strcmp (p , q) == 0 || regexmatch(p, q))
{
! reply (550, "%s is marked unretrievable", p);
return 1;
}
+ }
}
return 0;
}
+ int
+ regexmatch(name, rgexp)
+ char *name, *rgexp;
+ {
+ #ifdef M_UNIX
+ # ifdef REGEX
+ char *regp;
+ # endif
+ #endif
+ #ifdef REGEXEC
+ regex_t regexbuf;
+ regmatch_t regmatchbuf;
+ #else
+ char *sp;
+ #endif
+ #if defined(REGEXEC)
+ if (regcomp(®exbuf, rgexp, REG_EXTENDED) != 0) {
+ reply(553, "REGEX error");
+ #elif defined(REGEX)
+ if ((sp = regcmp(rgexp, (char *) 0)) == NULL) {
+ reply(553, "REGEX error");
+ #else
+ if ((sp = re_comp(rgexp)) != 0) {
+ perror_reply(553, sp);
+ #endif
+ return(0);
+ }
+ #if defined(REGEXEC)
+ if (regexec(®exbuf, name, 1, ®matchbuf, 0) != 0) {
+ #elif defined(REGEX)
+ # ifdef M_UNIX
+ regp = regex(sp, name);
+ free(sp);
+ if (regp == NULL) {
+ # else
+ if ((regex(sp, name)) == NULL) {
+ # endif
+ #else
+ if ((re_exec(name)) != 1) {
+ #endif
+ return(0);
+ }
+ return(1);
+ }
From
[email protected] Wed Oct 8 09:58:29 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA30201;
Wed, 8 Oct 1997 09:49:35 -0500 (CDT)
Received: from sod.off.net (
[email protected] [207.54.131.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA01128
for <
[email protected]>; Wed, 8 Oct 1997 09:48:24 -0500 (CDT)
Received: from localhost (pschwan@localhost) by sod.off.net (8.8.5/8.6.9) with SMTP id KAA10912; Wed, 8 Oct 1997 10:44:47 -0400
Message-Id: <
[email protected]>
Date: Wed, 8 Oct 1997 10:44:47 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Phil Schwan <
[email protected]>
To: Brad Waite <
[email protected]>
Cc: wu-ftpd <
[email protected]>
Subject: Re: Tracking user ratios
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender:
[email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Wed, 8 Oct 1997, Brad Waite wrote:
> Is there any way to track user send/get ratios in wu-ftpd? I didn't see
> anything in the source or docs, but thought I'd ask.
>
> If there's not, would it be possible to write a 'log wrapper' that tails
> the log files and makes adjustments to ftpaccess? And if it were
> possible (I'm assuming it is), comments on feasability?
Well, I was planning on sometime relatively soon working on putting ratios
into the code. If you wanna hang on, I might have it done in a weekend or
two depending on just how many midterms and papers are due :)
Incidentally, if anyone has any suggestions as to how this should be done
that they want me to consider, just drop me a note. Put something in
capital letters in the title like "RATIO SUGGESTIONS" or I'm apt to
accidentally delete it as I'm "reading" linux-kernel :)
Phil
--------------------------------------------------------------------------
'The ultimate seal on any software product is not any sort of kite mark or
standards conformance certificate, it's that label that says, "Destruction
tested by Alan Cox.... Survived."' -- Clive Dolphin (3Com PDD)
From
[email protected] Wed Oct 8 10:17:03 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA05641;
Wed, 8 Oct 1997 10:08:22 -0500 (CDT)
Received: from gatekeeper.ph.ucla.edu (
[email protected] [128.97.116.86])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA02773
for <
[email protected]>; Wed, 8 Oct 1997 10:07:50 -0500 (CDT)
Received: from emerald (emerald.ph.ucla.edu [128.97.25.5]) by gatekeeper.ph.ucla.edu (8.6.12/8.6.9) with SMTP id IAA20671; Wed, 8 Oct 1997 08:07:47 -0700
Message-Id: <
[email protected]>
Date: Mon, 08 Sep 1997 08:11:44 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Brian Pape <
[email protected]>
To:
[email protected]
Cc: <
[email protected]>
Subject: Re: Chroot'd server denying access to files
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: Windows Eudora Pro Version 3.0 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>I'm trying to figure out how to deny user access to certain files.
>
>I've got my system set up as a chroot'd server, and i've killed read
>permissions on all the secured directories. However, any user
>can still type
>
>> get /etc/passwd
>
>and have the full password list. Is there a way to secure this?
Either make /etc/passwd unreadable by users or chroot them somewhere.
Brian Pape
Computer Resource Services
University California Los Angeles
[email protected]
From
[email protected] Wed Oct 8 14:32:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA13491;
Wed, 8 Oct 1997 14:21:35 -0500 (CDT)
Received: from GIRI.INTRO.CS.CMU.EDU (GIRI.INTRO.CS.CMU.EDU [128.2.191.201])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA27026
for <
[email protected]>; Wed, 8 Oct 1997 14:18:09 -0500 (CDT)
Received: from localhost (winters@localhost)
by GIRI.INTRO.CS.CMU.EDU (8.8.5/8.8.5) with SMTP id PAA32060;
Wed, 8 Oct 1997 15:18:02 -0400
Message-Id: <
[email protected]>
Date: Wed, 8 Oct 1997 15:18:02 -0400 (EDT)
Reply-To: "David C. Winters" <
[email protected]>
Sender:
[email protected]
From: "David C. Winters" <
[email protected]>
To:
[email protected]
Cc: David Winters <
[email protected]>
Subject: Connection problem with disconnected outside network
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I need some advice on where I should start looking to solve a problem. I
maintain a couple of clusters of Linux boxen that are used as teaching
classrooms during the day, and are open to students at night. I'm running
Red Hat Linux's 4.2 distribution, with the 2.0.30 kernel. The instructors'
machine in each room is running wu-ftpd 2.4.2b12 so the students can turn in
work after quizzes/exams. The machines are on AFS and /bin/login first
talks to the AFS cell's Kerberos servers to authenticate users before
looking at the local /etc/passwd.
During exams, we isolate the cluster(s) from the network by pulling an
Ethernet cable. The problem is that while isolated, the students' machines
can't access the wu-ftpd server running on the instructor's machine. The
instructor's machine is listed in all the /etc/hosts files, but "ftp class1"
is met with nothing--the ftp process simply hangs. Control-C won't
interrupt it; we have to put it in the background with Control-Z and then
kill it.
There's no question that the hang is caused by the cluster being isolated.
If the Ethernet cable is replaced while a couple of machines are trying to
connect, they'll finish making the connection almost immediately.
My first thought was that wu-ftpd makes use of the machine's /bin/login in
order to authenticate in, even when you want to attach as "anonymous". If
that was true, the hang could be explained as being the interval during
which /bin/login is waiting to time out against the AFS Kerberos servers
before looking at the local /etc/passwd. I had kept the machines' original
/bin/login and dropped it in in place of the AFS-Kerberos version, with the
same result: the clients hang upon initially attaching. I tried
substituting the original /bin/login on a couple of client machines, with
the same result. The clients just can't make the ftp connection to the
server while the network is isolated.
What mechanism/file does wu-ftpd use to authenticate clients and establish
the connection? I had thought that it used /bin/login, but substituting
different ones didn't change the outcome. I really need to come up with
some way of making this work. (Having to have the network disconnected
causes a number of headaches, but that's not my decision.) Thanks.
D.
David
[email protected], CLSA "You are a fiend and a coward, and
Office: 3503 WeH, x86720 you have bad breath."
-- Golgotha to a luser, Sep' 97
From
[email protected] Wed Oct 8 14:52:26 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA14426;
Wed, 8 Oct 1997 14:09:39 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA29398
for <
[email protected]>; Wed, 8 Oct 1997 14:08:09 -0500 (CDT)
Received: from egate.mnet.uswest.com (egate-co1.mnet.uswest.com [151.119.130.8])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id NAA05250
for <
[email protected]>; Wed, 8 Oct 1997 13:07:17 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate.mnet.uswest.com (8.7.1/8.7.1) with SMTP id NAA12762 for <
[email protected]>; Wed, 8 Oct 1997 13:07:16 -0600 (MDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id OAA09624 for <
[email protected]>; Wed, 8 Oct 1997 14:13:42 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA29915
for <
[email protected]>; Wed, 8 Oct 1997 13:07:13 -0600
Message-Id: <
[email protected]>
Date: Wed, 08 Oct 1997 13:10:27 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: [Fwd: Re: Tracking user ratios (RATIO SUGGESTIONS)]
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Brad Waite wrote:
*DISCLAIMER*
I _just_ started looking at the code today, so forgive any
ignorance.
It looks to me that the easiest way would be to put additional flags in
the routines that handle the RETR- and STOR-type functions. From what
I
gather, that's done in ftpcmd.y.
Either way, when a STOR command is finished, add the number of (STOR'd
bytes received * ratio) to the user's existing byte count. Since we'd
want the ratio state to be session-independent, we'd store it to some
sort of file.
On the RETR side, we'd have to compare the user's byte count to the
size
of file requested before starting the RETR and puke if he doesn't have
enough credit. After the command has finished, we'd need to subtract
RETR'd bytes from the byte_count.
Another thing to consider is the option of a file ratio as opposed to a
byte ratio. Still the same concept.
I've not seen a site that stores ratios for guest or anon users, but
that might be possible if you stored/looked up the user by a
username/passwd pair or username/remoteIP pair. Obviously, this
wouldn't be accurate nor secure, but would add _some_ functionality.
I see the ftpaccess entry looking something like this:
ratio CLASS RATIO TYPE BELOW-RATIO-MSG (format)
ratio local 1:5 byte /usr/local/lib/ftpd/below.txt
(example)
ratio remote 1:2 file /usr/local/lib/ftpd/below.txt
I hope I haven't overstated the obvious.
-Brad
Phil Schwan wrote:
>
> On Wed, 8 Oct 1997, Brad Waite wrote:
>
> > Is there any way to track user send/get ratios in wu-ftpd? I
didn't see
> > anything in the source or docs, but thought I'd ask.
> >
> > If there's not, would it be possible to write a 'log wrapper' that
tails
> > the log files and makes adjustments to ftpaccess? And if it were
> > possible (I'm assuming it is), comments on feasability?
>
> Well, I was planning on sometime relatively soon working on putting
ratios
> into the code. If you wanna hang on, I might have it done in a
weekend or
> two depending on just how many midterms and papers are due :)
>
> Incidentally, if anyone has any suggestions as to how this should be
done
> that they want me to consider, just drop me a note. Put something in
> capital letters in the title like "RATIO SUGGESTIONS" or I'm apt to
> accidentally delete it as I'm "reading" linux-kernel :)
>
> Phil
>
>
--------------------------------------------------------------------------
> 'The ultimate seal on any software product is not any sort of kite
mark or
> standards conformance certificate, it's that label that says,
"Destruction
> tested by Alan Cox.... Survived."' -- Clive Dolphin (3Com PDD)
From
[email protected] Wed Oct 8 15:02:13 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA26385;
Wed, 8 Oct 1997 14:53:41 -0500 (CDT)
Received: from news.IAEhv.nl (
[email protected] [194.151.64.4])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA27442
for <
[email protected]>; Wed, 8 Oct 1997 14:46:46 -0500 (CDT)
Received: from LOCAL (uucp@localhost)
by news.IAEhv.nl (8.6.13/1.63) with IAEhv.nl; pid 169
on Wed, 8 Oct 1997 19:46:31 GMT; id TAA00169
efrom:
[email protected]; eto:
[email protected]
Received: (from news@localhost)
by Garfield.IAEhv.nl (8.8.6/8.8.5) id UAA07095;
Wed, 8 Oct 1997 20:44:47 +0200
Message-Id: <
[email protected]>
Date: 8 Oct 1997 18:44:47 GMT
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected]
Subject: Re: Wildcard/globbing in ftpaccess file (update)
References: <
[email protected]>
X-no-archive: yes
X-bofh-archive: yes
X-Newsreader: TIN [UNIX 1.3 unoff BETA 970324; i586 Linux 2.0.28]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Pink elephants with an attitude inspired Aaron Holtz <
[email protected]> to tell garfield.mail.wu-ftpd:
: noretrieve /etc/
: then that would prohibit any file from being gotten out of the /etc
: directory. This is true if I try and grab the file by doing:
: > get /etc/file
: > cd /etc
: > get file
: I can retrieve the file!!! This looks to be a bug in the intended coding
I use noretrieve passwd group core
which blocks downloads of the files I don't want downloaded.. from any
directory.. globbing would be easier, but as far as I can tell from the
above example it makes sense.. there's no /etc/ in the filespec.
If the code was changed to reflect the full path you may run into problems
with symlinked directories where the 'real' path is not the link but you
might be using the link in ftpaccess.
: for the noretrieve option. It was suggested to me to report this bug to
: Stan, which I (as soon as I find the proper address!) will do. Just an
: FYI and an update to the list. If anyone has the proper
: method/channel/email address for bug reporting, I'd greatly appreciate it.
[email protected] though
[email protected] is the regular bugs address
(I mean.. it's in the top-level README file.. not that hard too find is it?
:)
--
Perry Rovers (
[email protected])
From
[email protected] Wed Oct 8 15:03:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA27759;
Wed, 8 Oct 1997 14:52:57 -0500 (CDT)
Received: from news.IAEhv.nl (
[email protected] [194.151.64.4])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA26476
for <
[email protected]>; Wed, 8 Oct 1997 14:46:30 -0500 (CDT)
Received: from LOCAL (uucp@localhost)
by news.IAEhv.nl (8.6.13/1.63) with IAEhv.nl; pid 164
on Wed, 8 Oct 1997 19:46:29 GMT; id TAA00164
efrom:
[email protected]; eto:
[email protected]
Received: (from news@localhost)
by Garfield.IAEhv.nl (8.8.6/8.8.5) id UAA06835;
Wed, 8 Oct 1997 20:38:00 +0200
Message-Id: <
[email protected]>
Date: 8 Oct 1997 18:37:59 GMT
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected]
Subject: Re: linux/version.h: No such file or directory
References: <
[email protected]>
X-no-archive: yes
X-bofh-archive: yes
X-Newsreader: TIN [UNIX 1.3 unoff BETA 970324; i586 Linux 2.0.28]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Pink elephants with an attitude inspired Tom <
[email protected]> to tell garfield.mail.wu-ftpd:
: Hello. Why I try to compile wu-ftpd-2.4.2-beta-15 under Linux 2.0.29
: (Slackware) i get the error "config.h:5: linux/version.h: No such file or
: directory". How can i fix this?
Add the Linux kernel sources to your system or make a symlink from
/usr/src/linux-version to /usr/src/linux perhaps?
--
Perry Rovers (
[email protected])
From
[email protected] Wed Oct 8 15:23:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA21291;
Wed, 8 Oct 1997 15:11:54 -0500 (CDT)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA00173
for <
[email protected]>; Wed, 8 Oct 1997 15:09:24 -0500 (CDT)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id WAA17097
for <
[email protected]>; Wed, 8 Oct 1997 22:08:01 GMT
Message-Id: <
[email protected]>
Date: Wed, 8 Oct 1997 22:08:01 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To:
[email protected]
Subject: patch to set perm/gid of uploaded guest files
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Well, it's my second posting (within a day), I hope I'm not messing
with the list-culture here...
The patch adds the possibility to define permissions and groupid of files
uploaded by the guestgroup through ftpaccess. Comments very wellcome.
Info:
http://www.spin.ch/SPIN/tpo/homepage/linux/academ-patch.html
Patch:
http://www.spin.ch/SPIN/tpo/homepage/linux/academ2.4.2.15-patch
*
t
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
From
[email protected] Wed Oct 8 15:29:48 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA21258;
Wed, 8 Oct 1997 15:24:04 -0500 (CDT)
Received: from finwe.jrnl.com (FINWE.JRNL.COM [199.244.139.200])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA29850
for <
[email protected]>; Wed, 8 Oct 1997 15:19:41 -0500 (CDT)
Received: from jrnl.com ([152.163.66.131]) by finwe.jrnl.com
(post.office MTA v2.0 0813 ID# 0-29013) with ESMTP id AAA25915;
Wed, 8 Oct 1997 16:19:57 -0400
Message-Id: <
[email protected]>
Date: Wed, 08 Oct 1997 16:18:35 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Jenice Darner <
[email protected]>
To: "David C. Winters" <
[email protected]>,
WU-FTP discussion <
[email protected]>
Subject: Re: Connection problem with disconnected outside network
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: thorn
X-Mailer: Mozilla 4.03 [en] (X11; I; IRIX 6.2 IP22)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
David C. Winters wrote:
>
> I need some advice on where I should start looking to solve a problem. I
> maintain a couple of clusters of Linux boxen that are used as teaching
> classrooms during the day, and are open to students at night. I'm running
> Red Hat Linux's 4.2 distribution, with the 2.0.30 kernel. The instructors'
> machine in each room is running wu-ftpd 2.4.2b12 so the students can turn in
> work after quizzes/exams. The machines are on AFS and /bin/login first
> talks to the AFS cell's Kerberos servers to authenticate users before
> looking at the local /etc/passwd.
>
> During exams, we isolate the cluster(s) from the network by pulling an
> Ethernet cable. The problem is that while isolated, the students' machines
> can't access the wu-ftpd server running on the instructor's machine. The
> instructor's machine is listed in all the /etc/hosts files, but "ftp class1"
> is met with nothing--the ftp process simply hangs. Control-C won't
> interrupt it; we have to put it in the background with Control-Z and then
> kill it.
>
> There's no question that the hang is caused by the cluster being isolated.
> If the Ethernet cable is replaced while a couple of machines are trying to
> connect, they'll finish making the connection almost immediately.
>
> My first thought was that wu-ftpd makes use of the machine's /bin/login in
> order to authenticate in, even when you want to attach as "anonymous". If
> that was true, the hang could be explained as being the interval during
> which /bin/login is waiting to time out against the AFS Kerberos servers
> before looking at the local /etc/passwd. I had kept the machines' original
> /bin/login and dropped it in in place of the AFS-Kerberos version, with the
> same result: the clients hang upon initially attaching. I tried
> substituting the original /bin/login on a couple of client machines, with
> the same result. The clients just can't make the ftp connection to the
> server while the network is isolated.
>
> What mechanism/file does wu-ftpd use to authenticate clients and establish
> the connection?
>From the O'Reilly Managing Internet Information Services:
"Two mechanisms are available for authenticating remote users; the very
common but pretty-darn-insecure 'none', and RFC 931 authentication."
the RFC 931 is a "request for comment" that needs to be run on the host
side that the user is coming from...which is not always the case. If you
look at your wu-ftp log output, the xferlog files, this action is logged
in the 16th field. A 0 denotes 'none' is being used, and a 1 denotes the
RFC 931.
With 'none' the ftpd is accepting that the host that the user is ftping
from is actually the real host name.
> I had thought that it used /bin/login, but substituting
> different ones didn't change the outcome. I really need to come up with
> some way of making this work. (Having to have the network disconnected
> causes a number of headaches, but that's not my decision.) Thanks.
Most likely, the easiest way to solve this is to install tcp/ip wrappers
and rotate the /etc/hosts.allow & /etc/hosts.deny files through a cron
entry. However...you must be very careful doing this while running
Kerberos...
The advantages to this are that you can control what kind of access
anyone gets to your network. Decide if there are time chunks that the
students can upload/download via ftp and create an appropriate
hosts.allow file, have cron put the file in place during those times.
You get a nice log of activity and all attempts to ftp outside of that
time is also logged through the wrappers and so you can track the needs
of the students/instructors. There shouldn't be a reason why you need to
disconnect any ethernet cabling.
Another good idea, since you are using Red Hat is to set up a Red Hat
firewall and filter through that. The firewall would be more powerful in
that not only tcp packets would be filtered, but udp and snmp packets
can be blocked/monitored. But that would make another machine on your
network that would need to be cared for...it's more work, but more
powerful.
--
--------------------
Denise Garner
FTP Administrator
Internet Operations
From
[email protected] Thu Oct 9 09:45:45 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA03607;
Thu, 9 Oct 1997 09:36:35 -0500 (CDT)
Received: from samba.anu.edu.au (samba.anu.edu.au [150.203.164.44])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA11249
for <
[email protected]>; Thu, 9 Oct 1997 09:31:12 -0500 (CDT)
Received: from tridge@localhost by samba.anu.edu.au id <12583083-28104>; Fri, 10 Oct 1997 00:13:29 +1000
Message-Id: <
[email protected]>
Date: Fri, 10 Oct 1997 00:13:27 +1000
Reply-To:
[email protected]
Sender:
[email protected]
From: Andrew Tridgell <
[email protected]>
To:
[email protected]
Cc:
[email protected],
[email protected],
[email protected],
[email protected],
[email protected],
[email protected],
[email protected]
Subject: Re: GPL Violations
In-Reply-To: <
[email protected]>
(
[email protected])
X-Sender: Andrew Tridgell <
[email protected]>
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Raymond,
Thanks for letting me know.
I'll contact them and give them a reminder about the GPL on Samba.
I would appreciate it if you could send me the output of "strings
smbd" and "strings nmbd" or whatever they call the Samba daemons on
their system.
I am actually greatly in favour of companies using GPLd software in
commercial systems, as long as they remain within the GPL. Hopefully
this can be sorted out amicably and we can welcome them aboard as
supporters of free software.
Regards, Andrew
--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Andrew Tridgell Dept. of Computer Science
email:
[email protected] Australian National University
Phone: +61 6 254 8209 Fax: +61 6 249 0010
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
From
[email protected] Thu Oct 9 09:57:27 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA19850;
Thu, 9 Oct 1997 09:47:06 -0500 (CDT)
Received: from summit.bor.ohio.gov (summit.bor.ohio.gov [156.63.16.15])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA18484
for <
[email protected]>; Thu, 9 Oct 1997 09:40:24 -0500 (CDT)
Received: by summit.bor.ohio.gov (8.6.13/5.901231)
id KAA22574; Thu, 9 Oct 1997 10:40:24 -0400
Message-Id: <
[email protected]>
Date: Thu, 9 Oct 1997 10:40:23 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Bob DeBula <
[email protected]>
To:
[email protected]
Subject: Re: restricted telnet access for users
In-Reply-To: <
[email protected]> from "Anne Baretta" at Oct 09, 1997 03:48:51 PM
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.5 PL0b1]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> > On Thu, 9 Oct 1997, Anne Baretta wrote:
> >
> >
> > in stead of a shell you give them a script that first checks if the user
> > logged in via telnet or ssh and trows them out or starts a shell...
> > *
>
> Yes, that's a good workaround, if they use telnet they'll get
> /usr/bin/passwd, if they use ssh, they will get a real shell, user or
> guest (and guests will then be denied upon entering their passwd).
> Does anyone happen to know a clean way to determine whether telnet
> or ssh is used to connect to the server? (for use in the script;-)
The environment variables SSH_CLIENT and SSH_TTY get set for an ssh
connection. Upon login, I like to be reminded whether I've got a secure
connection or not, so I have the following one line PERL script at the
end of my .login file:
perl -e 'print defined($ENV{'SSH_TTY'}) ? "\n***Secure connection from $ENV{'SSH_CLIENT'} on $ENV{'SSH_TTY'}***\n\n" : "\n\<\<\<Non-secure connection\>\>\>\n\n";'
From
[email protected] Thu Oct 9 10:00:05 1997
Received: from relay1.UU.NET by relay1.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdkmq23055; Thu, 9 Oct 1997 06:06:26 -0400 (EDT)
Received: from wugate.wustl.edu by relay1.UU.NET with ESMTP
(peer crosschecked as: [128.252.120.1])
id QQdkmq23045; Thu, 9 Oct 1997 06:06:25 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA26518;
Thu, 9 Oct 1997 04:54:13 -0500 (CDT)
Received: from mach.unseen.org (mach.unseen.org [194.159.240.178])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA25685
for <
[email protected]>; Thu, 9 Oct 1997 04:53:31 -0500 (CDT)
Received: from localhost (kevin@localhost) by mach.unseen.org (8.8.3/8.7.3) with SMTP id KAA04872; Thu, 9 Oct 1997 10:53:19 +0100 (BST)
Message-Id: <
[email protected]>
Date: Thu, 9 Oct 1997 10:53:18 +0100 (BST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kevin Walton <
[email protected]>
To: Anne Baretta <
[email protected]>
Cc: "wu.ftpd mailinglist" <
[email protected]>
Subject: Re: restricted telnet access for users
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Not really a solution to your problem im afraid, but a few comments.
On Thu, 9 Oct 1997, Anne Baretta wrote:
[snip]
> Needless to say, most users use win95, so it's not an option
> to let them use ssh (which is not free for DOS).
Not free, but you can get a 30 day eval of fsecure, an ssh client for
windows from:
http://www.datafellows.com
> P.S. I think the guest-HOWTO is a very good piece of documentation, it is
> much more to-the-point and concise than most HOWTO's
Can you point me to this plz.
Cheers
Kev
--
Kevin Walton
UnSeen.org
From
[email protected] Thu Oct 9 10:00:15 1997
Received: from relay7.UU.NET by relay7.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdkna14516; Thu, 9 Oct 1997 08:35:45 -0400 (EDT)
Received: from wugate.wustl.edu by relay7.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdkna14502; Thu, 9 Oct 1997 08:35:43 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA19124;
Thu, 9 Oct 1997 07:27:12 -0500 (CDT)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id HAA03687
for <
[email protected]>; Thu, 9 Oct 1997 07:22:41 -0500 (CDT)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id OAA13919;
Thu, 9 Oct 1997 14:21:14 GMT
Message-Id: <
[email protected]>
Date: Thu, 9 Oct 1997 14:21:14 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To: Anne Baretta <
[email protected]>
Cc: "wu.ftpd mailinglist" <
[email protected]>
Subject: Re: restricted telnet access for users
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 9 Oct 1997, Anne Baretta wrote:
> which is very convenient. This means of course that the telnet-daemon has
> to be up, and real users can login via telnet, thus compromising the
> security of the system. The telnet daemon cannot be configured to
> discriminate between guest and real users, any suggestions? I want the
in stead of a shell you give them a script that first checks if the user
logged in via telnet or ssh and trows them out or starts a shell...
*
t
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
Tom: So far, der winter kommt, ich schaff mir glaub ich noch ein paar
Tom: Zyxel traffos an...
Roli: Aber genug davon nehmen. Wenn die Dinger kapput gehen werden sie
Roli: nicht mehr warm.
From
[email protected] Thu Oct 9 10:00:18 1997
Received: from relay2.UU.NET by relay2.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdkng21530; Thu, 9 Oct 1997 10:03:47 -0400 (EDT)
Received: from wugate.wustl.edu by relay2.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdkng21520; Thu, 9 Oct 1997 10:03:44 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA07381;
Thu, 9 Oct 1997 08:56:27 -0500 (CDT)
Received: from ux1.ibb.net (ibb0005.ibb.ruu.nl [131.211.124.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA06290
for <
[email protected]>; Thu, 9 Oct 1997 08:48:52 -0500 (CDT)
Received: from localhost (anne@localhost)
by ux1.ibb.net (8.8.7/8.8.5/TT) with SMTP id PAA22873
for <
[email protected]>; Thu, 9 Oct 1997 15:48:52 +0200
Message-Id: <
[email protected]>
Date: Thu, 9 Oct 1997 15:48:51 +0200 (MET DST)
Reply-To: Anne Baretta <
[email protected]>
Sender:
[email protected]
From: Anne Baretta <
[email protected]>
To: "wu.ftpd mailinglist" <
[email protected]>
Subject: Re: restricted telnet access for users
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender:
[email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 9 Oct 1997, T's Mailing Lists wrote:
> On Thu, 9 Oct 1997, Anne Baretta wrote:
>
>
> in stead of a shell you give them a script that first checks if the user
> logged in via telnet or ssh and trows them out or starts a shell...
> *
Yes, that's a good workaround, if they use telnet they'll get
/usr/bin/passwd, if they use ssh, they will get a real shell, user or
guest (and guests will then be denied upon entering their passwd).
Does anyone happen to know a clean way to determine whether telnet
or ssh is used to connect to the server? (for use in the script;-)
Thanks.
Anne
From
[email protected] Thu Oct 9 10:00:23 1997
Received: from relay6.UU.NET by relay6.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdknf16380; Thu, 9 Oct 1997 09:50:09 -0400 (EDT)
Received: from wugate.wustl.edu by relay6.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdknf16375; Thu, 9 Oct 1997 09:50:07 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA11458;
Thu, 9 Oct 1997 08:41:52 -0500 (CDT)
Received: from munt02.marshall.edu (munt02.MARSHALL.EDU [206.212.27.35])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA02104
for <
[email protected]>; Thu, 9 Oct 1997 08:39:34 -0500 (CDT)
Received: by munt02.MARSHALL.EDU with Internet Mail Service (5.0.1458.49)
id <4KSRZ3AQ>; Thu, 9 Oct 1997 09:39:27 -0400
Message-Id: <
[email protected]>
Date: Thu, 9 Oct 1997 09:39:25 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: "Bailey, Raymond" <
[email protected]>
To: "'
[email protected]'" <
[email protected]>,
"'
[email protected]'" <
[email protected]>,
"'
[email protected]'" <
[email protected]>,
"'
[email protected]'" <
[email protected]>,
"'
[email protected]'"
<
[email protected]>,
"'
[email protected]'" <
[email protected]>,
"'
[email protected]'" <
[email protected]>
Subject: GPL Violations
MIME-Version: 1.0
Content-Type: text/plain
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1458.49)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hello Sirs,
Some time ago I may have contacted some of you (I think I copied Mr.
Torvalds on my original message to the FSF) about a company that is
using a Linux distribution with several common applications to produce a
standalone, PC-based CD-Rom Server machine. The machine is a PC Server
with a multitude of CDrom drives attached, running Linux with apache,
nfsd, Samba, Mars-Netware-Emulator, and various other pieces of GPL'd
software to serve CDrom content to client workstations.
Disappointingly, Procom fails to advertise that the system is running
Linux or any of the other aforementioned products. Even more
disappointing is the fact that they seem to have edited a great deal of
code in order to obscure the fact that the machine is running Linux. All
references to the name "Linux" are removed from their product
distribution, such that when the machine boots theres very little way
one can tell the machine is running Linux at all.
More seriously, Procom have failed to provide source code or patches
for any of the software on the system, which includes, among other
things, GNU Sh-utils, fileutils, etc., and NetKit. The media I have is
marked version 1.3.2, so they seem to have gone through enough revisions
to eliminate the possibility that this was a mere oversight on their
part. Additionally, they've not posted the source to their FTP server,
even though I don't think that's enough to satisfy the requirements
regarding source availability in the GPL.
Some time ago I contacted the president of Procom Technology, Alex
Razmjoo who replied only that they'd "look into this". I received a call
from a product engineer there who stated that they had originally
planned only to prototype their product on Linux but, not suprisingly,
Linux dominated the other commercial Unix variants they were testing
when it came time to ship the product. He explained to me that,
therefore, they decided to ship the Linux based product, but that their
schedule had been too tight to get the source release integrated in the
product. I explained to him that this was a pretty blatant and severe
misuse of GPL'd software, and the engineer promised me that the source
code would be delivered, along with their diffs and even the
specification for their rpc management functions. Well over a month has
past and I've not been contacted about a source release
I contacted Richard Stallman a week or so ago and informed him that
indeed a great deal of GNU code was being included with the Procom
product, and now think that it's appropriate to inform the authors of
the other major components of the package that Procom is relying on in
order to make their product work. I haven't.
Procoms website can be found at www.procom.com
R. Andrew Bailey, Jaded
Sr. Systems Programmer
Marshall University Computing Services
http://webpages.marshall.edu/~bailey9/
From
[email protected] Thu Oct 9 10:00:31 1997
Received: from relay6.UU.NET by relay6.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdknh22990; Thu, 9 Oct 1997 10:17:39 -0400 (EDT)
Received: from wugate.wustl.edu by relay6.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdknh22967; Thu, 9 Oct 1997 10:17:32 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA28940;
Thu, 9 Oct 1997 09:08:47 -0500 (CDT)
Received: from tholian.securid.com (tholian.securid.com [204.167.112.129])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA18085
for <
[email protected]>; Thu, 9 Oct 1997 09:04:32 -0500 (CDT)
Received: from mail.securid.com by tholian.securid.com
via smtpd (for wugate.wustl.edu [128.252.120.1]) with SMTP; 9 Oct 1997 14:26:02 UT
Received: by securitydynamics.com (8.7.6/8.7.3) with ESMTP id KAA04048 for <
[email protected]>; Thu, 9 Oct 1997 10:04:30 -0400 (EDT)
Received: by exna01.securid.com with Internet Mail Service (5.0.1457.3)
id <4BVGVVSB>; Thu, 9 Oct 1997 10:05:10 -0400
Message-Id: <
[email protected]>
Date: Thu, 9 Oct 1997 10:05:10 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: "Ventura, Paul" <
[email protected]>
To: "wu.ftpd mailinglist" <
[email protected]>
Subject: unsubcribe
[email protected]
MIME-Version: 1.0
Content-Type: text/plain
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1457.3)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Paul Ventura
Network Administrator
SDTI-HQ
781.687.7665
From
[email protected] Thu Oct 9 10:00:50 1997
Received: from relay5.UU.NET by relay5.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdkmo16587; Thu, 9 Oct 1997 05:39:53 -0400 (EDT)
Received: from wugate.wustl.edu by relay5.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdkmo16569; Thu, 9 Oct 1997 05:39:50 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA21890;
Thu, 9 Oct 1997 04:29:43 -0500 (CDT)
Received: from ux1.ibb.net (ibb0005.ibb.ruu.nl [131.211.124.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA24297
for <
[email protected]>; Thu, 9 Oct 1997 04:25:51 -0500 (CDT)
Received: from localhost (anne@localhost)
by ux1.ibb.net (8.8.7/8.8.5/TT) with SMTP id LAA21985
for <
[email protected]>; Thu, 9 Oct 1997 11:25:38 +0200
Message-Id: <
[email protected]>
Date: Thu, 9 Oct 1997 11:25:37 +0200 (MET DST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Anne Baretta <
[email protected]>
To: "wu.ftpd mailinglist" <
[email protected]>
Subject: restricted telnet access for users
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender:
[email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
I have set up guest-accounts on the local server some time ago. This
weekend I want the first 'guests' to be able to put their homepages on the
server. However, there seems to be a dillemma: security has a very high
priority on the server, so real users (a few interested people who are
involved in the organisation of this local project) are only allowed to
login via ssh. I have given the guests the shell /usr/bin/passwd (it's a
Linux box) so they can telnet to the server and change their password,
which is very convenient. This means of course that the telnet-daemon has
to be up, and real users can login via telnet, thus compromising the
security of the system. The telnet daemon cannot be configured to
discriminate between guest and real users, any suggestions? I want the
users to be able to change their passwords (by themselves) maybe there are
other ways? Needless to say, most users use win95, so it's not an option
to let them use ssh (which is not free for DOS).
Thanks in advance,
Anne
P.S. I think the guest-HOWTO is a very good piece of documentation, it is
much more to-the-point and concise than most HOWTO's (moreover, if you
follow it, it will work;-). In fact, I liked it so much that I have put
together a document with a similar set-up for the Delete/BackSpace
problem:
http://www.ibbnet.nl/~anne/keyboard.html
From
[email protected] Thu Oct 9 10:15:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA20307;
Thu, 9 Oct 1997 10:05:35 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA20821
for <
[email protected]>; Thu, 9 Oct 1997 09:58:37 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Thu, 9 Oct 1997 09:58:58 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: GPL Violations
In-Reply-To: <
[email protected]> from "Andrew Tridgell" at Oct 10, 97 00:13:27 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
#
# Raymond,
#
# Thanks for letting me know.
#
# I'll contact them and give them a reminder about the GPL on Samba.
#
# I would appreciate it if you could send me the output of "strings
# smbd" and "strings nmbd" or whatever they call the Samba daemons on
# their system.
#
# I am actually greatly in favour of companies using GPLd software in
# commercial systems, as long as they remain within the GPL. Hopefully
# this can be sorted out amicably and we can welcome them aboard as
# supporters of free software.
#
# Regards, Andrew
#
# --
# =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
# Andrew Tridgell Dept. of Computer Science
# email:
[email protected] Australian National University
# Phone: +61 6 254 8209 Fax: +61 6 249 0010
# =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
#
Why was this sent to the wu-ftpd list ? There is no GPLed code in
wu-ftpd that I am aware of. The only references are to building it which
may require certain GNU utilities. This is certainly off-topic and I would
resent any GPL strong-arming of wu-ftpd sources. I truly hope this was not
the intent of your message posted to the wu-ftpd development and support list.
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Thu Oct 9 10:39:04 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA23113;
Thu, 9 Oct 1997 10:32:21 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA23412
for <
[email protected]>; Thu, 9 Oct 1997 10:24:21 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Thu, 9 Oct 1997 10:24:44 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Cc:
[email protected],
[email protected]
Subject: Re: GPL Violations
In-Reply-To: <
[email protected]> from "Kent Landfield" at Oct 9, 97 09:58:58 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I am sorry for the tone of the message. I now know that you were simply
replying to the message sent. This is a touchy area for alot of us who
have been developing software for free, for years. I received the original
message totally out of order and have asked the orginal author why wu-ftpd
was included. He stated it was a mistake.
# Why was this sent to the wu-ftpd list ? There is no GPLed code in
# wu-ftpd that I am aware of. The only references are to building it which
# may require certain GNU utilities. This is certainly off-topic and I would
# resent any GPL strong-arming of wu-ftpd sources. I truly hope this was not
# the intent of your message posted to the wu-ftpd development and support list.
Please accept my apology for my confusion.
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Thu Oct 9 11:04:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA24453;
Thu, 9 Oct 1997 10:57:05 -0500 (CDT)
Received: from samba.anu.edu.au (samba.anu.edu.au [150.203.164.44])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA19475
for <
[email protected]>; Thu, 9 Oct 1997 10:49:57 -0500 (CDT)
Received: from tridge@localhost by samba.anu.edu.au id <12583165-27471>; Fri, 10 Oct 1997 01:10:55 +1000
Message-Id: <
[email protected]>
Date: Fri, 10 Oct 1997 01:10:50 +1000
Reply-To:
[email protected]
Sender:
[email protected]
From: Andrew Tridgell <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: GPL Violations
In-Reply-To: <
[email protected]> (message from Kent
Landfield on Thu, 9 Oct 1997 09:58:58 -0500 (CDT))
X-Sender: Andrew Tridgell <
[email protected]>
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> Why was this sent to the wu-ftpd list ? There is no GPLed code in
> wu-ftpd that I am aware of. The only references are to building it which
> may require certain GNU utilities. This is certainly off-topic and I would
> resent any GPL strong-arming of wu-ftpd sources. I truly hope this was not
> the intent of your message posted to the wu-ftpd development and support list.
Kent,
I apologise for the mistake. I should have checked the CC list more
carefully. I was replying to a message from Raymond that was CCd to
this list.
Regards, Andrew
From
[email protected] Thu Oct 9 21:40:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA29579;
Thu, 9 Oct 1997 21:33:10 -0500 (CDT)
Received: from neptune.sma.regina.sk.ca (
[email protected] [142.165.80.35])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA02811
for <
[email protected]>; Thu, 9 Oct 1997 21:25:32 -0500 (CDT)
Received: from mercury.sma.regina.sk.ca (mercury [207.195.37.10])
by neptune.sma.regina.sk.ca (8.8.5/8.8.5) with ESMTP id UAA00452
for <
[email protected]>; Thu, 9 Oct 1997 20:12:51 -0600
Received: (from abouzgs@localhost)
by mercury.sma.regina.sk.ca (8.8.5/8.8.5) id UAA26213;
Thu, 9 Oct 1997 20:25:52 -0600 (CST)
Message-Id: <Pine.SOL.3.91.971009201230.26208A-100000@mercury.sma.regina.sk.ca>
Date: Thu, 9 Oct 1997 20:25:52 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: "sal.abouzgaia" <
[email protected]>
To:
[email protected]
Subject: Problems with wu-ftpd.2.4.2 (with/without ssl)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I have compiled wu-ftpd-2.4.2 with ssl patch and without ssl patch on
Linux 2.0.0 without any errors. However, wu-ftpd-2.4.2 does not log
any commands or what so ever in /var/adm/messages or /var/log/ftplog
(which was added through /etc/syslog.conf) except
FTP LOGIN from ...
FTP session closed
In addition, ftpwho and ftpcount always shown 0 users while some
users are running ftp sessions ?????!!!!!!
I did ckconfig after installation and everything is o.k.
it finds all the needed files ftpaccess, ftpahosts, ftpusers, ...
I changed the max number of users in ftpaccess to make sure
it reads the file.
Any idea.
I just subscribed to the mailing list. So please cc my e-mail to make
sure I get a reply.
From
[email protected] Thu Oct 9 21:56:59 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA13523;
Thu, 9 Oct 1997 21:50:16 -0500 (CDT)
Received: from neptune.sma.regina.sk.ca (
[email protected] [142.165.80.35])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA14184
for <
[email protected]>; Thu, 9 Oct 1997 21:48:26 -0500 (CDT)
Received: from mercury.sma.regina.sk.ca (mercury [207.195.37.10])
by neptune.sma.regina.sk.ca (8.8.5/8.8.5) with ESMTP id UAA00125
for <
[email protected]>; Thu, 9 Oct 1997 20:35:43 -0600
Received: (from abouzgs@localhost)
by mercury.sma.regina.sk.ca (8.8.5/8.8.5) id UAA26257;
Thu, 9 Oct 1997 20:48:40 -0600 (CST)
Message-Id: <Pine.SOL.3.91.971009204705.26208B-100000@mercury.sma.regina.sk.ca>
Date: Thu, 9 Oct 1997 20:48:40 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: "sal.abouzgaia" <
[email protected]>
To:
[email protected]
Subject: wu-ftpd-2.4.2 problems (with/without ssl) SORRY
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Sorry. I just needed to add -a to the deamon.
Thanks
From
[email protected] Fri Oct 10 09:00:31 1997
Received: from relay3.UU.NET by relay3.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdkqe28147; Fri, 10 Oct 1997 05:00:35 -0400 (EDT)
Received: from wugate.wustl.edu by relay3.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdkqe28141; Fri, 10 Oct 1997 05:00:33 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA01104;
Fri, 10 Oct 1997 03:50:28 -0500 (CDT)
Received: from gate.teledata.co.uk (gate-isdn.teledata.co.uk [194.152.83.193])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id DAA07671
for <
[email protected]>; Fri, 10 Oct 1997 03:48:44 -0500 (CDT)
Received: from defcon1.prestel.net(really [193.114.49.208]) by gate.teledata.co.uk
via rsmtp with esmtp
id <
[email protected]>
for <
[email protected]>; Fri, 10 Oct 97 09:48:40 +0100 (BST)
(/\##/\ Smail3.1.30.13 #30.13 built 31-aug-95)
Message-Id: <
[email protected]>
Date: Fri, 10 Oct 1997 09:44:00 +0100
Reply-To:
[email protected]
Sender:
[email protected]
From: webadmin <
[email protected]>
To:
[email protected]
Subject: blocking call cancelled
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.0 [en] (Win95; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi
Does anyone know what the error blocking call cancelled means, and how
to fix it.
Thnaks
Iqbal
From
[email protected] Fri Oct 10 12:28:32 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA31899;
Fri, 10 Oct 1997 12:20:51 -0500 (CDT)
Received: from apldbio.com (firewall-user@[192.43.251.100])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA12372
for <
[email protected]>; Fri, 10 Oct 1997 12:10:10 -0500 (CDT)
Received: by apldbio.com; id KAA08908; Fri, 10 Oct 1997 10:04:57 -0700 (PDT)
Received: from nucleus.abd.perkin-elmer.com(167.116.100.41) by fw1.apldbio.com via smap (3.2)
id xma008906; Fri, 10 Oct 97 10:04:42 -0700
Received: from texsys.abd.perkin-elmer.com by nucleus.abd.perkin-elmer.com (SMI-8.6/SMI-SVR4)
id KAA24963; Fri, 10 Oct 1997 10:12:17 -0700
Received: by texsys.abd.perkin-elmer.com (SMI-8.6/SMI-SVR4)
id KAA11128; Fri, 10 Oct 1997 10:12:17 -0700
Message-Id: <
[email protected]>
Date: Fri, 10 Oct 1997 10:12:17 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Yale Rosenblatt)
To:
[email protected]
Subject: The PASV command
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I am running wu-ftpd-2.4.2-beta-13 on a Sun with
Solaris 2.5.1. Certain users log in to my machine and
through a browser on a web site have problems downloading
files. They seem to access a "PASV" command that stops them.
Here are some examples:
Oct 5 ftpd[7509]: command: SYST
Oct 5 ftpd[7509]: SYST
Oct 5 ftpd[7509]: <--- 215
Oct 5 ftpd[7509]: UNIX Type: L8
Oct 5 ftpd[7509]: command: PASV
Oct 5 ftpd[7509]: PASV
Oct 5 ftpd[7509]: <--- 425
Oct 5 ftpd[7509]: Can't open passive connection: Permission denied.
Oct 5 18:37:22 proteus ftpd[7509]: command: PORT 202,96,185,49,6,253
Oct 5 18:37:22 proteus ftpd[7509]: PORT
or
Oct 7 ftpd[9065]: command: SYST
Oct 7 ftpd[9065]: SYST
Oct 7 ftpd[9065]: <--- 215
Oct 7 ftpd[9065]: UNIX Type: L8
Oct 7 ftpd[9065]: command: PASV
Oct 7 ftpd[9065]: PASV
Oct 7 ftpd[9065]: <--- 425
Oct 7 ftpd[9065]: Can't open passive connection: Permission denied.
Oct 7 ftpd[9065]: <--- 221
Oct 7 ftpd[9065]: You could at least say goodbye.
Oct 7 ftpd[9065]: FTP session closed
Having done a man on ftpd, one of the following definitions is:
The ftp server currently supports the following ftp
requests; case is not distinguished.
PASV prepare for server-to-server transfer
Can someone tell me what permissions are not correct, Such that
the above error is happening?
Yale Rosenblatt
System and Networking Manager
Applied Biosystems
[email protected]
From
[email protected] Fri Oct 10 14:42:43 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA25674;
Fri, 10 Oct 1997 14:35:58 -0500 (CDT)
Received: from jester.ti.com (jester.ti.com [192.94.94.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA22346
for <
[email protected]>; Fri, 10 Oct 1997 14:34:04 -0500 (CDT)
Received: from dadd.ti.com. ([156.117.180.253]) by jester.ti.com (8.8.7) with ESMTP id OAA24869; Fri, 10 Oct 1997 14:33:30 -0500 (CDT)
Received: from pavis.dadd.ti.com by dadd.ti.com. (8.8.4/)
id OAA04503; Fri, 10 Oct 1997 14:33:27 -0500 (CDT)
Received: by pavis.dadd.ti.com id <
[email protected]>; Fri, 10 Oct 1997 14:33:24 -0500
Message-Id: <
[email protected]>
Date: Fri, 10 Oct 97 14:33:23 CDT
Reply-To:
[email protected] (Bob Luckin)
Sender:
[email protected]
From: Bob Luckin <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: The PASV command
In-Reply-To: <
[email protected]>; from "Yale Rosenblatt" at Oct 10, 97 10:12 am
X-Mimi-Options: HEADERS TI2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> I am running wu-ftpd-2.4.2-beta-13 on a Sun with
> Solaris 2.5.1. Certain users log in to my machine and
> through a browser on a web site have problems downloading
> files. They seem to access a "PASV" command that stops them.
..
This question is covered in the wu-ftpd FAQ; the best place to find this
and other information on the server is Kent Landfield's excellent WU-FTPD
resource centre on the web at
http://www.landfield.com/wu-ftpd/
The FAQ itself is available at
http://www.hvu.nl/~koos/wu-ftpd-faq.html
The question is covered in section 9.13 - basically on Solaris boxes you
need to have world write rights on ~ftp/dev/tcp (where ~ftp is the chrooted
home directory for your anonymous or guest user). If you set the mode
to 666, this should solve the problem (you may want to make sure the other
files in ~ftp/dev/ have the same permissions as their originals in /dev as
well, just to be safe).
I hope this solves your problem !
Cheers, Bob
--
Bob Luckin
[email protected] "A man, a plan, a canal, Suez !"
From
[email protected] Fri Oct 10 16:40:54 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA29440;
Fri, 10 Oct 1997 16:34:10 -0500 (CDT)
Received: from castor.ipac.caltech.edu (ipac.caltech.edu [131.215.11.35])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA32270
for <
[email protected]>; Fri, 10 Oct 1997 16:27:33 -0500 (CDT)
Received: from obi-wan.ipac.caltech.edu (obi-wan.ipac.caltech.edu [134.4.40.194])
by castor.ipac.caltech.edu (8.7.4/8.6.4)
with SMTP id OAA04025
for <
[email protected]>; Fri, 10 Oct 1997 14:27:32 -0700 (PDT)
Message-Id: <
[email protected]>
Date: Fri, 10 Oct 1997 14:25:44 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: "David G. Mills" <
[email protected]>
To:
[email protected]
Subject: "DIR" doesn't give uid/gid's in English
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: Windows Eudora Pro Version 3.0.1 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hey, all...
Running wu-ftpd 2.4.2 beta 14 on Solaris 2.5.1, using /usr/bin/ls, I get no
entries for uid name and gid name from the ~ftp/etc/passwd and
~ftp/etc/group files (just the numeric values, not the names). The
permissions on the related files are:
~ftp
etc/ root:other dr-xr-xr-x
group root:other -r--r--r--
passwd root:other -r--r--r--
I've read the "A How-To Guide for wu-ftpd on Solaris 2.5.x"
(
http://www.teleport.com/~minerva/wu-ftpd/wuftpd.shtml) and I *think* I've
checked the "obvious" things...
I'd appreciate suggestions on things to check out, etc.
Thanks!
david
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
David G. Mills / Systems Admin
ISG (IPAC Systems Group) / Caltech
[email protected]
626-397-7241
From
[email protected] Mon Oct 13 06:29:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA23076;
Mon, 13 Oct 1997 06:22:35 -0500 (CDT)
Received: from relay.conware.de (
[email protected] [153.92.5.3])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA19655
for <
[email protected]>; Mon, 13 Oct 1997 06:16:03 -0500 (CDT)
Received: from nentec.de [153.92.64.11] (finken)
by relay.conware.de with esmtp (Exim 1.624 #1)
id 0xKiTE-0005b2-00; Mon, 13 Oct 1997 13:15:32 +0200
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 13:17:19 +0200 (MET DST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Finken <
[email protected]>
To:
[email protected]
Subject: block bad mail addresses?
Content-Type: text/plain; charset=iso-8859-1
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Sender:
[email protected]
X-Mailer: XFMail 1.2-beta-100797 [p0] on SunOS
X-Priority: 3 (Normal)
X-Public-Service-Announcement: Prevent Tribble Abuse. Just say No.
X-Tribbles-Info: Help!! They are everywhere!!!
X-SecretAgent-For: Serious Cybernetics Corporation for Robotics and Metaphysics
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id GAA32575
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
I see a lot of connections where the anonymous user uses 'IE30User@' or
'mozilla@' as password. I want people to use their real mail addresses.
Can I configure a filter for e-mail addresses in WU-FTPD?
Thanks,
Michael
--
Michael Finken NENTEC Netzwerktechnologie GmbH
Tel.: +49 721 9495-0 76227 Karlsruhe/Germany
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Old pilots never die, they just go to a higher plane.
From
[email protected] Mon Oct 13 07:23:57 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA10473;
Mon, 13 Oct 1997 07:16:38 -0500 (CDT)
Received: from josephus.furph.com (josephus.furph.com [38.154.194.160])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id HAA21831
for <
[email protected]>; Mon, 13 Oct 1997 07:12:56 -0500 (CDT)
Received: from localhost (beckers@localhost) by josephus.furph.com (8.8.0/8.8.0) with SMTP id IAA32425; Mon, 13 Oct 1997 08:13:28 -0400 (EDT)
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 08:13:27 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Becki Kain <
[email protected]>
To: Michael Finken <
[email protected]>
Cc:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I'm not certain how you get people to change that - that is the default
when they goto your site from internet exploder and netscape agitator.
beckers
On Mon, 13 Oct 1997, Michael Finken wrote:
>
> Hi,
>
> I see a lot of connections where the anonymous user uses 'IE30User@' or
> 'mozilla@' as password. I want people to use their real mail addresses.
>
> Can I configure a filter for e-mail addresses in WU-FTPD?
>
> Thanks,
> Michael
>
> --
> Michael Finken NENTEC Netzwerktechnologie GmbH
> Tel.: +49 721 9495-0 76227 Karlsruhe/Germany
> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
> Old pilots never die, they just go to a higher plane.
>
From
[email protected] Mon Oct 13 09:37:41 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA18397;
Mon, 13 Oct 1997 09:30:30 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA11710
for <
[email protected]>; Mon, 13 Oct 1997 09:27:05 -0500 (CDT)
Received: from egate.mnet.uswest.com (egate-co1.mnet.uswest.com [151.119.130.8])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id IAA21822
for <
[email protected]>; Mon, 13 Oct 1997 08:26:34 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate.mnet.uswest.com (8.7.1/8.7.1) with SMTP id IAA22196 for <
[email protected]>; Mon, 13 Oct 1997 08:26:33 -0600 (MDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id JAA05526 for <
[email protected]>; Mon, 13 Oct 1997 09:33:09 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA942
for <
[email protected]>; Mon, 13 Oct 1997 08:26:30 -0600
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 08:29:52 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: Spaces in filenames
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Anyone had any luck including a space (0x20) in the regexp for the
path-filter option in the ftpaccess file? If I put a plain ol' space
before the right bracket, it complains that it's missing the right ']'.
I tried escaping it '\ ' and using octal '\040', all to no avail. When
I comment out the line, I have no problems... Any idears?
Also, when I try to make a dir with spaces in it, I get this:
ftp> mkdir "fred three"
553 fred three: Permission denied. (Filename (accept))
instead of my invalid character msg.
TIA,
Brad
From
[email protected] Mon Oct 13 10:33:33 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA20381;
Mon, 13 Oct 1997 10:27:01 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA20264
for <
[email protected]>; Mon, 13 Oct 1997 10:20:53 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 10:21:19 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Michael Finken <
[email protected]> wrote:
# > I see a lot of connections where the anonymous user uses 'IE30User@' or
# > 'mozilla@' as password. I want people to use their real mail addresses.
# > Can I configure a filter for e-mail addresses in WU-FTPD?
Becki Kain <
[email protected]> responded:
# I'm not certain how you get people to change that - that is the default
# when they goto your site from internet exploder and netscape agitator.
This has been bothering me for a long time too. Changes would need to be
made to the code to deal with this. I'm just brainstorming here so...
(Warning Will Robinson!) I'd suggest extending the ftpaccess file directive
passwd-check usage from
passwd-check <none|trivial|rfc822> [<enforce|warn>]
to
passwd-check <none|trivial|rfc822|rfc822-limit> [<enforce|warn>]
The passwd-check for rfc822-limit would read an exclusion list in a file
somewhere and an associated message file. The exclusion file would have
an entry such as
# Email - Message file
IE30User noieuser.msg
and the noieuser.msg file might contain
"Please change the default email address setting in Internet Explorer 3.0.
Until that is done you will not be allowed anonymous access to this site."
This way it would be generic enough to be used for any such address
restriction. In the above example I was sugggesting the 'enforce' was
being used. If enforce was not the case then the message file would be
tailored accordingly. Thoughts ?
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Mon Oct 13 11:36:11 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA24009;
Mon, 13 Oct 1997 11:29:50 -0500 (CDT)
Received: from gatekeep.ti.com (gatekeep.ti.com [192.94.94.61])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA16187
for <
[email protected]>; Mon, 13 Oct 1997 11:25:57 -0500 (CDT)
Received: from dadd.ti.com. ([156.117.180.253]) by gatekeep.ti.com (8.8.7) with ESMTP id LAA05710 for <
[email protected]>; Mon, 13 Oct 1997 11:26:53 -0500 (CDT)
Received: from pavis.dadd.ti.com by dadd.ti.com. (8.8.4/)
id LAA16733; Mon, 13 Oct 1997 11:25:24 -0500 (CDT)
Received: by pavis.dadd.ti.com id <
[email protected]>; Mon, 13 Oct 1997 11:25:23 -0500
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 97 11:25:22 CDT
Reply-To:
[email protected] (Bob Luckin)
Sender:
[email protected]
From: Bob Luckin <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]>; from "Kent Landfield" at Oct 13, 97 10:21 am
X-Mimi-Options: HEADERS TI2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Kent Landfield said :-
> This has been bothering me for a long time too. Changes would need to be
> made to the code to deal with this. I'm just brainstorming here so...
> (Warning Will Robinson!) I'd suggest extending the ftpaccess file directive
> passwd-check usage from
>
> passwd-check <none|trivial|rfc822> [<enforce|warn>]
>
> to
>
> passwd-check <none|trivial|rfc822|rfc822-limit> [<enforce|warn>]
>
> The passwd-check for rfc822-limit would read an exclusion list in a file
> somewhere and an associated message file. The exclusion file would have
> an entry such as
>
> # Email - Message file
> IE30User noieuser.msg
>
> and the noieuser.msg file might contain
>
> "Please change the default email address setting in Internet Explorer 3.0.
> Until that is done you will not be allowed anonymous access to this site."
>
> This way it would be generic enough to be used for any such address
> restriction. In the above example I was sugggesting the 'enforce' was
> being used. If enforce was not the case then the message file would be
> tailored accordingly. Thoughts ?
As proposed, this additional check would only be made if the rfc822-limit
option was specified, when I assume the standard rfc822 checks would also
be made. I'd prefer to have it available for all of the existing options,
not just rfc822. OK, "none" might not make much sense, but certainly for
trivial as well.
Another way of achieving this would be to add individual lines to the
ftpaccess file like :-
noanonpsw mozilla mozilla.msg
noanonpsw IE30User ieuser.msg
This should be OK if you don't have too many alternative passwords you want
to disallow - especially since it cuts down the need for another external
file, and could be checked no matter what authentication type you specified.
Cheers, Bob
--
Bob Luckin
[email protected] "Coder - redo C"
From
[email protected] Mon Oct 13 12:19:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA30017;
Mon, 13 Oct 1997 12:13:34 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA03010
for <
[email protected]>; Mon, 13 Oct 1997 12:09:44 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 12:10:12 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]> from "Bob Luckin" at Oct 13, 97 11:25:22 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
# Kent Landfield said :-
# > This has been bothering me for a long time too. Changes would need to be
# > made to the code to deal with this. I'm just brainstorming here so...
# > (Warning Will Robinson!) I'd suggest extending the ftpaccess file directive
# > passwd-check usage from
# >
# > passwd-check <none|trivial|rfc822> [<enforce|warn>]
# >
# > to
# >
# > passwd-check <none|trivial|rfc822|rfc822-limit> [<enforce|warn>]
# >
# > The passwd-check for rfc822-limit would read an exclusion list in a file
# > somewhere and an associated message file. The exclusion file would have
# > an entry such as
# >
# > # Email - Message file
# > IE30User noieuser.msg
# >
# > and the noieuser.msg file might contain
# >
# > "Please change the default email address setting in Internet Explorer 3.0.
# > Until that is done you will not be allowed anonymous access to this site."
# >
# > This way it would be generic enough to be used for any such address
# > restriction. In the above example I was sugggesting the 'enforce' was
# > being used. If enforce was not the case then the message file would be
# > tailored accordingly. Thoughts ?
#
# As proposed, this additional check would only be made if the rfc822-limit
# option was specified, when I assume the standard rfc822 checks would also
# be made. I'd prefer to have it available for all of the existing options,
# not just rfc822. OK, "none" might not make much sense, but certainly for
# trivial as well.
Oh, I think there may be a bug in the rfc822 as I see no difference in
trivial and rfc822. If I type 'kent@' in trivial I get in. (This is how
trivial is suppose to work.) When I type in 'kent@' with rfc822 set I
get the same results and no warning of an invalid RFC822 address being
specified. Maybe I should submit this to Stan....
# Another way of achieving this would be to add individual lines to the
# ftpaccess file like :-
# noanonpsw mozilla mozilla.msg
# noanonpsw IE30User ieuser.msg
#
# This should be OK if you don't have too many alternative passwords you want
# to disallow - especially since it cuts down the need for another external
# file, and could be checked no matter what authentication type you specified.
Yeah, I thought of that. Here is a list of massively repeated entries
that I have in my logs. I'd put an entry for each one somewhere.
IE30User@
IE30Usera@
IE40user@
Netscape@
WWWuser@
anonymous@
cache@
guest@
harvest@
http@
httpgw@
lynx@
mozilla@
netcache@
nobody@
none@
proxyuser@
squid@
whoever@
wwwuser@
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Mon Oct 13 14:58:10 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA20363;
Mon, 13 Oct 1997 14:51:27 -0500 (CDT)
Received: from topelo.lopi.com (
[email protected] [199.92.203.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA19879
for <
[email protected]>; Mon, 13 Oct 1997 14:50:31 -0500 (CDT)
Received: from topelo.lopi.com (localhost [127.0.0.1]) by topelo.lopi.com (whn-1.0) with ESMTP id PAA02449; Mon, 13 Oct 1997 15:50:28 -0400
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 15:50:28 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Bill Nugent <
[email protected]>
To:
[email protected], Brian Kramer <
[email protected]>
Subject: Virtual FTP and restricting user access
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: exmh version 2.0zeta 7/24/97
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Howdy,
I've just upgraded to 2.4.2-beta-15 from 2.4(29) and the improvements are
great! Good work.
In setting up the virtual FTP servers it became clear that there is no
way to restrict a guest user (or anonymous) from logging in on any given
virtual server. In my application, this could be problematic down the
road when the ftp server is broken up onto different machines because
some guest users may have developed sloppy habits (e.g., using
ftp.sales.example.com instead of ftp.dev.example.com).
I am attaching a patch which I came up with to restrict who can log onto
a particular virtual server as either a guest or anonymous user by adding
a new config line to ftpaccess. For example:
virtual 10.10.10.10 user joe nancy
# Multiple lines okay
virtual 10.10.10.11 user joe walter
virtual 10.10.10.11 user frank
# No guest or anonymous users
virtual 10.10.10.12 user
# ftp and anonoymous fine but not guests
virtual 10.10.10.13 user anonymous ftp
In doing this coding, I noticed multiple calls to inet_ntoa() with the
same argument in ftpd.c. The first two sections of the patch eliminate
the repeatitive calls in addition to saving the virtual IP address for
use by the virtual user hack in the last patch section.
Use this code AT YOUR OWN RISK. I do not warrant this code at all. No
rights reserved. It works for me under Redhat 4.2 i386.
To add this functionality: apply the patch and add '#define VIRTUAL_USER'
to src/config.h to enable the patch (or to CFLAGS in the Makefile).
Virtual servers must also be enabled.
Looking forward to feedback.
Thank you,
Bill
--- ftpd.c Mon Oct 13 10:08:58 1997
+++ ftpd.c.virtual-user Mon Oct 13 15:12:11 1997
@@ -222,6 +222,7 @@
int virtual_mode=0;
char virtual_root[MAXPATHLEN];
char virtual_banner[MAXPATHLEN];
+char virtual_ip_addr[32]; /* Cut down on repeated conversions...*/
#endif
int data;
@@ -748,14 +749,17 @@
virtual_len = sizeof(virtual_addr);
if (getsockname(0, (struct sockaddr *) &virtual_addr, &virtual_len)
== 0) {
virtual_ptr = (struct sockaddr_in *) &virtual_addr;
+ /* Only do the inet_ntoa() call once */
+ strncpy(virtual_ip_addr, inet_ntoa(virtual_ptr->sin_addr),
+ sizeof(virtual_ip_addr));
entry = (struct aclmember *) NULL;
while (getaclentry("virtual", &entry)) {
if (!ARG0 || !ARG1 || !ARG2)
continue;
- if (!strcmp(ARG0, inet_ntoa(virtual_ptr->sin_addr))) {
+ if (!strcmp(ARG0, virtual_ip_addr)) {
if(!strcmp(ARG1, "root")) {
syslog(LOG_NOTICE, "VirtualFTP Connect to: %s",
- inet_ntoa(virtual_ptr->sin_addr));
+ virtual_ip_addr);
virtual_mode = 1;
strncpy(virtual_root, ARG2, MAXPATHLEN);
/* reset hostname to this virtual name */
@@ -1238,6 +1242,39 @@
/* fall here if username okay in any case */
#endif /* ANON_ONLY */
+#if defined(VIRTUAL) && defined(VIRTUAL_USER)
+ else {
+ /* If a valid 'virtual nnn.nnn.nnn.nnn user USERS' line exists */
+ /* obey it! */
+ struct aclmember *entry = NULL;
+ int which = 0;
+
+ while (getaclentry("virtual", &entry)) {
+ /* Weed out everything that doesn't match */
+ if (!ARG0 || !ARG1 ||
+ strcmp(ARG0, virtual_ip_addr) || strcmp(ARG1, "user")) {
+ continue;
+ }
+ for (which = 2; (which < MAXARGS) && ARG[which]; which++) {
+ if (!strcmp(ARG[which], name))
+ goto MATCH;
+ }
+ }
+ /* Allow login if there are no 'virtual i.j.k.l user' entries */
+ /* for this IP address */
+ if (which != 0) {
+ reply(530, "User %s unknown.", name);
+ syslog(LOG_NOTICE,
+ "FTP LOGIN REFUSED: VirtualFTP user %s not allowed access
to %s",
+ name, virtual_ip_addr);
+ return;
+ }
+ MATCH:
+ syslog(LOG_DEBUG, "VirtualFTP user %s match on %s",
+ name, virtual_ip_addr);
+ }
+#endif /* defined(VIRTUAL) && defined(VIRTUAL_USER) */
+
if ((pw = sgetpwnam(name)) != NULL) {
#ifndef USE_PAM /* PAM should be doing these checks, not ftpd */
if ((shell = pw->pw_shell) == NULL || *shell == 0)
From
[email protected] Mon Oct 13 18:17:27 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA09122;
Mon, 13 Oct 1997 18:07:59 -0500 (CDT)
Received: from basil.acr.net.au (basil.acr.net.au [203.22.236.98])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA32599
for <
[email protected]>; Mon, 13 Oct 1997 18:03:21 -0500 (CDT)
Received: from geoffp200mmxdev.acr.net.au (be2511s116.acr.net.au [203.22.236.116]) by basil.acr.net.au (8.7.3/8.7.3) with ESMTP id JAA26742; Tue, 14 Oct 1997 09:18:04 +1000 (EST)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 08:57:55 +1000
Reply-To:
[email protected]
Sender:
[email protected]
From: "Geoff Terry" <
[email protected]>
To: <
[email protected]>, <
[email protected]>
Subject: Re: block bad mail addresses?
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-MSMail-Priority: Normal
X-Priority: 3
X-Mailer: Microsoft Internet Mail 4.70.1161
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Kent,
Why bother to create distinct entries for particular clients?
There are so many vendors and versions all with slightly different
configuration semantics that differentiating across clients will not really
add any value.
To my way of thinking it only complicates things, better to just check to
see if they have something like a full email address and possibly do a DNS
lookup on the domain to check and rebuke with a general message if it
fails.
Geofft
----------
> From: Kent Landfield <
[email protected]>
> To:
[email protected]
> Subject: Re: block bad mail addresses?
> Date: Tuesday, October 14, 1997 1:21 AM
>
> Michael Finken <
[email protected]> wrote:
> # > I see a lot of connections where the anonymous user uses 'IE30User@'
or
> # > 'mozilla@' as password. I want people to use their real mail
addresses.
> # > Can I configure a filter for e-mail addresses in WU-FTPD?
>
> Becki Kain <
[email protected]> responded:
> # I'm not certain how you get people to change that - that is the default
> # when they goto your site from internet exploder and netscape agitator.
>
> This has been bothering me for a long time too. Changes would need to be
> made to the code to deal with this. I'm just brainstorming here so...
> (Warning Will Robinson!) I'd suggest extending the ftpaccess file
directive
> passwd-check usage from
>
> passwd-check <none|trivial|rfc822> [<enforce|warn>]
>
> to
>
> passwd-check <none|trivial|rfc822|rfc822-limit> [<enforce|warn>]
>
> The passwd-check for rfc822-limit would read an exclusion list in a file
> somewhere and an associated message file. The exclusion file would have
> an entry such as
>
> # Email - Message file
> IE30User noieuser.msg
>
> and the noieuser.msg file might contain
>
> "Please change the default email address setting in Internet Explorer
3.0.
> Until that is done you will not be allowed anonymous access to this
site."
>
> This way it would be generic enough to be used for any such address
> restriction. In the above example I was sugggesting the 'enforce' was
> being used. If enforce was not the case then the message file would be
> tailored accordingly. Thoughts ?
>
> --
> Kent Landfield Phone: 1-817-545-2502
> Email:
[email protected] http://www.landfield.com/
> Please send comp.sources.misc related mail to
[email protected].
> Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Mon Oct 13 19:50:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA28358;
Mon, 13 Oct 1997 19:43:33 -0500 (CDT)
Received: from josephus.furph.com (josephus.furph.com [38.154.194.160])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA12011
for <
[email protected]>; Mon, 13 Oct 1997 19:41:21 -0500 (CDT)
Received: from localhost (beckers@localhost) by josephus.furph.com (8.8.0/8.8.0) with SMTP id UAA24586; Mon, 13 Oct 1997 20:42:00 -0400 (EDT)
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 20:42:00 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Becki Kain <
[email protected]>
To: Kent Landfield <
[email protected]>
Cc:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I like it! that would also allow people to add customer bad addresses.
beckers
On Mon, 13 Oct 1997, Kent Landfield wrote:
> Michael Finken <
[email protected]> wrote:
> # > I see a lot of connections where the anonymous user uses 'IE30User@' or
> # > 'mozilla@' as password. I want people to use their real mail addresses.
> # > Can I configure a filter for e-mail addresses in WU-FTPD?
>
> Becki Kain <
[email protected]> responded:
> # I'm not certain how you get people to change that - that is the default
> # when they goto your site from internet exploder and netscape agitator.
>
> This has been bothering me for a long time too. Changes would need to be
> made to the code to deal with this. I'm just brainstorming here so...
> (Warning Will Robinson!) I'd suggest extending the ftpaccess file directive
> passwd-check usage from
>
> passwd-check <none|trivial|rfc822> [<enforce|warn>]
>
> to
>
> passwd-check <none|trivial|rfc822|rfc822-limit> [<enforce|warn>]
>
> The passwd-check for rfc822-limit would read an exclusion list in a file
> somewhere and an associated message file. The exclusion file would have
> an entry such as
>
> # Email - Message file
> IE30User noieuser.msg
>
> and the noieuser.msg file might contain
>
> "Please change the default email address setting in Internet Explorer 3.0.
> Until that is done you will not be allowed anonymous access to this site."
>
> This way it would be generic enough to be used for any such address
> restriction. In the above example I was sugggesting the 'enforce' was
> being used. If enforce was not the case then the message file would be
> tailored accordingly. Thoughts ?
>
> --
> Kent Landfield Phone: 1-817-545-2502
> Email:
[email protected] http://www.landfield.com/
> Please send comp.sources.misc related mail to
[email protected].
> Search the Usenet Hypertext FAQ Archive at
http://www.faqs..org/faqs/
>
From
[email protected] Mon Oct 13 20:29:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA16858;
Mon, 13 Oct 1997 20:21:17 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id UAA03407
for <
[email protected]>; Mon, 13 Oct 1997 20:21:03 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 20:21:19 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
# Why bother to create distinct entries for particular clients?
# There are so many vendors and versions all with slightly different
# configuration semantics that differentiating across clients will not really
# add any value.
>From your perspective maybe.
# To my way of thinking it only complicates things, better to just check to
# see if they have something like a full email address and possibly do a DNS
# lookup on the domain to check and rebuke with a general message if it
# fails.
:) The problem here is that I want to be able to disallow people from
accessing the site without entering an email address. People often do
not change the default settings on their out-of-the-box web clients. These
addresses are not valid addresses. For these your suggestion would work.
The general message might get interesting though. ;)
Also I want the flexibility to disallow administrative addresses as well.
These are valid accesses from a host. In that case your suggestion would
not serve my purposes. Also, a single general message can be rather
limiting. Yes, this is just more to admin but...
At this point I am just brainstorming. What do other's think ?
# ----------
# > From: Kent Landfield <
[email protected]>
# > To:
[email protected]
# > Subject: Re: block bad mail addresses?
# > Date: Tuesday, October 14, 1997 1:21 AM
# >
# > Michael Finken <
[email protected]> wrote:
# > # > I see a lot of connections where the anonymous user uses 'IE30User@'
# or
# > # > 'mozilla@' as password. I want people to use their real mail
# addresses.
# > # > Can I configure a filter for e-mail addresses in WU-FTPD?
# >
# > Becki Kain <
[email protected]> responded:
# > # I'm not certain how you get people to change that - that is the default
# > # when they goto your site from internet exploder and netscape agitator.
# >
# > This has been bothering me for a long time too. Changes would need to be
# > made to the code to deal with this. I'm just brainstorming here so...
# > (Warning Will Robinson!) I'd suggest extending the ftpaccess file directive
# > passwd-check usage from
# >
# > passwd-check <none|trivial|rfc822> [<enforce|warn>]
# > to
# > passwd-check <none|trivial|rfc822|rfc822-limit> [<enforce|warn>]
# >
# > The passwd-check for rfc822-limit would read an exclusion list in a file
# > somewhere and an associated message file. The exclusion file would have
# > an entry such as
# >
# > # Email - Message file
# > IE30User noieuser.msg
# >
# > and the noieuser.msg file might contain
# >
# > "Please change the default email address setting in Internet Explorer.
# > Until that is done you will not be allowed anonymous access to this site."
# >
# > This way it would be generic enough to be used for any such address
# > restriction. In the above example I was sugggesting the 'enforce' was
# > being used. If enforce was not the case then the message file would be
# > tailored accordingly. Thoughts ?
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Mon Oct 13 20:46:53 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA09145;
Mon, 13 Oct 1997 20:40:00 -0500 (CDT)
Received: from Bahamut.dragonfire.net (Bahamut.dragonfire.net [209.70.16.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id UAA15221
for <
[email protected]>; Mon, 13 Oct 1997 20:38:16 -0500 (CDT)
Received: (from achurch@localhost) by Bahamut.dragonfire.net (8.8.5/8.7.5) id VAA23049; Mon, 13 Oct 1997 21:38:13 -0400
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 21:38:13 EDT
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Andy Church)
To:
[email protected]
Subject: Re: block bad mail addresses?
X-Mailer: MMail v4.62
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>At this point I am just brainstorming. What do other's think ?
I'm in favor of it--I get tired of seeing half my xferlogs (probably
more) filled with "mozilla@" and "IE30User@" despite the password checks.
At least I haven't had to actually use it recently, but you never know when
a nasty file will make its way on. Obviously, people who really want to be
clever can get around anything you can devise, but for the most part, this
will hopefully get people to start giving real addresses again. (I
remember five years ago, when there was no Netscrape or M$ Exploiter and
entering your E-mail address was a given. Ah, for the old days...)
--Andy Church | If Bell Atlantic really is the heart
[email protected] | of communication, then it desperately
www.dragonfire.net/~achurch/ | needs a quadruple bypass.
From
[email protected] Mon Oct 13 20:52:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA16279;
Mon, 13 Oct 1997 20:46:26 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id UAA19632
for <
[email protected]>; Mon, 13 Oct 1997 20:45:37 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id UAA06296;
Mon, 13 Oct 1997 20:45:43 -0500
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 20:45:43 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Kent Landfield <
[email protected]>
Cc:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Who says the email address I enter is valid? Without emailing that
address with a cookie and getting that cookie back within N minutes in an
email response, you have no guarantee that the email address one enters
has anything to do with the logger-inner. :)
-- Michael
On Mon, 13 Oct 1997, Kent Landfield wrote:
> :) The problem here is that I want to be able to disallow people from
> accessing the site without entering an email address. People often do
> not change the default settings on their out-of-the-box web clients. These
> addresses are not valid addresses. For these your suggestion would work.
> The general message might get interesting though. ;)
From
[email protected] Mon Oct 13 21:11:46 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA21005;
Mon, 13 Oct 1997 21:05:07 -0500 (CDT)
Received: from jester.ti.com (jester.ti.com [192.94.94.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA21864
for <
[email protected]>; Mon, 13 Oct 1997 21:00:58 -0500 (CDT)
Received: from dadd.ti.com. ([156.117.180.253]) by jester.ti.com (8.8.7) with ESMTP id VAA26032 for <
[email protected]>; Mon, 13 Oct 1997 21:00:27 -0500 (CDT)
Received: from pavis.dadd.ti.com by dadd.ti.com. (8.8.4/)
id VAA12366; Mon, 13 Oct 1997 21:00:23 -0500 (CDT)
Received: by pavis.dadd.ti.com id <
[email protected]>; Mon, 13 Oct 1997 21:00:17 -0500
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 97 21:00:17 CDT
Reply-To:
[email protected] (Bob Luckin)
Sender:
[email protected]
From: Bob Luckin <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]>; from "Michael Brennen" at Oct 13, 97 8:45 pm
X-Mimi-Options: HEADERS TI2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Michael said :-
> Who says the email address I enter is valid? Without emailing that
> address with a cookie and getting that cookie back within N minutes in an
> email response, you have no guarantee that the email address one enters
> has anything to do with the logger-inner. :)
Oh, I don't think getting your cookie back necessarily proves the email
address is valid, either, although it _probably_ proves it got somewhere,
even if just a fiendish postmaster's auto responder...
:-)
Seriously, I think one of Kent's arguments is that by disallowing the default
browser values, he'll get a much higher proportion of valid addresses than
he does now - on the reasonable assumption that most people will probably
change their browser defaults to use their real address rather than a fake one.
I'm for the suggestion.
Cheers, Bob
--
Bob Luckin
[email protected] "Coder - redo C"
From
[email protected] Mon Oct 13 21:30:35 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA26126;
Mon, 13 Oct 1997 21:24:06 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA20525
for <
[email protected]>; Mon, 13 Oct 1997 21:18:55 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id VAA06927;
Mon, 13 Oct 1997 21:14:35 -0500
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 21:14:35 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Bob Luckin <
[email protected]>
Cc:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I'm not saying the suggestion is worthless, but it may not be worth much
either. Its worth will probably be in direct proportion to the number of
newbies logging in that don't know to fake the address. I too had thought
of all kinds of mail deviations (postmasters, hijacked user accounts,
deviated MX records, ad nauseum), but didn't mention it.
-- Michael
On Mon, 13 Oct 1997, Bob Luckin wrote:
> Michael said :-
> > Who says the email address I enter is valid? Without emailing that
> > address with a cookie and getting that cookie back within N minutes in an
> > email response, you have no guarantee that the email address one enters
> > has anything to do with the logger-inner. :)
>
> Oh, I don't think getting your cookie back necessarily proves the email
> address is valid, either, although it _probably_ proves it got somewhere,
> even if just a fiendish postmaster's auto responder...
>
> :-)
>
> Seriously, I think one of Kent's arguments is that by disallowing the default
> browser values, he'll get a much higher proportion of valid addresses than
> he does now - on the reasonable assumption that most people will probably
> change their browser defaults to use their real address rather than a fake one.
From
[email protected] Mon Oct 13 21:32:36 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA24487;
Mon, 13 Oct 1997 21:26:27 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA22503
for <
[email protected]>; Mon, 13 Oct 1997 21:20:26 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Mon, 13 Oct 1997 21:20:53 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]> from "Michael Brennen" at Oct 13, 97 08:45:43 pm
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
# Who says the email address I enter is valid? Without emailing that
# address with a cookie and getting that cookie back within N minutes in an
# email response, you have no guarantee that the email address one enters
# has anything to do with the logger-inner. :)
:) Point one Michael. :) If people took the time to actually _enter_ a fake
address I'd be happy. I'm tired of the lazy people who fill my logs with
mozilla and IE30user. :)
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Mon Oct 13 22:59:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id WAA00838;
Mon, 13 Oct 1997 22:52:29 -0500 (CDT)
Received: from cornelius.cc.vanderbilt.edu (cornelius.cc.Vanderbilt.Edu [129.59.1.60])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id WAA29590
for <
[email protected]>; Mon, 13 Oct 1997 22:47:34 -0500 (CDT)
Received: from localhost (wuftp@localhost) by cornelius.cc.vanderbilt.edu (8.7.5/8.7.3) with SMTP id WAA05401 for <
[email protected]>; Mon, 13 Oct 1997 22:47:29 -0500 (CDT)
Message-Id: <Pine.SOL.3.96.971013224335.5379A-100000@cornelius.cc.vanderbilt.edu>
Date: Mon, 13 Oct 1997 22:47:29 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected]
Subject: ignoring pathnames.h
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I change pathnames.h to use /home/ftp/ftpusers instead of /etc/ftpusers
because I want to have two ftp servers on one machine, and give certain
people access only to one of them. I re-built, but it didn't seem to make
a difference. it is still using /etc/ftpusers instead of the one I want
it to? Are there any other tricks to this?
From
[email protected] Tue Oct 14 00:30:04 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id AAA01096;
Tue, 14 Oct 1997 00:20:52 -0500 (CDT)
Received: from wunet.wustl.edu (wunet.wustl.edu [128.252.120.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id AAA19942
for <
[email protected]>; Tue, 14 Oct 1997 00:15:44 -0500 (CDT)
Received: from lin-omts.airport.sakhalin.ru by wunet.wustl.edu
(PMDF V4.3-10 #20062) id <
[email protected]>; Mon,
13 Oct 1997 23:53:10 -0500 (CDT)
Received: from yura.airport.sakhalin.ru ([193.124.51.111])
by lin-omts.airport.sakhalin.ru (8.8.7/8.6.9) with ESMTP id QAA00104 for
<
[email protected]>; Tue, 14 Oct 1997 16:19:46 +0900
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 16:13:55 +1100
Reply-To:
[email protected]
Sender:
[email protected]
From: Yura Skobkaryev <
[email protected]>
To:
[email protected]
Subject: helpme
MIME-version: 1.0
Content-type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: Microsoft Internet Mail 4.70.1155
X-MSMail-Priority: Normal
X-Priority: 3
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id AAA05656
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hello !
I am having problems compling Wu-FTP for Linux. I have linux-2.0.9.Here is the log of the build.
make args are :
make opts are :
Linking Makefiles.
ln: Makefile: File exists
ln: config.h: File exists
ln: Makefile: File exists
Making support library.
Makefile:13: *** missing separator. Stop.
Making ftpd.
gcc -O -DDEBUG -I.. -I../support -I/usr/include/bsd -L../support -c ftpd.c -o
ftpd.o
In file included from ftpd.c:42:
config.h:25: syntax error before `typedef'
In file included from ftpd.c:46:
/usr/include/sys/stat.h:13: syntax error before `struct'
ftpd.c:227: parse error before `lostconn'
ftpd.c:227: warning: data definition has no type or storage class
ftpd.c:228: parse error before `randomsig'
ftpd.c:228: warning: data definition has no type or storage class
ftpd.c:229: parse error before `myoob'
ftpd.c:229: warning: data definition has no type or storage class
ftpd.c: In function `main':
ftpd.c:301: too few arguments to function `openlog'
ftpd.c:386: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:389: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:392: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:395: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:398: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:401: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:407: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:410: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:413: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:416: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:419: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:422: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:425: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:428: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:431: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:434: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:437: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:440: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:443: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:446: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:449: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:452: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:455: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:458: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:462: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c:469: warning: passing arg 2 of `__bsd_signal' from incompatible pointer t
ype
ftpd.c: At top level:
ftpd.c:560: parse error before `randomsig'
ftpd.c:571: parse error before `lostconn'
ftpd.c: In function `pass':
ftpd.c:1002: warning: assignment makes integer from pointer without a cast
ftpd.c: In function `opt_string':
ftpd.c:1226: warning: comparison between pointer and integer
ftpd.c:1228: warning: comparison between pointer and integer
ftpd.c:1230: warning: comparison between pointer and integer
ftpd.c: In function `retrieve':
ftpd.c:1342: warning: comparison between pointer and integer
ftpd.c: At top level:
ftpd.c:2430: parse error before `myoob'
make: *** [ftpd.o] Error 1
Making ftpcount.
gcc -O -DDEBUG -I.. -I../support -I/usr/include/bsd -L../support -o ftpcount ftp
count.c vers.o -lsupport -lbsd
gcc: vers.o: No such file or directory
In file included from ftpcount.c:32:
config.h:25: syntax error before `typedef'
In file included from /usr/include/libio.h:32,
from /usr/include/stdio.h:34,
from ftpcount.c:34:
/usr/include/_G_config.h:23: syntax error before `typedef'
ftpcount.c: In function `parsetime':
ftpcount.c:98: warning: comparison between pointer and integer
ftpcount.c:107: warning: comparison between pointer and integer
ftpcount.c: In function `acl_getlimit':
ftpcount.c:159: warning: comparison between pointer and integer
ftpcount.c:162: warning: assignment makes integer from pointer without a cast
ftpcount.c: In function `main':
ftpcount.c:307: warning: comparison between pointer and integer
ftpcount.c:310: warning: assignment makes integer from pointer without a cast
make: *** [ftpcount] Error 1
Making ftpshut.
gcc -O -DDEBUG -I.. -I../support -I/usr/include/bsd -L../support -o ftpshut ftps
hut.c vers.o -lsupport -lbsd
gcc: vers.o: No such file or directory
In file included from ftpshut.c:37:
config.h:25: syntax error before `typedef'
In file included from /usr/include/bsd/errno.h:5,
from ftpshut.c:39:
/usr/include/errno.h:30: syntax error before `extern'
ftpshut.c: In function `main':
ftpshut.c:188: warning: comparison between pointer and integer
ftpshut.c:191: warning: assignment makes integer from pointer without a cast
make: *** [ftpshut] Error 1
Making ckconfig.
make: `ckconfig' is up to date.
ln: ckconfig: File exists
Links to executables are in bin directory:
size: bin/ftpd: No such file or directory
size: bin/ftpcount: No such file or directory
size: bin/ftpshut: No such file or directory
size: bin/ftpwho: No such file or directory
text data bss dec hex filename
1060 1901 96 3057 bf1 bin/ckconfig
Done help me,please
Yury V. Skobkarev
From
[email protected] Tue Oct 14 02:14:45 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA17603;
Tue, 14 Oct 1997 02:07:44 -0500 (CDT)
Received: from malmo.trab.se (malmo.trab.se [131.115.48.10])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id CAA17397
for <
[email protected]>; Tue, 14 Oct 1997 02:04:30 -0500 (CDT)
Received: from linkoping.trab.se (helios.linkoping.trab.se [131.115.46.4]) by malmo.trab.se (8.7.5/TRAB-primary-2) with ESMTP id JAA22027 for <
[email protected]>; Tue, 14 Oct 1997 09:03:59 +0200 (MET DST)
Received: from helios.linkoping.trab.se (helios.linkoping.trab.se [131.115.46.4]) by linkoping.trab.se (8.8.3/TRAB-secondary-1) with SMTP id JAA03673 for <
[email protected]>; Tue, 14 Oct 1997 09:03:58 +0200 (MET DST)
Message-Id: <Roam.SIMC.2.0.6.876812638.8783.ath@helios>
Date: Tue, 14 Oct 1997 09:03:58 +0200 (MET DST)
Reply-To: Anders Thulin <
[email protected]>
Sender:
[email protected]
From: Anders Thulin <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: "Your message with ID" <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; CHARSET=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Michael Finken wrote:
> I see a lot of connections where the anonymous user uses 'IE30User@' or
> 'mozilla@' as password. I want people to use their real mail addresses.
Can you distinguish between a good address and a bad one? How?
There is, as far as I know, no guaranteed way to do so.
A syntactically bad address is possible to detect, of course. Just
parse it using the *full* RFC822 syntax.
A syntactically correct address can still be bad. How to check? Perhaps
by finding the mailhost of the specified domain, connecting to it, and
requesting 'VRFY mailbox'. Some will verify, but the tendency is to
give a noncomittal answer - the site won't verify, but will attempt delivery of
a mail.
And even then, how do you verify that people have used their real mail
address? You can't. 'root@localhost' for instance, works for most UNIX
systems, but certainly isn't the real address. And you can't entirely
rely on exclusion of bad address - '
[email protected]' can
easily be a real mail address. And even if you could rely on it, how about
'
[email protected]'? Or '
[email protected]'?
If you allow anonymous FTP, why not accept it? Anonymous is anonymous,
and IE30user and mozilla are no worse than any other alias. If you don't like
full anonymity, don't provide anonftp.
I see that others have posted suggestions for how to handle this problem,
although none seem to question the problem description.
If the problem is lack of authentication, anonftp is not the answer. If the
problem is that you want some kind of traceability, filtering on mailbox names
doesn't help. If you don't like to see 'IE30User' or 'mozilla' in the logs,
perhaps the easiest solution would be to filter them away before the log
entries are made?
If the problem is that Netscape and Microsoft provide defaults where you
think they shouldn't, then complain. It's not likely to change anything, as
these browsers are primary for making Internet easier for people who don't
understand it. If the problem is that people don't understand Internet, ...
well, and so on.
I hope I don't sound offensive - I don't mean to be. But not liking anon
users names doesn't sound like a good problem statement. It may be an
indication of a real problem, but so far it sounds much more like a perceived
problem. Don't solve those -- they change as quickly as perceptions change.
Better find the real problem.
>
> Can I configure a filter for e-mail addresses in WU-FTPD?
>
> Thanks,
> Michael
>
> --
> Michael Finken NENTEC Netzwerktechnologie GmbH
> Tel.: +49 721 9495-0 76227 Karlsruhe/Germany - - -
> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Old
> pilots never die, they just go to a higher plane.
Anders Thulin
[email protected] 013-23 55 32
Telia Engineering AB, Teknikringen 6, S-583 30 Linkoping, Sweden
From
[email protected] Tue Oct 14 05:17:45 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA30382;
Tue, 14 Oct 1997 05:11:23 -0500 (CDT)
Received: from micro.internexus.net (
[email protected] [206.152.14.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id FAA27538
for <
[email protected]>; Tue, 14 Oct 1997 05:09:53 -0500 (CDT)
Received: from localhost (master@localhost)
by micro.internexus.net (8.8.7/8.8.4) with SMTP
id GAA05022; Tue, 14 Oct 1997 06:01:21 -0400
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 06:01:21 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Laszlo Vecsey <
[email protected]>
To: Eugeny Kuzakov <
[email protected]>
Cc:
[email protected]
Subject: Re: ftp daemon with bandwidth limiting feature
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Wed, 1 Oct 1997, Eugeny Kuzakov wrote:
> Dear Sirs !
>
> Where can I find it ?
> 10tx !
Does anyone else have information on this?
Is there a way to limit bandwidth on the kernel level perhaps, for an
aliased IP on a Linux box used for virtual ftp?
- lv
From
[email protected] Tue Oct 14 06:14:10 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA03933;
Tue, 14 Oct 1997 06:07:53 -0500 (CDT)
Received: from topelo.lopi.com (
[email protected] [199.92.203.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id GAA24664
for <
[email protected]>; Tue, 14 Oct 1997 06:05:23 -0500 (CDT)
Received: from topelo.lopi.com (localhost [127.0.0.1]) by topelo.lopi.com (whn-1.0) with ESMTP id HAA10240; Tue, 14 Oct 1997 07:03:57 -0400
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 07:03:57 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Bill Nugent <
[email protected]>
To:
[email protected]
Cc: Eugeny Kuzakov <
[email protected]>,
[email protected]
Subject: Re: ftp daemon with bandwidth limiting feature
In-Reply-To: Your message of Tue, 14 Oct 1997 06:01:21 -0400.
<
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: exmh version 2.0zeta 7/24/97
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I don't think so. The most sure fire way I know of is to put the ftp
host on a subnet by itself and have two routers talking to each other
over a stub serial line with the clocking set at the rate you want to
limit the bandwidth at. Something along the lines of:
ISP<-leased-line->site-router<-ethernet->your normal hosts...
^
|
+--slow-serial-->throttling router<-ethernet->ftp-host
Bill
On Tuesday, Oct 14 1997 at 06:01:21, Laszlo Vecsey wrote:
>On Wed, 1 Oct 1997, Eugeny Kuzakov wrote:
>
>> Dear Sirs !
>>
>> Where can I find it ?
>> 10tx !
>
>Does anyone else have information on this?
>
>Is there a way to limit bandwidth on the kernel level perhaps, for an
>aliased IP on a Linux box used for virtual ftp?
>
>- lv
>
From
[email protected] Tue Oct 14 06:35:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA02115;
Tue, 14 Oct 1997 06:29:26 -0500 (CDT)
Received: from bear.bcinet.net (
[email protected] [208.133.29.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id GAA01219
for <
[email protected]>; Tue, 14 Oct 1997 06:21:45 -0500 (CDT)
Received: from crysalis.com (crysalis.com [208.133.29.144])
by bear.bcinet.net (8.8.5/8.8.5) with ESMTP id HAA17941
for <
[email protected]>; Tue, 14 Oct 1997 07:17:11 -0400
Received: from suzanne (suzanne.crysalis.com [192.94.66.1])
by crysalis.com (8.8.5/8.8.5) with SMTP id HAA14639
for <
[email protected]>; Tue, 14 Oct 1997 07:21:44 -0400 (EDT)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 07:21:40 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Suzanne Archibald <
[email protected]>
To:
[email protected]
Subject: Re: ftp daemon with bandwidth limiting feature
In-Reply-To: <
[email protected]>
References: <Your message of Tue, 14 Oct 1997 06:01:21 -0400. <
[email protected]>
Mime-Version: 1.0
Content-Type: text/enriched; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Actually, I'm fairly sure this IS possible, it would just be a matter of timelimiting the amount of data sent to data connection ports.
Anyway... My point of replying was to say that I recall using FTP servers in the UK a few years ago that would often greet you with 'Setting data bandwidth to 30K/s max' and if they were heavily loaded, it would occasionally be '300B/s max'. If i recall, funet.fi also used such a scheme once upon a time. Maybe as high bandwidth connections have become more easily available to these heavy servers they have stopped imposing such limits, but it would be useful if we could find such servers again for general use.
At 07:03 AM 10/14/97 -0400, Bill Nugent wrote:
>I don't think so. The most sure fire way I know of is to put the ftp
>host on a subnet by itself and have two routers talking to each other
>over a stub serial line with the clocking set at the rate you want to
>limit the bandwidth at. Something along the lines of:
>
Suzanne Archibald
Programmer
<bold>Crysalis Software
</bold>
http://www.crysalis.com/
From
[email protected] Tue Oct 14 07:15:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA26970;
Tue, 14 Oct 1997 07:04:32 -0500 (CDT)
Received: from acton.com (dns.acton.com [205.240.126.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id HAA05437
for <
[email protected]>; Tue, 14 Oct 1997 07:00:35 -0500 (CDT)
Received: (from hkok@localhost) by acton.com (8.7.5/8.7.3) id HAA16870 for
[email protected]; Tue, 14 Oct 1997 07:02:52 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 07:02:52 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Hon-Yin Kok <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi Ken,
I guess you are not trying to offer anonymous ftp service, rather it should
be called restrictive ftp service. Some companies I help setup uses firewall
and the only way to get out is through a proxy.
I notice most of the users are non-computer literate and don't even know
what you are talking about. You sounds like you are trying to create a kiosk
or headache for many system administrator rather than offering the best
service to the users. Are you sure that is what the whole group in general
want simply because you are the only one who prefer to change.
I feel preety comfortable with web browsers users since I know I can trust
the user * to a certain extend * because they can read and download files only,
and not able to write to my disk. Isn't that more important? I notice some
school around here uses a software called foolproof lock which disable the
user abilities to write some part of the harddisk hence the users are not able
to modify the preferences, therefore I suppose these users will never be able
to get into your site. Some users around the world, for example cybercafe
offer public terminals... and I doubt they will take time to modify the user
preference simply because you don't like to see the mozilla@ as a user.
Just my 2 penny thought... -KHY
> # Kent Landfield said :-
> # > This has been bothering me for a long time too. Changes would need to be
> # > made to the code to deal with this. I'm just brainstorming here so...
> # > (Warning Will Robinson!) I'd suggest extending the ftpaccess file directive
> # > passwd-check usage from
> # >
> # > passwd-check <none|trivial|rfc822> [<enforce|warn>]
> # >
> # > to
> # >
> # > passwd-check <none|trivial|rfc822|rfc822-limit> [<enforce|warn>]
> # >
> # > The passwd-check for rfc822-limit would read an exclusion list in a file
> # > somewhere and an associated message file. The exclusion file would have
> # > an entry such as
> # >
> # > # Email - Message file
> # > IE30User noieuser.msg
> # >
> # > and the noieuser.msg file might contain
> # >
> # > "Please change the default email address setting in Internet Explorer 3.0.
> # > Until that is done you will not be allowed anonymous access to this site."
> # >
> # > This way it would be generic enough to be used for any such address
> # > restriction. In the above example I was sugggesting the 'enforce' was
> # > being used. If enforce was not the case then the message file would be
> # > tailored accordingly. Thoughts ?
> #
> # As proposed, this additional check would only be made if the rfc822-limit
> # option was specified, when I assume the standard rfc822 checks would also
> # be made. I'd prefer to have it available for all of the existing options,
> # not just rfc822. OK, "none" might not make much sense, but certainly for
> # trivial as well.
>
> Oh, I think there may be a bug in the rfc822 as I see no difference in
> trivial and rfc822. If I type 'kent@' in trivial I get in. (This is how
> trivial is suppose to work.) When I type in 'kent@' with rfc822 set I
> get the same results and no warning of an invalid RFC822 address being
> specified. Maybe I should submit this to Stan....
>
> # Another way of achieving this would be to add individual lines to the
> # ftpaccess file like :-
> # noanonpsw mozilla mozilla.msg
> # noanonpsw IE30User ieuser.msg
> #
> # This should be OK if you don't have too many alternative passwords you want
> # to disallow - especially since it cuts down the need for another external
> # file, and could be checked no matter what authentication type you specified.
>
> Yeah, I thought of that. Here is a list of massively repeated entries
> that I have in my logs. I'd put an entry for each one somewhere.
>
> IE30User@
> IE30Usera@
> IE40user@
> Netscape@
> WWWuser@
> anonymous@
> cache@
> guest@
> harvest@
> http@
> httpgw@
> lynx@
> mozilla@
> netcache@
> nobody@
> none@
> proxyuser@
> squid@
> whoever@
> wwwuser@
>
> --
> Kent Landfield Phone: 1-817-545-2502
> Email:
[email protected] http://www.landfield.com/
> Please send comp.sources.misc related mail to
[email protected].
> Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
>
From
[email protected] Tue Oct 14 07:23:36 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA05609;
Tue, 14 Oct 1997 07:17:09 -0500 (CDT)
Received: from bear.bcinet.net (
[email protected] [208.133.29.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id HAA25847
for <
[email protected]>; Tue, 14 Oct 1997 07:11:59 -0500 (CDT)
Received: from crysalis.com (crysalis.com [208.133.29.144])
by bear.bcinet.net (8.8.5/8.8.5) with ESMTP id IAA18229
for <
[email protected]>; Tue, 14 Oct 1997 08:07:26 -0400
Received: from suzanne (suzanne.crysalis.com [192.94.66.1])
by crysalis.com (8.8.5/8.8.5) with SMTP id IAA14888
for <
[email protected]>; Tue, 14 Oct 1997 08:11:59 -0400 (EDT)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 08:11:55 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Suzanne Archibald <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]>
Mime-Version: 1.0
Content-Type: text/enriched; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
At 07:02 AM 10/14/97 -0500, Hon-Yin Kok wrote:
> I feel preety comfortable with web browsers users since I know I can trust
>the user * to a certain extend * because they can read and download files only,
>and not able to write to my disk. Isn't that more important? I notice some
>school around here uses a software called foolproof lock which disable the
>user abilities to write some part of the harddisk hence the users are not able
>to modify the preferences, therefore I suppose these users will never be able
>to get into your site. Some users around the world, for example cybercafe
>offer public terminals... and I doubt they will take time to modify the user
>preference simply because you don't like to see the mozilla@ as a user.
>
More importantly, his suggestions block all people behind certain proxies, witness the lines: (How fair is this to people with no control over the firewall they are often forced behind due to corperate and ISP choices ? (example, AOL (used to?) proxy all http and ftp connections using a cache server)
>> cache@
>> harvest@
>> httpgw@
>> netcache@
>> proxyuser@
>> squid@
Suzanne Archibald
Programmer
<bold>Crysalis Software
</bold>
http://www.crysalis.com/
From
[email protected] Tue Oct 14 09:19:05 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA12502;
Tue, 14 Oct 1997 09:11:26 -0500 (CDT)
Received: from diana (diana.mint.se [193.14.99.34])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA08145
for <
[email protected]>; Tue, 14 Oct 1997 09:09:18 -0500 (CDT)
Received: from blondie.mint.se by diana (SMI-8.6/SMI-SVR4)
id QAA29534; Tue, 14 Oct 1997 16:09:09 +0200
Received: from mn-book.mint.se (mn-pc.mint.se [192.168.101.42]) by blondie.mint.se (8.7.1/8.7.1) with SMTP id QAA07807 for <
[email protected]>; Tue, 14 Oct 1997 16:09:06 +0200
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 16:08:52 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Mattias Niklasson <
[email protected]>
To:
[email protected]
Subject: Proxy problems
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: Windows Eudora Light Version 3.0.1 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hello,
We are running WUftpd 2.4(2) on a Solaris 2.5.1 system. It works fine
except for a couple of customers running proxy servers. For them, just
about nothing happens. The proxy seems to think the ftp server is down.
There are no communication problems between the proxy and our ftp server,
when we have tried to connect from the actual proxy box whithout problems.
Have anyone seen this problem before?
Best Regards,
Mattias Niklasson
-----------------------------------------------------------
Marieberg Interactive AB Tel: 08-459 39 42
Box 27205 Fax: 08-661 51 30
102 53 Stockholm Mob: 070-620 11 90
From
[email protected] Tue Oct 14 09:23:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA18163;
Tue, 14 Oct 1997 09:17:16 -0500 (CDT)
Received: from att.com (kcgw2.att.com [192.128.133.152])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA16212
for <
[email protected]>; Tue, 14 Oct 1997 09:16:42 -0500 (CDT)
Received: by kcgw2.att.com; Tue Oct 14 09:02 CDT 1997
Received: from lynxhub.lz.att.com ([135.25.204.10])
by kcig2.att.att.com (AT&T/GW-1.0) with SMTP id JAA05781
for <
[email protected]>; Tue, 14 Oct 1997 09:06:31 -0500 (CDT)
Received: by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA08610; Tue, 14 Oct 1997 10:14:14 -0400
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 10:14:13 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected] (ftp archive)
Subject: date stamp using Netscape browser
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Folks,
I'm saying an incorrect date displayed in Navigator and Communicator
when I ftp using the browser. Any file or dir. with the current day
has the year displayed as 1996. I see the browser sending the
following commands when it logs in
PASV - that works fine
SIZE on the login directory - That fails not a plain file
MDTM on the login directory - That fails not a plain file
RETR on the login directory - That fails not a plain file
CWD on login directory - that works fine
LIST - that works fine
Then the browser display shows the wrong Day of week and year for any
files or directories that are dated with the current day
I'm running on SGI 6.2. The date problem appears on standard SGI ftp and
WU-ftp.
It works fine on Sun ftp. Cute ftp client works fine on both platforms
When I change the year on my pc the Netscape client always displays year-1
Any comments would be appreciated.
Doug
--
Doug Courtney
[email protected]
(732)576-5572
From
[email protected] Tue Oct 14 09:43:55 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA11989;
Tue, 14 Oct 1997 09:36:02 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA19382
for <
[email protected]>; Tue, 14 Oct 1997 09:33:52 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 09:34:21 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]> from "Hon-Yin Kok" at Oct 14, 97 07:02:52 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Good grief folks... It is truly amazing the response I've received on this...
Some are all for it and others sound as if it will break the world. ;)
I thought I said...
# > # > I'm just brainstorming here so...
# > # > (Warning Will Robinson!)
;)
# I guess you are not trying to offer anonymous ftp service, rather it should
# be called restrictive ftp service. Some companies I help setup uses firewall
# and the only way to get out is through a proxy.
I offer anonymous ftp. That will not change. What has changed is the way that
browsers are impacting sites offering anonymous ftp access. Most sites use
email as the password for anonymous access. The purpose there was to provide
an attempt for the user to identify themselves as they access the site. Any
user that wished to not identify themselves could enter anything they wished
as long as it was in the form of an email address. The user in this case had
to make a conscious decision as to what to enter.
Then came the dumbing up of the net. People became too lazy to even change
the basics in their browsers. A facility that had been working nicely for
many years quit being functional at all. How bad can it be ? Let's examine
my situation and see the usefulness of using the email address as the
password...
38% - mozilla
19% - IE30User
15% - other similar default ids
28% - user entered /configured addresses
72% of the addresses supplied are default out-of-the-box addresses .... 72%...
# I notice most of the users are non-computer literate and don't even know
# what you are talking about. You sounds like you are trying to create a kiosk
# or headache for many system administrator rather than offering the best
# service to the users. Are you sure that is what the whole group in general
# want simply because you are the only one who prefer to change.
TAKE THE TONE ELSEWHERE OK? This has been complained about before. If I
thought I was the only one this affected I would write it myself as a local
enhancement. I currently am doing that with other enhancements that are local
in scope. The idea here is there is a problem and we are looking for a
solution. If this was implemented and you felt that you didn't want to
use it, then don't.
Now... Take a look at what you just said. I'm creating a headache for people
who what something for free from my system when I only ask that a valid attempt
be made to enter something other than out-of-the box defaults as the email
address. This was why the feature was inplemented in the first place. The
browsers have subverted its usefulness. The suggestion I put forward for
allowing message files associated with addresses that are disallowed was to
educate the user's as to how to do it right.
# I feel preety comfortable with web browsers users since I know I can trust
# the user * to a certain extend * because they can read and download files only,
# and not able to write to my disk. Isn't that more important?
More important than what ? This does not change a policy of requiring
something other than defaults be entered at the anonymous password prompt
anymore than your policy of disallowing writing to the incoming directory.
Some of us need to be able to have writable public areas. If you had to
supply writeable areas would you still be as comfortable ?
# I notice some
# school around here uses a software called foolproof lock which disable the
# user abilities to write some part of the harddisk hence the users are not able
# to modify the preferences, therefore I suppose these users will never be able
# to get into your site.
Then if that's the case, the users at that site should set a bonfire under the
admin's butt to correct the situation. The school should want to protect itself
from rogue students by doing a better job of assuring all their users are
identifiable. The school lawyers might be interested in this. I'll bet they'd
change that in a hurry. Aside from that, this kind of protecting the user from
themselves is just plain wrong!
# Some users around the world, for example cybercafe
# offer public terminals... and I doubt they will take time to modify the user
# preference simply because you don't like to see the mozilla@ as a user.
So they will not be able to access any site with that restriction. If that is
the policy then that is the policy. When you are asking to get someting for
free you should at least abide by the "minimal" requirements to do so.
And can the cybercafe public terminals write to your disk ? Aren't you
inhibiting their ability to pass warez ? :)
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Tue Oct 14 09:49:10 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA19295;
Tue, 14 Oct 1997 09:42:20 -0500 (CDT)
Received: from lab321.ru (anonymous1.omsk.net.ru [194.226.32.34])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA19543
for <
[email protected]>; Tue, 14 Oct 1997 09:40:53 -0500 (CDT)
Received: from lab321.ru (kev.l321.omsk.net.ru [194.226.33.68])
by lab321.ru (8.8.5-MVC-230497/8.8.5) with ESMTP id VAA14321;
Tue, 14 Oct 1997 21:42:27 +0600 (OSK)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 21:42:08 +0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Eugeny Kuzakov <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: ftp daemon with bandwidth limiting feature
References: <Your message of Tue, 14 Oct 1997 06:01:21 -0400. <
[email protected]> <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 4.03b8 [en] (X11; I; FreeBSD 3.0-970807-SNAP i386)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Suzanne Archibald wrote:
>
> Anyway... My point of replying was to say that I recall using FTP servers in the UK a few years ago that would often >greet you with 'Setting data bandwidth to 30K/s max' and if they were heavily loaded, it would occasionally be '300B/s >max'. If i recall, funet.fi also used such a scheme once upon a time. Maybe as high bandwidth connections have become >more easily available to these heavy servers they have stopped imposing such limits, but it would be useful if we could >find such servers again for general use.
Ok. Fine.
Where can I find it ? Is it freeware patches ?
Thanks for respond !
--
Best wishes, Eugeny Kuzakov
Laboratory 321 ( Omsk, Russia )
http://www.lab321.ru/~kev
[email protected]
From
[email protected] Tue Oct 14 09:57:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA09074;
Tue, 14 Oct 1997 09:48:43 -0500 (CDT)
Received: from wunet.wustl.edu (wunet.wustl.edu [128.252.120.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA23439
for <
[email protected]>; Tue, 14 Oct 1997 09:44:13 -0500 (CDT)
Received: from ns1.fni.com by wunet.wustl.edu (PMDF V4.3-10 #20062)
id <
[email protected]>; Tue, 14 Oct 1997 09:21:37 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA19672; Tue,
14 Oct 1997 09:43:42 -0500
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 09:43:42 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Yura Skobkaryev <
[email protected]>
Cc:
[email protected]
Subject: Re: helpme
In-Reply-To: <
[email protected]>
MIME-version: 1.0
Content-type: TEXT/PLAIN; charset=US-ASCII
Content-transfer-encoding: 7BIT
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
There are enough different types of errors here (make, include files) that
I don't know where to begin to think your errors are. Are you running the
build command with "./build" to make sure that you are not running another
system command named build?. Doesn't seem likely, but worth asking.
-- Michael
On Tue, 14 Oct 1997, Yura Skobkaryev wrote:
> I am having problems compling Wu-FTP for Linux. I have linux-2.0.9.Here is the log of the build.
> make args are :
> make opts are :
>
> Linking Makefiles.
> ln: Makefile: File exists
> ln: config.h: File exists
> ln: Makefile: File exists
>
> Making support library.
> Makefile:13: *** missing separator. Stop.
>
> Making ftpd.
> gcc -O -DDEBUG -I.. -I../support -I/usr/include/bsd -L../support -c ftpd.c -o
> ftpd.o
> In file included from ftpd.c:42:
> config.h:25: syntax error before `typedef'
> In file included from ftpd.c:46:
> /usr/include/sys/stat.h:13: syntax error before `struct'
> ftpd.c:227: parse error before `lostconn'
From
[email protected] Tue Oct 14 10:01:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA21570;
Tue, 14 Oct 1997 09:54:53 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA00576
for <
[email protected]>; Tue, 14 Oct 1997 09:53:16 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 09:53:38 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]> from "Suzanne Archibald" at Oct 14, 97 08:11:55 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
# More importantly, his suggestions block all people behind certain proxies,
# witness the lines: (How fair is this to people with no control over the
# firewall they are often forced behind due to corperate and ISP choices ?
# (example, AOL (used to?) proxy all http and ftp connections using a cache
# server)
#
# >> cache@
# >> harvest@
# >> httpgw@
# >> netcache@
# >> proxyuser@
# >> squid@
Those were examples only. I was not advocating that I would. I was
advocating that I would like the ability to have that capability if
I deem to use it at some point. Your point is that it is not fair
for a local site administrator to set a local policy that affects those
that cannot help themselves... How is what I have described all that
different than
deny !nameserved /etc/msgs/msgs.named
I choose to use it or I don't. This is a local policy decision that the
end users have no control over.
Things won't change for the better unless there is some indication of what
better is. The problem today could get serious enough that ftp starts to
disappear as more and more site admins move to httpd only due to better
individual identification and access control. Then we can all start
complaining at the apache folks.
User's do have a lot more control over corporate policy than you might
imagine. I know first hand as one who has been on the receiving end of
that "force". And if an ISP doesn't wish to adapt to the changing net,
chances are there are many more willing to supply you with the services
you require.
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Tue Oct 14 10:08:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA25514;
Tue, 14 Oct 1997 10:01:15 -0500 (CDT)
Received: from castor.ipac.caltech.edu (ipac.caltech.edu [131.215.11.35])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA24283
for <
[email protected]>; Tue, 14 Oct 1997 09:59:24 -0500 (CDT)
Received: from obi-wan.ipac.caltech.edu (obi-wan.ipac.caltech.edu [134.4.40.194])
by castor.ipac.caltech.edu (8.7.4/8.6.4)
with SMTP id HAA19974
for <
[email protected]>; Tue, 14 Oct 1997 07:59:22 -0700 (PDT)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 07:57:34 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: "David G. Mills" <
[email protected]>
To:
[email protected]
Subject: GUESTGROUP vs. PRIVATE? ...
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: Windows Eudora Pro Version 3.0.1 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Howdy, Folks!
We're setting up a new server with a number of groups in our organization
that want anon ftp to the world, both read and write access. Each group
wants to maintain its privacy with respect to the others, and each wants to
ensure that only designated parties outside our org can see (and write)
their data.
I've been scratching my little noggin over the best way to enable certain
members of each group to post files into their group space while tightly
controlling who has write access to certain directories in my anon ftp
filespace.
I've been pondering the relative merits of using the ftpaccess "guestgroup"
directive vs. the "private yes" + "site group / gpass" method of
segregating users and filespace.
When would you tend to use one mechanism over the other?
All comments welcome, and THANKS!
david
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
David G. Mills / Systems Admin
ISG (IPAC Systems Group) / Caltech
[email protected]
626-397-7241
From
[email protected] Tue Oct 14 10:31:18 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA18219;
Tue, 14 Oct 1997 10:21:20 -0500 (CDT)
Received: from sws6.ctd.ornl.gov (sws6.ctd.ornl.gov [128.219.128.168])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA27312
for <
[email protected]>; Tue, 14 Oct 1997 10:19:26 -0500 (CDT)
Received: (qmail 13534 invoked by uid 23223); 14 Oct 1997 15:19:25 -0000
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 97 11:19:24 EST
Reply-To:
[email protected]
Sender:
[email protected]
From: Jim Simmons <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]>
References: <
[email protected]>
<
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: VM 6.22 under 19.15 XEmacs Lucid
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
To answer the original question, here's a patch I have used with
wu-2.4.2-beta-12. I haven't tried it with later versions but I
suspect it would be trivial to get working.
Note that this isn't ideal -- the list of blocked users is defined in
a header file, so it gets compiled into wu-ftpd. For my use this was
acceptable. Also, the list will need to be updated some--browsers
have changed since this was last used.
Once the patch is made and strict.h created/updated, build wu-ftpd like usual
and install it. To activate the checks, change your ftpaccess file
passwd-check setting to:
passwd-check strict enforce
You can turn off the checking by resetting the passwd-check line in
ftpaccess.
----------------------------------------------------------------------
diff -cr wu-ftpd-2.4.2-beta-12/src/ftpd.c wu-ftpd-2.4.2-beta-12new/src/ftpd.c
*** wu-ftpd-2.4.2-beta-12/src/ftpd.c Mon Jan 20 00:05:11 1997
--- wu-ftpd-2.4.2-beta-12new/src/ftpd.c Thu Feb 13 16:12:12 1997
***************
*** 117,123 ****
#include "conversions.h"
#include "extensions.h"
#include "pathnames.h"
!
#ifdef M_UNIX
#include <arpa/nameser.h>
#include <resolv.h>
--- 117,123 ----
#include "conversions.h"
#include "extensions.h"
#include "pathnames.h"
! #include "strict.h" /* JWS */
#ifdef M_UNIX
#include <arpa/nameser.h>
#include <resolv.h>
***************
*** 1312,1317 ****
--- 1312,1359 ----
return 0;
}
+
+ int
+ #ifdef __STDC__
+ validate_strict( char *eaddr ) /* JWS */
+ #else
+ validate_strict( eaddr ) /* JWS */
+ char *eaddr;
+ #endif
+ {
+ char *cp = eaddr;
+ char user[80];
+ int i;
+
+ if ( *cp == '-' ) /* Skip leading -, if any */
+ cp++;
+
+ /* Get the "user name". Assume that
+ it is everything up to the first
+ non-alphanumeric. Convert it to
+ lower case for comparison. */
+ for ( i = 0; i < sizeof( user ) - 1; i++ ) {
+ if ( ! isalnum( *cp ) )
+ break;
+ if ( isupper( *cp ) )
+ user[i] = tolower( *cp++ );
+ else
+ user[i] = *cp++;
+ }
+ user[i] = '\0';
+
+ /* Make sure name isn't in list
+ (defined in strict.h) */
+
+ for ( i = 0; i < sizeof( exclude_strict ) / sizeof( char *); i++ )
+ if ( strcmp( user, exclude_strict[i] ) == 0 )
+ return 0; /* Oops, don't like this user*/
+
+ return 1; /* Ok */
+ }
+
+
+
void
#ifdef __STDC__
pass(char *passwd)
***************
*** 1420,1431 ****
char *pwin,
*pwout = guestpw;
struct aclmember *entry = NULL;
! int valid;
if (getaclentry("passwd-check", &entry) &&
ARG0 && strcasecmp(ARG0, "none")) {
! if (!strcasecmp(ARG0, "rfc822"))
valid = validate_eaddr(passwd);
else if (!strcasecmp(ARG0, "trivial"))
valid = (strchr(passwd, '@') == NULL) ? 0 : 1;
--- 1462,1480 ----
char *pwin,
*pwout = guestpw;
struct aclmember *entry = NULL;
! int valid, failed_strict = 0;
if (getaclentry("passwd-check", &entry) &&
ARG0 && strcasecmp(ARG0, "none")) {
! if (!strcasecmp(ARG0, "strict")) { /* JWS */
! valid = validate_eaddr(passwd);
! if ( valid ) {
! valid = validate_strict(passwd);
! failed_strict = ! valid;
! }
! }
! else if (!strcasecmp(ARG0, "rfc822"))
valid = validate_eaddr(passwd);
else if (!strcasecmp(ARG0, "trivial"))
valid = (strchr(passwd, '@') == NULL) ? 0 : 1;
***************
*** 1440,1445 ****
--- 1489,1504 ----
authenticated ? authuser : "joe");
lreply(530, "[%s will be added if password ends with @]",
remotehost);
+
+ if ( failed_strict ) { /* JWS */
+ lreply(530, "If you are connecting through a gopher or");
+ lreply(530, "WWW client, it is not identifying you by");
+ lreply(530, "name. Please ftp directly to this machine.");
+ lreply(530, "Providing a valid e-mail address allows us");
+ lreply(530, "to notify you of data updates, revisions,");
+ lreply(530, "or errors.");
+ }
+
reply(530, "Login incorrect.");
acl_remove();
if (++login_attempts >= lgi_failure_threshold) {
----------------------------------------------------------------------
And the file wu-ftpd-2.4.2-beta-12new/src/strict.h is:
----------------------------------------------------------------------
/* Include file defining "user" names that shouldn't be allowed as first part
of the password entered for anonymous users. */
/* "users" must be alphanumeric and in lowercase. */
static char *exclude_strict[] = {
"ftp",
"gopher",
"guest",
"anonymous",
"user",
"wwwuser" };
----------------------------------------------------------------------
Hope this helps,
Jim
From
[email protected] Tue Oct 14 10:40:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA15203;
Tue, 14 Oct 1997 10:33:00 -0500 (CDT)
Received: from Jane.apg.more.net (
[email protected] [198.209.250.181])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA28964
for <
[email protected]>; Tue, 14 Oct 1997 10:26:32 -0500 (CDT)
Received: (from dan@localhost)
by Jane.apg.more.net (8.8.7/8.8.7) id KAA10015;
Tue, 14 Oct 1997 10:26:08 -0500
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 10:26:08 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Dan Niles <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
There really isn't any point to blocking mozilla@ and IE30User@
entries. Most people, especially if forced, will simply input
a bogus email address like
[email protected]. The only way
to ensure that the addresses in your logs is correct would be
to verify each one. This would put way too much load on the
server, but could be easily programmed.
Someone mentioned that they thought trivial and rfc822 were the same.
I do not believe that is the case. They both handle user@ the same
because the host the client came from is used as the host.
Dan
From
[email protected] Tue Oct 14 11:17:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA00705;
Tue, 14 Oct 1997 11:10:09 -0500 (CDT)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA26991
for <
[email protected]>; Tue, 14 Oct 1997 11:06:41 -0500 (CDT)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id SAA15629
for <
[email protected]>; Tue, 14 Oct 1997 18:05:11 GMT
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 18:05:10 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To:
[email protected]
Subject: little bug with "upload" in .15 ?
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
If I put into ftpaccess:
upload /home/ftp /pub/home/user/* yes user group 0644 dirs
I can >not< upload into that directory. But if I have:
upload /home/ftp /pub/home/user yes user group 0644 dirs
it works (the only difference is "/*"). I think these semantics are not
intended that way?!
The bug (if I might say) is either in path_compare or in upl_check.
Thanks,
*
t
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
Tom: So far, der winter kommt, ich schaff mir glaub ich noch ein paar
Tom: Zyxel traffos an...
Roli: Aber genug davon nehmen. Wenn die Dinger kapput gehen werden sie
Roli: nicht mehr warm.
From
[email protected] Tue Oct 14 11:24:36 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA01732;
Tue, 14 Oct 1997 11:16:36 -0500 (CDT)
Received: from jester.ti.com (jester.ti.com [192.94.94.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA27602
for <
[email protected]>; Tue, 14 Oct 1997 11:13:24 -0500 (CDT)
Received: from dadd.ti.com. ([156.117.180.253]) by jester.ti.com (8.8.7) with ESMTP id LAA26433 for <
[email protected]>; Tue, 14 Oct 1997 11:12:50 -0500 (CDT)
Received: from pavis.dadd.ti.com by dadd.ti.com. (8.8.4/)
id LAA04915; Tue, 14 Oct 1997 11:12:47 -0500 (CDT)
Received: by pavis.dadd.ti.com id <
[email protected]>; Tue, 14 Oct 1997 11:12:45 -0500
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 97 11:12:45 CDT
Reply-To:
[email protected] (Bob Luckin)
Sender:
[email protected]
From: Bob Luckin <
[email protected]>
To:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]>; from "Dan Niles" at Oct 14, 97 10:26 am
X-Mimi-Options: HEADERS TI2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> There really isn't any point to blocking mozilla@ and IE30User@
> entries. Most people, especially if forced, will simply input
> a bogus email address like
[email protected]. The only way
> to ensure that the addresses in your logs is correct would be
> to verify each one. This would put way too much load on the
> server, but could be easily programmed.
What makes you think that most people would deliberately use a bogus email
address when the non-helpful browser default is disallowed ?
I'm sure there are a lot of FTP admins out there who believe they have a
reasonably decent customer base - the majority of which who would do the
right thing with a bit of education - which is what Kent's proposal could
provide.
Your situation may be different. Fine - you simply don't have to turn
that feature on if it gets implemented in a future release. But I think
there are plenty of other FTP admins who believe this feature could help
in their particular circumstances.
Of course the proposed solution wouldn't prevent a determined user from
supplying a bogus email address. That's not what it's intended to do, though.
One way to use it is to encourage people to stop using uninformative defaults
supplied with browsers. It may not be 100% effective, but that's not enough
reason not to adopt it. Nor (depending upon the target user base) does it
necessarily place any unfair restrictions on the user base for a particular
server, as another poster seemed to be implying.
Cheers, Bob
--
Bob Luckin
[email protected] "Coder - redo C"
From
[email protected] Tue Oct 14 12:12:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA07503;
Tue, 14 Oct 1997 12:01:14 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA05071
for <
[email protected]>; Tue, 14 Oct 1997 11:57:13 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 11:57:37 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]> from "Dan Niles" at Oct 14, 97 10:26:08 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Well... sigh.. It seems that there is NO WAY for users of netscape or IE
to get it right even if they WANTED to... I just spent 10 minutes playing
with them and can't get either one to do the right thing, even though I
have my email address entered correctly... If you know of a way to do it
*please* let me know.
To all the lazy netscape and IE users I maligned I'm sorry. ;) Seems that
there is just no way to block those addresses without disabling all browser
access. WHY AM I NOT SUPRISED! (Wait, maybe that's not so bad... Access
a site only with Netscape... Hmmm wonder what Netscape would think of the
idea ? I'm KIDDING folks!)
I have messages into both Netscape and MS asking what the basis of this is.
Let's see who answers. ;)
# There really isn't any point to blocking mozilla@ and IE30User@
# entries. Most people, especially if forced, will simply input
# a bogus email address like
[email protected]. The only way
# to ensure that the addresses in your logs is correct would be
# to verify each one. This would put way too much load on the
# server, but could be easily programmed.
This was not what happend BB (Before Browsers). If the browsers did the
right thing then they would give the user a clickable option to use their
email address as their anonymous ftp password and those that didn't would
use the default. All moot at this point in time.
# Someone mentioned that they thought trivial and rfc822 were the same.
# I do not believe that is the case. They both handle user@ the same
# because the host the client came from is used as the host.
??
>From the manpage...
passwd-check <none|trivial|rfc822> (<enforce|warn>)
Define the level and enforcement of password checking
done by the server for anonymous ftp.
none no password checking performed.
trivial password must contain an '@'.
rfc822 password must be an rfc822 compliant address.
If rfc822 password checking was not broken then why can you type
anon@
as an anonymous password and get in ? anon@ is not a valid rfc822 address
last I checked. But then again, I'd better check again... My track record
is not too good lately. ;)
validate_eaddr(kent) == 0
validate_eaddr(kent@) == 1
validate_eaddr(
[email protected]) == 1
validate_eaddr(
[email protected]) == 1
validate_eaddr(@nfr.net) == 0
validate_eaddr(nfr.net) == 0
Test program below.
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
--------------------------- testprog.c -----------------------
#include<stdio.h>
char *names[] = {
"kent",
"kent@",
"
[email protected]",
"
[email protected]",
"@nfr.net",
"nfr.net",
NULL,
};
int validate_eaddr(eaddr)
char *eaddr;
{
int i,
host,
state;
for (i = host = state = 0; eaddr[i] != '\0'; i++) {
switch (eaddr[i]) {
case '.':
if (!host)
return 0;
if (state == 2)
state = 3;
host = 0;
break;
case '@':
if (!host || state > 1 || !strncasecmp("ftp", eaddr + i - host, host))
return 0;
state = 2;
host = 0;
break;
case '!':
case '%':
if (!host || state > 1)
return 0;
state = 1;
host = 0;
break;
case '-':
break;
default:
host++;
}
}
if (((state == 3) && host > 1) || ((state == 2) && !host) ||
((state == 1) && host > 1))
return 1;
else
return 0;
}
void main()
{
int rc;
int c;
char *name;
for (c = 0; names[c] != NULL; c++) {
rc = validate_eaddr(names[c]);
printf("validate_eaddr(%s) == %d\n", names[c], rc);
}
}
From
[email protected] Tue Oct 14 12:21:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA05700;
Tue, 14 Oct 1997 12:13:14 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA12772
for <
[email protected]>; Tue, 14 Oct 1997 12:10:38 -0500 (CDT)
Received: from egate.mnet.uswest.com (egate-co1.mnet.uswest.com [151.119.130.8])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id LAA03254
for <
[email protected]>; Tue, 14 Oct 1997 11:10:07 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate.mnet.uswest.com (8.7.1/8.7.1) with SMTP id LAA18794 for <
[email protected]>; Tue, 14 Oct 1997 11:10:06 -0600 (MDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id MAA19519 for <
[email protected]>; Tue, 14 Oct 1997 12:16:43 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA15930
for <
[email protected]>; Tue, 14 Oct 1997 11:10:03 -0600
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 11:13:23 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: logging
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I'm having some problems with logging on my Irix 5.3 with a virtual
server. The problem is that everything is going to the SYSLOG.
Here's the associated entries in ftpaccess:
virtual 204.133.158.103 root /usr/home/fred
virtual 204.133.158.103 banner /usr/local/lib/ftpd/fred.banner
virtual 204.133.158.103 logfile /usr/local/lib/ftpd/fred.log
log commands anonymous,real,guest
log transfers anonymous,real,guest inbound,outbound
Here's the man page:
If the -l option is specified, each ftp session is logged
in the syslog.
If the -L option is specified, commands sent to the
ftpd(8) server will be logged to the syslog. The -L
option is overridden by the use of the ftpaccess(5) file.
If the -L flag is used, command logging will be on by
default as soon as the ftp server is invoked. This will
cause the server to log all USER commands, which if a user
accidentally enters a password for that command instead of
the username, will cause passwords to be logged via sys-
log.
I have neither '-L' nor '-l' on the ftpd command line...
TIA,
Brad
From
[email protected] Tue Oct 14 12:59:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA01096;
Tue, 14 Oct 1997 12:51:11 -0500 (CDT)
Received: from att.com (cagw2.att.com [192.128.52.90])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA30087
for <
[email protected]>; Tue, 14 Oct 1997 12:47:48 -0500 (CDT)
Received: by cagw2.att.com; Tue Oct 14 13:44 EDT 1997
Received: from lynxhub.lz.att.com ([135.25.204.10])
by caig2.att.att.com (AT&T/GW-1.0) with SMTP id NAA04776
for <
[email protected]>; Tue, 14 Oct 1997 13:59:16 -0400 (EDT)
Received: from ROGERH ([135.25.200.159]) by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA19459; Tue, 14 Oct 1997 13:45:26 -0400
Received: by ROGERH with Microsoft Mail
id <01BCD8A7.D912FE90@ROGERH>; Tue, 14 Oct 1997 13:48:27 -0400
Message-Id: <01BCD8A7.D912FE90@ROGERH>
Date: Tue, 14 Oct 1997 13:48:24 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: "Roger A. Hanke" <
[email protected]>
To: "'WUFTPD List'" <
[email protected]>
Subject: FW: Any possible year 2000 problems with wu-ftpd?
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
The following mail message pointed out one place WUFTPD code
would need to be changed to be year 2000 compliant. I never saw any
further followup on this mail and of course my managers are all hot
on this ;^>
So if the change described below was made, does anyone know
which Beta release was changed to become completely year 2000 compliant?
Thanx,
Roger Hanke
----------
From: Mark Galbraith[SMTP:
[email protected]]
Sent: Thursday, March 27, 1997 1:09 PM
To:
[email protected]
Subject: Re: Any possible year 2000 problems with wu-ftpd?
>>>>> "Kent" == Kent Landfield <
[email protected]> writes:
Kent> #
Kent> # The subject says it all...I can't think of anywhere that wu-ftpd makes
Kent> # assumptions about the year that could cause problems, but I thought I'd
Kent> # run it by everyone just in case I overlooked something.
Kent> Andy,
Kent> When I saw this question I laughed. Then I started to think about it
Kent> and then I went and looked...
Kent> There are three places where 1900 is used explicitly. Two times in
Kent> extensions.c and once in ftpshut.c.
Kent> extensions.c: tmbuf.tm_year -= 1900;
Kent> extensions.c: tm.tm_year -= 1900;
Kent> ftpshut.c: (tp->tm_year) + 1900,
Kent> ftpshut.c should not be a problem as long as the system time functions do
Kent> the right thing. The two references in extensions.c can be handled with an
Kent> if statement checking the date > 2000. Question is, are there non-obvious
Kent> gotchas ?
This should not present a problem. If you look at the manual page for
localtime, you will see that the tm_year entry is the number of years
since 1900. This entity is an 'int'. On 16-bit machines (are there any
of these left?), this means the largest number of years could be 32,767
((2^15)-1); plus the 1900, or 34,667. On 32-bit machines, which most
everyone should be on by now, the number is large enough that no one
should worry about it. For those that care the value is ((2^31)-1) or
2,147,483,647 (plus the 1900).
The code should work so long as they are not trying to stuff the result
into a two-digit output format.
The first occurance in extensions.c is in the code for processing
entries from Shutdown process. This file (specified by ftpaccess)
contains the date/time of the shutdown in a specified format. The
format specification doesn't say whether the year must be four digits,
but it does state it should be greater than 1970. I take that to mean
it must be four digits. The code is scanning this value into the
tm_year field, and then adjusting it by subtracting 1900. For years
greater than 1999, the resulting value will be 100 or more, and that's
just fine. NO PROBLEM HERE.
The second occurance is in a function called newer(). This function is
passed a number of parameters, the first of which is a date string. The
first sub-field of that date string is the year, and it is specified as
a 4-digit year. This value is likewise put in the tm_year field, and
then adjusted by subtracting 1900. NO PROBLEM HERE.
The entry in ftpshut.c is where the shutdown message gets written when
an ftpshut command is issued. The adjustment is computing the date to
be printed in the file, which is later read by the first occurance in
extensions.c above. The value is taken from the tm_year field after the
current time is adjusted for the offset. The number of years in that
field is adjusted by adding 1900. If the year was 2000, then the value
in the field would be 100, and the result of the adjustment would be
2000. NO PROBLEM HERE.
Disclaimer: In the following section, I refer to line numbers in
files. I'm still using WU-FTP version 2.4 here, so all line numbers are
relative to the 2.4 version.
There is one additional place where we need to be concerned in FTP. At
line 1568 in ftpcmd.c, produced from line 701 in ftpcmd.y, we have a
reference to tm_year which assumes a 2-digit value. In fact, it even
has the '19' (century part of the year) hardcoded. The patch to fix
this is:
*** ftpcmd.y- Thu Mar 27 17:01:24 1997
--- ftpcmd.y Thu Mar 27 17:05:32 1997
***************
*** 713,720 ****
struct tm *gmtime();
t = gmtime(&stbuf.st_mtime);
reply(213,
! "19%02d%02d%02d%02d%02d%02d",
! t->tm_year, t->tm_mon+1, t->tm_mday,
t->tm_hour, t->tm_min, t->tm_sec);
}
free($4);
--- 713,720 ----
struct tm *gmtime();
t = gmtime(&stbuf.st_mtime);
reply(213,
! "%04d%02d%02d%02d%02d%02d",
! t->tm_year+1900, t->tm_mon+1, t->tm_mday,
t->tm_hour, t->tm_min, t->tm_sec);
}
free($4);
Kent> Mirroring might get interesting globally if the mirroring software people use
Kent> does not realize '00' is not less than '99'. Well, at least for a day or so
Kent> until all the mirror sites redownload everything and resync their file
Kent> timestamps... I think I'll be on vacation that week.
Mirroring is another issue, and another program. The people with access
to those programs should be checking them to see if they are affected by
year-2000 problems.
--
Mark Galbraith Member of The HTML Writers Guild
Engineer, Internet Services
http://www.hwg.org/
Triad Systems Corporation
(PGP Fingerprint=1CB9 7481 AD5C 5709 690B AC09 7F65 D6F6)
From
[email protected] Tue Oct 14 13:07:46 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA07418;
Tue, 14 Oct 1997 12:57:36 -0500 (CDT)
Received: from nms.rz.uni-kiel.de (nms100.rz.uni-kiel.de [134.245.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA12660
for <
[email protected]>; Tue, 14 Oct 1997 12:55:19 -0500 (CDT)
Received: from marvin.bwl.uni-kiel.de by nms.rz.uni-kiel.de
with Local-SMTP (PP) id <
[email protected]>;
Tue, 14 Oct 1997 20:00:16 +0200
Received: by marvin.bwl.uni-kiel.de (AIX 3.2/UCB 5.64/4.03) id AA41313;
Tue, 14 Oct 1997 19:45:00 +0200
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 19:44:59 +0200 (DFT)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Josef Siemes)
To:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]> from "Kent Landfield" at Oct 14, 97 11:57:37 am
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>
> Well... sigh.. It seems that there is NO WAY for users of netscape or IE
> to get it right even if they WANTED to...
It is possible, at least with Netscape 3.02 (Solaris):
Options -> Network preferences -> Protocols,
there check the box 'Send Email address as Anonymous FTP Password'
I think this wasn't possible with NS 2.x and earlier.
Regards,
Josef Siemes,
[email protected]
From
[email protected] Tue Oct 14 13:19:03 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA30433;
Tue, 14 Oct 1997 13:10:09 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA09541
for <
[email protected]>; Tue, 14 Oct 1997 13:04:36 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 13:05:04 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Subject: Re: FW: Any possible year 2000 problems with wu-ftpd?
In-Reply-To: <01BCD8A7.D912FE90@ROGERH> from "Roger A. Hanke" at Oct 14, 97 01:48:24 pm
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
#
# The following mail message pointed out one place WUFTPD code
# would need to be changed to be year 2000 compliant. I never saw any
# further followup on this mail and of course my managers are all hot
# on this ;^>
#
# So if the change described below was made, does anyone know
# which Beta release was changed to become completely year 2000 compliant?
# Thanx,
# Roger Hanke
In the FIXES-2.4.2-BETA-14 file Stan writes:
-----------------------------------------------------------------------------
Mark Galbraith noted a Y2K compliance problem in ftpcmd.y where the year
would always be printed as 19XX. This is now fixed. Unfortunately, it appears
that noone opened a ticket on this one that I can find. This came from the
mailing list. I believe that wu-ftpd is as Y2K compliant as it can be with
this fix.
-----------------------------------------------------------------------------
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Tue Oct 14 13:32:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA30577;
Tue, 14 Oct 1997 13:22:50 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA12070
for <
[email protected]>; Tue, 14 Oct 1997 13:19:54 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 13:20:15 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]> from "Josef Siemes" at Oct 14, 97 07:44:59 pm
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
# It is possible, at least with Netscape 3.02 (Solaris):
# Options -> Network preferences -> Protocols,
# there check the box 'Send Email address as Anonymous FTP Password'
#
# I think this wasn't possible with NS 2.x and earlier.
gak!! I thought I squished all the 2.x versions on my net... I just
checked the copy I normally use and sure enough it was right there.
Great! Now I can unapologize to all the lazy Netscape users. ;) Now
if someone knows if IE4.0 supports this as well then filtering might
be useful after all.
Thanks Josef!
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Tue Oct 14 15:57:52 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA26773;
Tue, 14 Oct 1997 15:42:07 -0500 (CDT)
Received: from GIRI.INTRO.CS.CMU.EDU (GIRI.INTRO.CS.CMU.EDU [128.2.191.201])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA00692
for <
[email protected]>; Tue, 14 Oct 1997 15:36:40 -0500 (CDT)
Received: from localhost (winters@localhost)
by GIRI.INTRO.CS.CMU.EDU (8.8.5/8.8.5) with SMTP id QAA07765
for <
[email protected]>; Tue, 14 Oct 1997 16:36:06 -0400
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 16:36:06 -0400 (EDT)
Reply-To: "David C. Winters" <
[email protected]>
Sender:
[email protected]
From: "David C. Winters" <
[email protected]>
To:
[email protected]
Subject: Re: Connection problem with disconnected outside network
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I've gotten this problem solved. It was a name resolution thing: The ftp
server couldn't resolve the hostname/FQDN/IP of the client machines, which
was causing the hang. It was suggested that I install named on the client
machine. The actual solution turned out to be even simpler: /etc/hosts had
gotten corrupted and putting a new, clean copy on the machine solved
everything. Thanks to Koos van den Hout for pointing me in this direction,
and to everyone who responded.
D.
On Wed, 8 Oct 1997, David C. Winters wrote:
>During exams, we isolate the cluster(s) from the network by pulling an
>Ethernet cable. The problem is that while isolated, the students' machines
>can't access the wu-ftpd server running on the instructor's machine. The
>instructor's machine is listed in all the /etc/hosts files, but "ftp class1"
>is met with nothing--the ftp process simply hangs. Control-C won't
>interrupt it; we have to put it in the background with Control-Z and then
>kill it.
David
[email protected], CLSA "You are a fiend and a coward, and
Office: 3503 WeH, x86720 you have bad breath."
-- Golgotha to a luser, Sep' 97
From
[email protected] Tue Oct 14 16:03:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA25832;
Tue, 14 Oct 1997 15:54:13 -0500 (CDT)
Received: from claret.psychology.mcmaster.ca (claret.psychology.McMaster.CA [130.113.218.34])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA32651
for <
[email protected]>; Tue, 14 Oct 1997 15:49:34 -0500 (CDT)
Received: by claret.psychology.mcmaster.ca (951211.SGI.8.6.12.PATCH1502/951211.SGI)
for
[email protected] id QAA05224; Tue, 14 Oct 1997 16:49:27 -0400
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 16:49:27 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Alan J Rosenthal)
To:
[email protected]
Subject: Re: block bad mail addresses?
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> "Please change the default email address setting in Internet Explorer 3.0.
> Until that is done you will not be allowed anonymous access to this site."
..
>Thoughts ?
Here is why I have my e-mail address in my netscape preferences configured to
"here@there". I'd love to type my real e-mail address in to a genuine ftp
session... and I always do when I use the normal ftp program... but...
1) With a bogus return address, if I click on a mailto: link, it doesn't do
it, it complains. That's good, I hate netscape mail and I want to send mail
in my usual mail program, if at all -- usually this comes up when I thought a
link led to INFORMATION, for hyoop's sake, not asking ME to provide
information. Furthermore, with a complaint-generating return address,
javascript can't send bogus mail, I think. I can't prevent other people from
sending e-mail forged as being from me, but I'd just as soon not run a program
which can help others forge e-mail from me. 'Course, I keep javascript turned
off all of the time, except occasionally, and then I might forget to turn it
back off...
2) Old versions of netscape, or at least of some browsers, send the e-mail
address with every http request. I definitely don't want to send my e-mail
address to slimy internet advertisers who have embedded images in search
engines. It would be one thing if I knew who they were, but embedded images
can connect to anybody and the http request is made before I even see the
image or a box or anything. Search engines and folks like that change which
slimy company they do business with surprisingly frequently (reminds me of a
Cecil Adams column saying "businesses like this are prone to sudden changes of
address").
But the version of netscape I use on a daily basis doesn't do this. But I
guess I'm just in the habit.
3) Even if your browser doesn't send your e-mail address for http, if it sends
your e-mail address for ftp, then slimy web sites can include ftp URLs for
embedded images.
So if you want my e-mail address, you'll have to let me type it in to a form
or something. My web browser does a lot of creepy things behind my back
already and anything I can prevent, I do.
well, you asked for thoughts...
regards
From
[email protected] Tue Oct 14 16:18:03 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA29101;
Tue, 14 Oct 1997 16:06:59 -0500 (CDT)
Received: from pop.cybernex.net (
[email protected] [207.198.151.60])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA04086
for <
[email protected]>; Tue, 14 Oct 1997 16:05:42 -0500 (CDT)
Received: from shell1.cybernex.net (
[email protected] [204.141.116.19])
by pop.cybernex.net (Mail-clerk/Homer) with SMTP id RAA29277
for <
[email protected]>; Tue, 14 Oct 1997 17:02:40 -0400
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 21:00:48 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "Matt W." <
[email protected]>
To:
[email protected]
Subject: Ftp users
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Anybody,
I am trying to make a user only able to login by ftp, and go to a certin
directory. I created a new user 'ftp' and set the shell to '/bin/false'
and set their home directory to /ftp but when ever the person ftps in they
get an error 'User ftp access denied.' but if I change the shell
to '/bin/tcsh' they can login through ftp, but they get access to / but I
want to make it so they cannot leave the ftp directory (just make it so
they can go further down the directory tree, but not up past /ftp)
is there any way I can do this?
Thanks a lot!!!
Matt
From
[email protected] Tue Oct 14 16:41:02 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA21798;
Tue, 14 Oct 1997 16:32:14 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA02650
for <
[email protected]>; Tue, 14 Oct 1997 16:29:40 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id QAA29945;
Tue, 14 Oct 1997 16:29:41 -0500
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 16:29:40 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: "Matt W." <
[email protected]>
Cc:
[email protected]
Subject: Re: Ftp users
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
The guest howto, FAQ and list archives can help answer your questions.
-- Michael
On Tue, 14 Oct 1997, Matt W. wrote:
> I am trying to make a user only able to login by ftp, and go to a certin
> directory. I created a new user 'ftp' and set the shell to '/bin/false'
> and set their home directory to /ftp but when ever the person ftps in they
> get an error 'User ftp access denied.' but if I change the shell
> to '/bin/tcsh' they can login through ftp, but they get access to / but I
> want to make it so they cannot leave the ftp directory (just make it so
> they can go further down the directory tree, but not up past /ftp)
> is there any way I can do this?
This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to
[email protected]
with a subject line: send faq
guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "
[email protected]"
(immediate autoresponder; subject does not matter)
wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
There are additional security references in the above docs.
From
[email protected] Tue Oct 14 17:18:22 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA02628;
Tue, 14 Oct 1997 17:10:10 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA10696
for <
[email protected]>; Tue, 14 Oct 1997 17:08:28 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id RAA30868;
Tue, 14 Oct 1997 17:08:28 -0500
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 17:08:27 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: "David G. Mills" <
[email protected]>
Cc:
[email protected]
Subject: Re: GUESTGROUP vs. PRIVATE? ...
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Tue, 14 Oct 1997, David G. Mills wrote:
> We're setting up a new server with a number of groups in our organization
> that want anon ftp to the world, both read and write access. Each group
> wants to maintain its privacy with respect to the others, and each wants to
> ensure that only designated parties outside our org can see (and write)
> their data.
"Immovable Object Meets Irresistible Force"......
Sounds like you don't want anon ftp; you just want others outside the org
to have tightly controlled access to the FTP site.
Very loose security would be to create different classes in ftpaccess from
different IP addresses / host names and restrict access that way. That is
only as good as physical access to the machines allowed access, or
availability of an address block (from an ISP, for example).
You could create guest accounts and distribute a username and password;
you could also define multiple guest logins to a given account, with read
and write access based on owner and group permissions. 'yuk' seems an
appropriate descriptor for the ongoing admin headaches.
If access must be really tight, I think there is a hack somewhere to use a
SecurID OTP dongle for authentication. That adds to the per user cost,
but it is effective.
Those are off the top of my head; more focused attention might turn up
more options that I've forgotten.
-- Michael
From
[email protected] Tue Oct 14 19:29:45 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA20617;
Tue, 14 Oct 1997 19:23:22 -0500 (CDT)
Received: from rzaixsrv2.rrz.uni-hamburg.de (
[email protected] [134.100.33.12])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA20684
for <
[email protected]>; Tue, 14 Oct 1997 19:17:25 -0500 (CDT)
Received: from max-168.public.uni-hamburg.de by rzaixsrv2.rrz.uni-hamburg.de (AIX 4.1/UCB 5.64/4.03)
id AA68888; Wed, 15 Oct 1997 02:17:22 +0200
Received: (from news@localhost)
by dumbo.zoff.de (8.8.5/8.8.5) id BAA02011;
Wed, 15 Oct 1997 01:52:05 +0200
Message-Id: <
[email protected]>
Date: Wed, 15 Oct 1997 01:52:04 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Christophe Zwecker <
[email protected]>
To:
[email protected]
Subject: Guestgroup problem with shadow ?
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 3.01 (X11; I; Linux 2.0.30 i586)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
HI,
I use Linux 2.0.30 wu.ftpd beta15
I stup a guestaccount as in the faq, used same entries in passwd's, did
the entry in ftpaccess accordingly. I have the shadow system installed.
The User I created does not have a PW. However when I change his shell
to /etc/ftponly and try to login via ftp to localhost, the server asks
for a PW. SO I don't know why is this happening ? Which PW does the
system want ? There is none....
I hope anyone can help me on this one.
thx alot
--
Christophe Zwecker email:
[email protected]
Hamburg, Germany fax: 49 40 22715433
sms (msg body):
[email protected]
>--> In newsgroups please reply also by email - thanks <--<
From
[email protected] Tue Oct 14 23:30:02 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id XAA07568;
Tue, 14 Oct 1997 23:23:13 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id XAA06913
for <
[email protected]>; Tue, 14 Oct 1997 23:22:21 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id XAA05807;
Tue, 14 Oct 1997 23:22:21 -0500
Message-Id: <
[email protected]>
Date: Tue, 14 Oct 1997 23:22:20 -0500 (CDT)
Reply-To: Michael Brennen <
[email protected]>
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Christophe Zwecker <
[email protected]>
Cc:
[email protected]
Subject: Re: Guestgroup problem with shadow ?
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
There are some minor changes to make in the Makefile and a couple of other
places to use shadow passwords. Did you configure those in? If not check
~/src/makefiles/Makefile.lnx, and you might need to define SHADOW_PASSWORD
in ~/config/config.lnx.
-- Michael
On Wed, 15 Oct 1997, Christophe Zwecker wrote:
> I stup a guestaccount as in the faq, used same entries in passwd's, did
> the entry in ftpaccess accordingly. I have the shadow system installed.
>
> The User I created does not have a PW. However when I change his shell
> to /etc/ftponly and try to login via ftp to localhost, the server asks
> for a PW. SO I don't know why is this happening ? Which PW does the
> system want ? There is none....
From
[email protected] Wed Oct 15 03:04:06 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA01934;
Wed, 15 Oct 1997 02:57:49 -0500 (CDT)
Received: from unlisys.unlisys.NET (mail.unlisys.net [195.21.255.252])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA17412
for <
[email protected]>; Wed, 15 Oct 1997 02:52:20 -0500 (CDT)
Received: by unlisys.unlisys.NET (Smail3.2.0.96)
from aip.de (141.33.160.1) with smtp
id <m0xLOFU-0017mSC>; Wed, 15 Oct 1997 09:52:08 +0200 (MET DST)
Received: from calypso by marlowe (4.1/SMI-4.2-apr170795)
id AA17872; Wed, 15 Oct 97 09:52:04 MES
Received: by calypso; id AA25250; Wed, 15 Oct 1997 09:52:03 +0200
Message-Id: <9710150752.AA25250@calypso>
Date: Wed, 15 Oct 1997 09:52:03 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Dieter Meinert <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: Proxy problems
In-Reply-To: <
[email protected]> (message from
Mattias Niklasson on Tue, 14 Oct 1997 16:08:52 +0200)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
-----BEGIN PGP SIGNED MESSAGE-----
Hi, I also had that problem and tracked it to the communication
between wu-ftpd and cern-httpd which I ran as a proxy server.
It appears that the proxy tries to submit a PASV command which
the ftpd does not allow.
I'm sorry but I did not find a solution except for either shutting down
the ftp-proxy or using the solaris ftpd, which does not have
that problem.
|=>
|=> Hello,
|=>
|=> We are running WUftpd 2.4(2) on a Solaris 2.5.1 system. It works fine
|=> except for a couple of customers running proxy servers. For them, just
|=> about nothing happens. The proxy seems to think the ftp server is down.
|=>
|=> There are no communication problems between the proxy and our ftp server,
|=> when we have tried to connect from the actual proxy box whithout problems.
|=>
|=> Have anyone seen this problem before?
|=>
|=> Best Regards,
|=> Mattias Niklasson
|=>
|=> -----------------------------------------------------------
|=> Marieberg Interactive AB Tel: 08-459 39 42
|=> Box 27205 Fax: 08-661 51 30
|=> 102 53 Stockholm Mob: 070-620 11 90
|=>
Regards,
Dieter
_____________________________*__________________________________
/ *
[email protected] \
\ Dieter Meinert (- **
http://abrixas.aip.de/~dieter/ \
\__________________A______*__*___________________________________/
(public pgp key from
http://abrixas.aip.de/~dieter/.Adresse.html)
-----BEGIN PGP SIGNATURE-----
Version: 2.6
iQCVAgUBNER2IvYksnFoaQ6JAQHxVwP+MKbFJS585yVjV03KqrbjohSfTO7p15RE
UpyNJWEUPWrQZX3moQRlMpa2osnlKX2/40Xru+pbTTuvwOKx0rCOTnQJOPIUJmEn
RLHYeU2EhXWHxiVJx3BvGD7kkpK7SSuXdKU2XemCwRHw1RMa5md9Ithv11jfENPI
cKpKWvm9Fm4=
=d1xT
-----END PGP SIGNATURE-----
From
[email protected] Wed Oct 15 05:47:33 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id FAA09894;
Wed, 15 Oct 1997 05:36:01 -0500 (CDT)
Received: from biff.stud.ntnu.no (biff.stud.ntnu.no [129.241.56.18])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id FAA14285
for <
[email protected]>; Wed, 15 Oct 1997 05:29:27 -0500 (CDT)
Received: from ild.stud.ntnu.no (ild.stud.ntnu.no [129.241.56.15]) by biff.stud.ntnu.no (8.8.5/8.8.0) with ESMTP id MAA17528 for <
[email protected]>; Wed, 15 Oct 1997 12:29:24 +0200 (MET DST)
Received: (from joge@localhost) by ild.stud.ntnu.no (8.8.5/8.8.0) id MAA26287 for
[email protected]; Wed, 15 Oct 1997 12:29:24 +0200 (MET DST)
Message-Id: <
[email protected]>
Date: Wed, 15 Oct 1997 12:29:24 +0200 (MET DST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Geir Johannessen <
[email protected]>
To:
[email protected]
Subject: How to make good patches?
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Url:
http://www.stud.ntnu.no/~joge/
X-Mailer: ELM [version 2.4ME+ PL27 (25)]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi
I have rewritten some code in wu-ftpd so it logs even the transferlogs to
syslog. Naturally I would like to apply this patch every time there is a
new release. So I tried to make a patchfile with diff:
diff -c -C 0 file.c file.c.orig
This works when the file is not changed from the previous release. But once
some linenumbers change it fails. What is the correct diff command (or
maybe there is another program)?
And is there a way to tell patch to make a new file containing some lines
without complaining about missing original file?
(I guess this is not the right place to ask such questions, but I reckon
there are a lot of people with experience that knows the answer.)
--
Geir Johannessen #
[email protected]
E B Schieldropsvei 35-25 #
http://www.stud.ntnu.no/~joge/
N-7033 TRONDHEIM, NORWAY # Tlf private +47-73888989, job +47-73598048
"A conscience does not prevent sin. It only prevents you from enjoying it."
From
[email protected] Wed Oct 15 08:29:26 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA18755;
Wed, 15 Oct 1997 08:22:31 -0500 (CDT)
Received: from aristo.tau.ac.il (
[email protected] [132.66.32.10])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA23851
for <
[email protected]>; Wed, 15 Oct 1997 08:13:03 -0500 (CDT)
Received: (from eilon@localhost) by aristo.tau.ac.il (8.8.5/8.7.5) id PAA13495; Wed, 15 Oct 1997 15:11:10 +0200 (IST)
Message-Id: <
[email protected]>
Date: Wed, 15 Oct 1997 15:11:09 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Eilon Gishri <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: How to make good patches?
In-Reply-To: <
[email protected]>; from Geir Johannessen on Wed, Oct 15, 1997 at 12:29:24PM +0200
References: <
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.85
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Wed, Oct 15, 1997 at 12:29:24PM +0200, Geir Johannessen wrote:
> Hi
>
> I have rewritten some code in wu-ftpd so it logs even the transferlogs to
> syslog. Naturally I would like to apply this patch every time there is a
> new release. So I tried to make a patchfile with diff:
>
> diff -c -C 0 file.c file.c.orig
>
> This works when the file is not changed from the previous release. But once
> some linenumbers change it fails. What is the correct diff command (or
> maybe there is another program)?
>
> And is there a way to tell patch to make a new file containing some lines
> without complaining about missing original file?
>
Try
ftp://ftp.gnu.ai.mit.edu/pub/gnu/patch-2.5.tar.gz you will also find
there the gnu diff in which you can use as follows:
diff -u --recursive --new-file <old dir/file> <new dir/file>
> (I guess this is not the right place to ask such questions, but I reckon
> there are a lot of people with experience that knows the answer.)
>
> --
> Geir Johannessen #
[email protected]
> E B Schieldropsvei 35-25 #
http://www.stud.ntnu.no/~joge/
> N-7033 TRONDHEIM, NORWAY # Tlf private +47-73888989, job +47-73598048
> "A conscience does not prevent sin. It only prevents you from enjoying it."
--
Eilon Gishri
[email protected]
Security Consultant Office: +972-3-6406723
Israel Inter University Computation Center Fax: +972-3-6409118
/* On a matter of national security */ Home: +972-3-5078671
From
[email protected] Wed Oct 15 10:31:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA02224;
Wed, 15 Oct 1997 10:20:19 -0500 (CDT)
Received: from Jane.apg.more.net (
[email protected] [198.209.250.181])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA09200
for <
[email protected]>; Wed, 15 Oct 1997 10:16:28 -0500 (CDT)
Received: (from dan@localhost)
by Jane.apg.more.net (8.8.7/8.8.7) id KAA12750;
Wed, 15 Oct 1997 10:16:17 -0500
Message-Id: <
[email protected]>
Date: Wed, 15 Oct 1997 10:16:17 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Dan Niles <
[email protected]>
To:
[email protected],
[email protected]
Subject: Re: block bad mail addresses?
In-Reply-To: <
[email protected]> (message from Kent
Landfield on Tue, 14 Oct 1997 11:57:37 -0500 (CDT))
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>
> # Someone mentioned that they thought trivial and rfc822 were the same.
> # I do not believe that is the case. They both handle user@ the same
> # because the host the client came from is used as the host.
>
> ??
If you ftp from your.host.net to some other host and enter user@
as your anon ftp password, it is taken to mean
[email protected].
Therefore, user@ satisfies trivial and rfc822 because it really
means
[email protected]. I don't remember where I read this,
but it was somewhere in the wu-ftpd docs or source. It does explain
why trivial and rfc822 both handle user@ the same.
From
[email protected] Wed Oct 15 11:55:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA19705;
Wed, 15 Oct 1997 11:48:05 -0500 (CDT)
Received: from jester.ti.com (jester.ti.com [192.94.94.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA06476
for <
[email protected]>; Wed, 15 Oct 1997 11:41:38 -0500 (CDT)
Received: from dadd.ti.com. ([156.117.180.253]) by jester.ti.com (8.8.7) with ESMTP id LAA01269 for <
[email protected]>; Wed, 15 Oct 1997 11:41:07 -0500 (CDT)
Received: from pavis.dadd.ti.com by dadd.ti.com. (8.8.4/)
id LAA23848; Wed, 15 Oct 1997 11:41:05 -0500 (CDT)
Received: by pavis.dadd.ti.com id <
[email protected]>; Wed, 15 Oct 1997 11:41:03 -0500
Message-Id: <
[email protected]>
Date: Wed, 15 Oct 97 11:41:02 CDT
Reply-To:
[email protected] (Bob Luckin)
Sender:
[email protected]
From: Bob Luckin <
[email protected]>
To:
[email protected]
Subject: Re: Proxy problems
In-Reply-To: <9710150752.AA25250@calypso>; from "Dieter Meinert" at Oct 15, 97 9:52 am
X-Mimi-Options: HEADERS TI2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Mattias >>>
> |=> Hello,
> |=>
> |=> We are running WUftpd 2.4(2) on a Solaris 2.5.1 system. It works fine
> |=> except for a couple of customers running proxy servers. For them, just
> |=> about nothing happens. The proxy seems to think the ftp server is down.
> |=>
> |=> There are no communication problems between the proxy and our ftp server,
> |=> when we have tried to connect from the actual proxy box whithout problems.
Dieter >>>
> Hi, I also had that problem and tracked it to the communication
> between wu-ftpd and cern-httpd which I ran as a proxy server.
> It appears that the proxy tries to submit a PASV command which
> the ftpd does not allow.
> I'm sorry but I did not find a solution except for either shutting down
> the ftp-proxy or using the solaris ftpd, which does not have
> that problem.
Well, if it _really_ is due to the PASV command, and you are running on
Solaris 2, then you need to check your permissions on the files under
~ftp/dev. ~ftp/dev/tcp should be set to 666 - it needs to be world-writable
under Solaris 2 to allow passive connections.
If you check the original Solaris 2 man page for ftpd it has instructions
on what device files you need in the FTP root area. These need to have the
same permissions as the originals under /dev... - in my case they are
all 666.
This is all covered in question 9.13 of the FAQ, which you can find in the
WU-FTPD Resource Center at
http://www.landfield.com/wu-ftpd/
(the FAQ itself is at
http://www.hvu.nl/~koos/wu-ftpd-faq.html)
If the permissions under ~ftp/dev are set correctly, then I think the
problem must lie elsewhere.
Good luck !
Cheers, Bob
--
Bob Luckin
[email protected] "A man, a plan, a canal, Suez !"
From
[email protected] Wed Oct 15 12:13:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA18739;
Wed, 15 Oct 1997 12:06:23 -0500 (CDT)
Received: from diana (diana.mint.se [193.14.99.34])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA16579
for <
[email protected]>; Wed, 15 Oct 1997 11:59:30 -0500 (CDT)
Received: from blondie.mint.se by diana (SMI-8.6/SMI-SVR4)
id SAA06748; Wed, 15 Oct 1997 18:59:28 +0200
Received: from mn-book.mint.se ([192.168.101.9]) by blondie.mint.se (8.7.1/8.7.1) with SMTP id SAA29142 for <
[email protected]>; Wed, 15 Oct 1997 18:59:25 +0200
Message-Id: <
[email protected]>
Date: Wed, 15 Oct 1997 18:59:21 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Mattias Niklasson <
[email protected]>
To:
[email protected]
Subject: Re: Proxy problems
In-Reply-To: <
[email protected]>
References: <9710150752.AA25250@calypso>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: Windows Eudora Light Version 3.0.1 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
>If the permissions under ~ftp/dev are set correctly, then I think the
>problem must lie elsewhere.
Thanks, but here is what it looks like, so this shouldn't be the problem.
Any other suggestions?
crw-rw-rw- 1 root other 11, 42 Aug 4 21:32 tcp
cr--r--r-- 1 root other 13, 12 Aug 4 21:33 zero
Regards,
Mattias Niklasson
-----------------------------------------------------------
Marieberg Interactive AB Tel: +46-8-459 39 42
Box 27205 Fax: +46-8-661 51 30
102 53 Stockholm, Sweden Mob: +46-70-620 11 90
From
[email protected] Wed Oct 15 12:51:45 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA17543;
Wed, 15 Oct 1997 12:44:21 -0500 (CDT)
Received: from apollo.is.co.za (apollo.is.co.za [196.4.160.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA16215
for <
[email protected]>; Wed, 15 Oct 1997 12:38:58 -0500 (CDT)
Received: from admin.is.co.za (admin.is.co.za [196.23.0.9]) by apollo.is.co.za (8.8.6/8.7.5/IShub#2) with ESMTP id TAA04000 for <
[email protected]>; Wed, 15 Oct 1997 19:38:48 +0200 (GMT)
Received: (from oskar@localhost) by admin.is.co.za (8.8.6/8.7.3/ISsubsidiary#1) id TAA09932; Wed, 15 Oct 1997 19:38:46 +0200 (GMT)
Message-Id: <
[email protected]>
Date: Wed, 15 Oct 1997 19:38:45 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Oskar Pearson <
[email protected]>
To:
[email protected]
Subject: [
[email protected]: I-D ACTION:draft-ietf-cat-ftpsec-10.txt]
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.69e
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Thought that some people would be interested... apolgies to people who
are on ietf-announce
Oskar
-----Forwarded message from
[email protected]
To:
[email protected]
Cc:
[email protected]
From:
[email protected]
Subject: I-D ACTION:draft-ietf-cat-ftpsec-10.txt
Date: Wed, 15 Oct 1997 11:37:51 -0400
--NextPart
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Common Authentication Technology Working Group of the IETF.
Title : FTP Security Extensions
Author(s) : M. Horowitz, S. Lunt
Filename : draft-ietf-cat-ftpsec-10.txt
Pages : 22
Date : 14-Oct-97
This document defines extensions to the FTP specification RFC 959,
'FILE TRANSFER PROTOCOL (FTP)' (October 1985). These extensions
provide strong authentication, integrity, and confidentiality on both
the control and data channels with the introduction of new optional
commands, replies, and file transfer encodings.
The following new optional commands are introduced in this
specification:
AUTH (Authentication/Security Mechanism),
ADAT (Authentication/Security Data),
PROT (Data Channel Protection Level),
PBSZ (Protection Buffer Size),
CCC (Clear Command Channel),
MIC (Integrity Protected Command),
CONF (Confidentiality Protected Command), and
ENC (Privacy Protected Command).
A new class of reply types (6yz) is also introduced for protected
replies.
None of the above commands are required to be implemented, but
interdependencies exist. These dependencies are documented with the commands.
Internet-Drafts are available by anonymous FTP. Login wih the username
"anonymous" and a password of your e-mail address. After logging in,
type "cd internet-drafts" and then
"get draft-ietf-cat-ftpsec-10.txt".
A URL for the Internet-Draft is:
ftp://ds.internic.net/internet-drafts/draft-ietf-cat-ftpsec-10.txt
Internet-Drafts directories are located at:
Africa: ftp.is.co.za
Europe: ftp.nordu.net
ftp.nis.garr.it
Pacific Rim: munnari.oz.au
US East Coast: ds.internic.net
US West Coast: ftp.isi.edu
Internet-Drafts are also available by mail.
Send a message to:
[email protected]. In the body type:
"FILE /internet-drafts/draft-ietf-cat-ftpsec-10.txt".
NOTE: The mail server at ds.internic.net can return the document in
MIME-encoded form by using the "mpack" utility. To use this
feature, insert the command "ENCODING mime" before the "FILE"
command. To decode the response(s), you will need "munpack" or
a MIME-compliant mail reader. Different MIME-compliant mail readers
exhibit different behavior, especially when dealing with
"multipart" MIME messages (i.e. documents which have been split
up into multiple messages), so check your local documentation on
how to manipulate these messages.
Below is the data which will enable a MIME compliant mail reader
implementation to automatically retrieve the ASCII version of the
Internet-Draft.
--NextPart
Content-Type: Multipart/Alternative; Boundary="OtherAccess"
--OtherAccess
Content-Type: Message/External-body;
access-type="mail-server";
server="
[email protected]"
Content-Type: text/plain
Content-ID: <
[email protected]>
ENCODING mime
FILE /internet-drafts/draft-ietf-cat-ftpsec-10.txt
--OtherAccess
Content-Type: Message/External-body;
name="draft-ietf-cat-ftpsec-10.txt";
site="ds.internic.net";
access-type="anon-ftp";
directory="internet-drafts"
Content-Type: text/plain
Content-ID: <
[email protected]>
--OtherAccess--
--NextPart--
-----End of forwarded message-----
From
[email protected] Wed Oct 15 15:51:21 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA27664;
Wed, 15 Oct 1997 20:49:45 -0500 (CDT)
Received: from tecoma.mccc.edu (tecoma.mccc.edu [198.133.170.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id UAA24031
for <
[email protected]>; Wed, 15 Oct 1997 20:47:22 -0500 (CDT)
Received: from tecoma (tecoma [198.133.170.1])
by tecoma.mccc.edu (8.8.5/8.8.5) with SMTP id VAA21900
for <
[email protected]>; Wed, 15 Oct 1997 21:47:16 -0400 (EDT)
Message-Id: <Pine.SOL.3.96.971015214636.21888A-100000@tecoma>
Date: Wed, 15 Oct 1997 21:47:16 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Pete Holsberg <
[email protected]>
To:
[email protected]
Subject: Active? Inactive?
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: pjh@tecoma
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi!
Is this list active? I joined more than 24 hours ago and
have seen no messages.
Thanks,
Pete
From
[email protected] Wed Oct 15 16:02:55 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA24435;
Wed, 15 Oct 1997 21:01:24 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id UAA27829
for <
[email protected]>; Wed, 15 Oct 1997 20:58:33 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id UAA31508;
Wed, 15 Oct 1997 20:58:37 -0500
Message-Id: <
[email protected]>
Date: Wed, 15 Oct 1997 20:58:37 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Pete Holsberg <
[email protected]>
Cc:
[email protected]
Subject: Re: Active? Inactive?
In-Reply-To: <Pine.SOL.3.96.971015214636.21888A-100000@tecoma>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Yep. Post away.....
-- Michael
On Wed, 15 Oct 1997, Pete Holsberg wrote:
> Is this list active? I joined more than 24 hours ago and
> have seen no messages.
From
[email protected] Wed Oct 15 16:09:06 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA27227;
Wed, 15 Oct 1997 21:07:40 -0500 (CDT)
Received: from tecoma.mccc.edu (tecoma.mccc.edu [198.133.170.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA30115
for <
[email protected]>; Wed, 15 Oct 1997 21:05:05 -0500 (CDT)
Received: from tecoma (tecoma [198.133.170.1])
by tecoma.mccc.edu (8.8.5/8.8.5) with SMTP id WAA22458
for <
[email protected]>; Wed, 15 Oct 1997 22:05:04 -0400 (EDT)
Message-Id: <Pine.SOL.3.96.971015220328.22388C-100000@tecoma>
Date: Wed, 15 Oct 1997 22:05:04 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Pete Holsberg <
[email protected]>
To:
[email protected]
Subject: FTPHOSTS
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: pjh@tecoma
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I'm trying to block users who give "mozilla", "IE30User",
etc as their email name, but I haven't been successful.
Here's FTPHOSTS -- what did I do wrong?
# Example host access file
#
# Everything after a '#' is treated as comment,
# empty lines are ignored
#
# allow bartm somehost.domain
# deny fred otherhost.domain 131.211.32.*
deny *[Uu][Ss][Ee][Rr]* *
deny mozilla *
deny *proxy* *
deny guest *
Thanks,
Pete
From
[email protected] Wed Oct 15 16:15:26 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA28244;
Wed, 15 Oct 1997 21:13:52 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA01143
for <
[email protected]>; Wed, 15 Oct 1997 21:10:17 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id VAA31834;
Wed, 15 Oct 1997 21:10:24 -0500
Message-Id: <
[email protected]>
Date: Wed, 15 Oct 1997 21:10:24 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Pete Holsberg <
[email protected]>
Cc:
[email protected]
Subject: Re: FTPHOSTS
In-Reply-To: <Pine.SOL.3.96.971015220328.22388C-100000@tecoma>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Oh boy, you may not know it but your timing is *impeccable*. A long
thread just ended on exactly this topic..... Kent, you're up. :)
-- Michael
On Wed, 15 Oct 1997, Pete Holsberg wrote:
> I'm trying to block users who give "mozilla", "IE30User",
> etc as their email name, but I haven't been successful.
From
[email protected] Wed Oct 15 20:21:20 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id BAA16371;
Thu, 16 Oct 1997 01:19:10 -0500 (CDT)
Received: from ns.tpesp.com (
[email protected] [195.99.192.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id BAA20952
for <
[email protected]>; Thu, 16 Oct 1997 01:12:54 -0500 (CDT)
Received: from juanen (juanen.tpesp.com [195.99.192.11]) by ns.tpesp.com (8.8.7/8.7.3) with SMTP id IAA18830 for <
[email protected]>; Thu, 16 Oct 1997 08:19:35 +0200
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 08:05:48 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Juan Enrique Gomez <
[email protected]>
To:
[email protected]
Subject: Permissions in upload
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Sender:
[email protected]
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32)
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id BAA30184
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi!
I have a little and easy to resolve problem (i hope), i have some users
which publish their web pages by uploading to a ftp server managed with
wu-ftp beta 14, everything works great, i use the guestgroup feature, but i
have a problem, every thing they upload only get permisions for the user of
the file, no other permisions: -rw------- but i need thad beside of this
permisions the file get the group read and all read permisions something
like -rw-r--r-- please could you help me?
Thanks in advance.
-----------------------------------------------
Juan Enrique G�mez
Departamento de Inform�tica
Tecnipublicaciones Espa�a -
http://www.tpesp.es
[email protected]
-----------------------------------------------
From
[email protected] Wed Oct 15 21:55:35 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA21321;
Thu, 16 Oct 1997 02:53:26 -0500 (CDT)
Received: from ibb0014.ibb.ruu.nl (ibb0014.ibb.ruu.nl [131.211.124.14])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id CAA26502
for <
[email protected]>; Thu, 16 Oct 1997 02:50:10 -0500 (CDT)
Received: (from anne@localhost)
by ibb0014.ibb.ruu.nl (8.8.5/8.8.5) id JAA00270;
Thu, 16 Oct 1997 09:50:20 +0200
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 09:50:20 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Anne Baretta <
[email protected]>
To:
[email protected]
Subject: Re: Permissions in upload
In-Reply-To: <
[email protected]>; from Juan Enrique Gomez on Thu, Oct 16, 1997 at 08:05:48AM +0200
References: <
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.85e
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, Oct 16, 1997 at 08:05:48AM +0200, Juan Enrique Gomez wrote:
> Hi!
>
> I have a little and easy to resolve problem (i hope), i have some users
> which publish their web pages by uploading to a ftp server managed with
> wu-ftp beta 14, everything works great, i use the guestgroup feature, but i
> have a problem, every thing they upload only get permisions for the user of
> the file, no other permisions: -rw------- but i need thad beside of this
> permisions the file get the group read and all read permisions something
> like -rw-r--r-- please could you help me?
>
You can start wu.ftpd in /etc/inetd.conf with the option -u, which allows you
to set the umask of the guest directories. Try
wu.ftpd -u0644
(plus the other options of course).
Regards,
Anne
From
[email protected] Wed Oct 15 21:59:36 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA24291;
Thu, 16 Oct 1997 02:57:53 -0500 (CDT)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id CAA26809
for <
[email protected]>; Thu, 16 Oct 1997 02:52:45 -0500 (CDT)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id JAA25353;
Thu, 16 Oct 1997 09:51:01 GMT
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 09:51:01 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To: Juan Enrique Gomez <
[email protected]>
Cc:
[email protected]
Subject: Re: Permissions in upload
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 16 Oct 1997, Juan Enrique Gomez wrote:
> I have a little and easy to resolve problem (i hope), i have some users
> which publish their web pages by uploading to a ftp server managed with
> wu-ftp beta 14, everything works great, i use the guestgroup feature, but i
> have a problem, every thing they upload only get permisions for the user of
> the file, no other permisions: -rw------- but i need thad beside of this
> permisions the file get the group read and all read permisions something
> like -rw-r--r-- please could you help me?
There are surely other ways to solve that (by runing wu umask-ed?!), but
you can also try my patch on top of beta 15:
http://www.spin.ch/SPIN/tpo/homepage/linux/academ-patch.html
*
t
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
From
[email protected] Thu Oct 16 02:14:51 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA04200;
Thu, 16 Oct 1997 07:12:22 -0500 (CDT)
Received: from nms.rz.uni-kiel.de (nms100.rz.uni-kiel.de [134.245.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA06248
for <
[email protected]>; Thu, 16 Oct 1997 07:10:08 -0500 (CDT)
Received: from marvin.bwl.uni-kiel.de by nms.rz.uni-kiel.de
with Local-SMTP (PP) id <
[email protected]>;
Thu, 16 Oct 1997 14:15:07 +0200
Received: by marvin.bwl.uni-kiel.de (AIX 3.2/UCB 5.64/4.03) id AA25876;
Thu, 16 Oct 1997 13:59:51 +0200
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 13:59:51 +0200 (DFT)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Josef Siemes)
To:
[email protected]
Subject: Re: Proxy problems
In-Reply-To: <
[email protected]> from "Mattias Niklasson" at Oct 15, 97 06:59:21 pm
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> Thanks, but here is what it looks like, so this shouldn't be the problem.
> Any other suggestions?
>
> crw-rw-rw- 1 root other 11, 42 Aug 4 21:32 tcp
> cr--r--r-- 1 root other 13, 12 Aug 4 21:33 zero
It should be like
0 crw-rw-rw- 1 root other 11, 42 Sep 18 18:13 tcp
0 crw-rw-rw- 1 root other 105, 1 Sep 18 18:13 ticotsord
0 crw-rw-rw- 1 root other 11, 41 Sep 18 18:13 udp
0 crw-rw-rw- 1 root other 13, 12 Sep 18 18:13 zero
as stated in the man-page for the solaris-ftpd. Did you at least look at it?
Did you also include all libraries in /usr/lib?
Look at the FAQ, there's also a link for Solaris and wu-ftpd, also
what libraries are needed.
Josef
(Josef Siemes,
[email protected])
From
[email protected] Thu Oct 16 04:49:31 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA19974;
Thu, 16 Oct 1997 09:44:44 -0500 (CDT)
Received: from swbcs002.sbc.com (
[email protected] [204.251.74.10])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA19646
for <
[email protected]>; Thu, 16 Oct 1997 09:39:17 -0500 (CDT)
Received: (from uucp@localhost)
by swbcs002.sbc.com (8.8.4/8.8.4)
id JAA14682 for <
[email protected]>; Thu, 16 Oct 1997 09:48:14 -0500 (CDT)
Received: from swgate1.sbc.com(132.201.82.89) by swbcs002.sbc.com via smap (3.2)
id xma014660; Thu, 16 Oct 97 09:47:58 -0500
Received: by swgate1.sbc.com (Smail-3.2 1996-Jul-4 #5 built 1997-Sep-29)
id <
[email protected]>; Thu, 16 Oct 1997 09:38:03 -0500 (CDT)
Received: from sarek.sbc.com(really [132.201.48.219]) by swgate1.sbc.com
via sendmail with smtp
id <
[email protected]>
for <
[email protected]>; Thu, 16 Oct 1997 09:37:01 -0500 (CDT)
Received: from sarek.sbc.com by sarek.sbc.com (SMI-8.6/SMI-SVR4)
id JAA01963; Thu, 16 Oct 1997 09:37:54 -0500
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 09:37:54 -0500 (CDT)
Reply-To: "Mark A. Horstman" <
[email protected]>
Sender:
[email protected]
From: "Mark A. Horstman" <
[email protected]>
To:
[email protected]
Subject: Have to '#define SPT_TYPE SPT_NONE' for Solaris >= 2.5.1
MIME-Version: 1.0
Content-Type: TEXT/plain; charset=us-ascii
Content-MD5: cR9FDzGunJuMWbFB7wJ8kw==
X-Mailer: dtmail 1.2.0 CDE Version 1.2 SunOS 5.6 sun4u sparc
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I've used wu-ftpd-2.4.2-beta-15 under Solaris 2.5.1 and 2.6. In both
environments I've had to add '#define SPT_TYPE SPT_NONE' to src/config/
config.sol to get 'ls -l' timestamps to show up correctly. Is this
expected or normal?
Mark A. Horstman
Southwestern Bell
[email protected]
From
[email protected] Thu Oct 16 05:16:41 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA12246;
Thu, 16 Oct 1997 10:13:55 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA08149
for <
[email protected]>; Thu, 16 Oct 1997 10:12:00 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 10:07:43 +0000 (US/Central)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Subject: Re: FTPHOSTS
In-Reply-To: <
[email protected]> from "Michael Brennen" at Oct 15, 97 09:10:24 pm
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
# Oh boy, you may not know it but your timing is *impeccable*. A long
# thread just ended on exactly this topic..... Kent, you're up. :)
:) ;) Let's just say that this is something that will require changes to
the code to make work. Two ways have been put on the table for discussion.
It generated a "nice" bit of traffic. Please see the list archives at
http://www.landfield.com/wu-ftpd/ for a complete history of the conversation
including my repeated apologies and un-apologies. ;)
# On Wed, 15 Oct 1997, Pete Holsberg wrote:
#
# > I'm trying to block users who give "mozilla", "IE30User",
# > etc as their email name, but I haven't been successful.
Hmmmm.... So it seems I'm not the only one who would find this useful.... ;)
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Thu Oct 16 05:28:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA12237;
Thu, 16 Oct 1997 10:26:41 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA32513
for <
[email protected]>; Thu, 16 Oct 1997 10:22:57 -0500 (CDT)
Received: from egate.mnet.uswest.com (egate-co1.mnet.uswest.com [151.119.130.8])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id JAA06417
for <
[email protected]>; Thu, 16 Oct 1997 09:22:27 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate.mnet.uswest.com (8.7.1/8.7.1) with SMTP id JAA18457 for <
[email protected]>; Thu, 16 Oct 1997 09:22:27 -0600 (MDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id KAA29112 for <
[email protected]>; Thu, 16 Oct 1997 10:29:02 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA21492
for <
[email protected]>; Thu, 16 Oct 1997 09:22:23 -0600
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 09:25:45 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: upload dir
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Is there any way to allow creation of of directories in an upload dir
without allowing a LIST??
Anyone? Anyone? Bueller?
-Brad
From
[email protected] Thu Oct 16 05:30:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA10236;
Thu, 16 Oct 1997 10:28:39 -0500 (CDT)
Received: from tecoma.mccc.edu (tecoma.mccc.edu [198.133.170.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA24925
for <
[email protected]>; Thu, 16 Oct 1997 10:23:22 -0500 (CDT)
Received: from tecoma (tecoma [198.133.170.1])
by tecoma.mccc.edu (8.8.5/8.8.5) with SMTP id LAA04529
for <
[email protected]>; Thu, 16 Oct 1997 11:23:16 -0400 (EDT)
Message-Id: <Pine.SOL.3.96.971016112130.4480A-100000@tecoma>
Date: Thu, 16 Oct 1997 11:23:16 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Pete Holsberg <
[email protected]>
To:
[email protected]
Subject: WU: Suggestion for Subjects
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: pjh@tecoma
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
People,
It has been suggested on other mailing lists that a poster
prefix his/her subject with a 2-letter code, unique to that
mailing list. This makes it easy for people who subscribe
to many lists and/or people who like to filter their email
before reading it.
As you can see, I suggest we use "WU:" as a prefix.
Thanks,
Pete
From
[email protected] Thu Oct 16 06:20:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA28501;
Thu, 16 Oct 1997 11:16:41 -0500 (CDT)
Received: from bcx01.boco.co.gov (
[email protected] [161.98.128.4])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA18383
for <
[email protected]>; Thu, 16 Oct 1997 11:10:24 -0500 (CDT)
Received: from localhost (swcxt@localhost)
by bcx01.boco.co.gov (8.8.7/8.8.7) with SMTP id KAA62942
for <
[email protected]>; Thu, 16 Oct 1997 10:10:23 -0600
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 10:10:23 -0600 (MDT)
Reply-To: Shane Castle <
[email protected]>
Sender:
[email protected]
From: Shane Castle <
[email protected]>
To:
[email protected]
Subject: Re: Suggestion for Subjects
In-Reply-To: <Pine.SOL.3.96.971016112130.4480A-100000@tecoma>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 16 Oct 1997, Pete Holsberg wrote:
>It has been suggested on other mailing lists that a poster
>prefix his/her subject with a 2-letter code, unique to that
>mailing list. This makes it easy for people who subscribe
>to many lists and/or people who like to filter their email
>before reading it.
>As you can see, I suggest we use "WU:" as a prefix.
This is a bit silly. Most MUAs today allow some kind of filtering and
disposition based on the From address. For example, I use procmail to
sort my incoming mail into folders; all mail from the wu-ftpd list goes
into a folder 'wu-ftpd' that I can then view with Pine. If I had
routed my email to my GroupWise account instead I could do something
similar. Besides, when replies come through, would the subjects be
"Re: WU: Some silly subject" or "WU: Re: WU: Some silly subject" or
(shudder!) "WU: Some silly subject -Reply" or even worse hashes of the
subject line, making threading the replies difficult at best.
Shane Castle | "Perfection, then, is finally achieved, not
Boulder County Info Svcs | when there is nothing left to add, but when
Boulder CO USA | there is nothing left to take away."
| - Antoine de Saint-Exupery
From
[email protected] Thu Oct 16 07:05:59 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA10464;
Thu, 16 Oct 1997 12:00:51 -0500 (CDT)
Received: from jester.ti.com (jester.ti.com [192.94.94.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA01058
for <
[email protected]>; Thu, 16 Oct 1997 11:55:14 -0500 (CDT)
Received: from dadd.ti.com. ([156.117.179.59]) by jester.ti.com (8.8.7) with ESMTP id LAA14053 for <
[email protected]>; Thu, 16 Oct 1997 11:54:42 -0500 (CDT)
Received: from pavis.dadd.ti.com by dadd.ti.com. (8.8.4/)
id LAA22969; Thu, 16 Oct 1997 11:54:40 -0500 (CDT)
Received: by pavis.dadd.ti.com id <
[email protected]>; Thu, 16 Oct 1997 11:54:39 -0500
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 97 11:54:38 CDT
Reply-To:
[email protected] (Bob Luckin)
Sender:
[email protected]
From: Bob Luckin <
[email protected]>
To:
[email protected]
Subject: Re: WU: Suggestion for Subjects
In-Reply-To: <Pine.SOL.3.96.971016112130.4480A-100000@tecoma>; from "Pete Holsberg" at Oct 16, 97 11:23 am
X-Mimi-Options: HEADERS TI2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> It has been suggested on other mailing lists that a poster
> prefix his/her subject with a 2-letter code, unique to that
> mailing list. This makes it easy for people who subscribe
> to many lists and/or people who like to filter their email
> before reading it.
>
> As you can see, I suggest we use "WU:" as a prefix.
As has already been suggested, this is not necessary if you have access to
a mail filtering capability (such as procmail). So the question is, how many
readers don't have access ?
And if it is desirable to prefix the subject, it should be done automatically
by the mailing list server, not by each individual. Certainly some servers
can do this automatically (majordomo); not sure about the one used for wu_ftpd
though.
Kent, I seem to recall you have some list admin rights. Any idea if this can
be done (if it is really wanted) ?
Cheers, Bob
--
Bob Luckin
[email protected] "Coder, adapt; FTP Ada, redo C"
[
http://www.dhc.net/~luckin/palindromes.html]
From
[email protected] Thu Oct 16 07:29:28 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA29090;
Thu, 16 Oct 1997 12:26:26 -0500 (CDT)
Received: from differential.com ([204.152.97.192])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA27517
for <
[email protected]>; Thu, 16 Oct 1997 12:24:49 -0500 (CDT)
Received: (from jevans@localhost) by differential.com (8.8.0/8.6.9) id KAA03040 for
[email protected]; Thu, 16 Oct 1997 10:24:21 -0700 (PDT)
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 10:24:21 -0700 (PDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Dave Jevans <
[email protected]>
To:
[email protected]
Subject: FileDrive commercial secure wu-ftpd
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Greetings wu-ftpd users,
Differential, Inc. is pleased to announce the availability of our
FileDrive commercial FTP server based on the wu-ftpd features.
You can download a free trial copy at www.filedrive.com
There are 3 levels of server available. Our high-end server,
FileDrive EX, features:
- secure Web-based administration system!
- SSL encrypted file transfer
- virtual servers
- virtual users with virtual chroot capabilities
- fast embedded directory listings
- stand-alone mode fast process launching
- ActiveAgents: secure extensible process triggers
- EnGuard: embedded security auditing system
- Web-viewable statistics and enhanced logging
- realtime Web-viewable performance monitor
- ability to switch anonymous ftp on or off
- comprehensive documentation
FileDrive servers and clients are available for:
- Linux
- FreeBSD
- Solaris 2.5
- HP/UX 10.20
- IRIX 6.2
- AIX coming soon
- NT coming soon
Differential also has a Windows NT FileDrive client that
provides secure and *highly reliable* transfers of very
large files to FileDrive servers.
We welcome your comments and suggestions.
Sincerely,
David Jevans
[email protected]
www.differential.com
From
[email protected] Thu Oct 16 07:50:31 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA04866;
Thu, 16 Oct 1997 12:48:28 -0500 (CDT)
Received: from noc.belwue.de (
[email protected] [129.143.2.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA06297
for <
[email protected]>; Thu, 16 Oct 1997 12:43:53 -0500 (CDT)
Received: from dns1.rz.fh-heilbronn.de (dns1.rz.fh-heilbronn.de [141.7.1.18])
by noc.belwue.de (8.8.7/8.8.7) with ESMTP id TAA03935
for <
[email protected]>; Thu, 16 Oct 1997 19:43:45 +0200 (MET DST)
env-from (
[email protected])
Received: from jupiter.rz.fh-heilbronn.de (jupiter.rz.fh-heilbronn.de [141.7.1.40])
by dns1.rz.fh-heilbronn.de (8.8.5/8.8.5) with ESMTP id TAA03558
for <
[email protected]>; Thu, 16 Oct 1997 19:42:51 +0200 (MET DST)
Received: from sturm.com (dial7.rz.fh-heilbronn.de [141.7.42.7])
by jupiter.rz.fh-heilbronn.de (8.8.6/8.8.6) with SMTP id TAA20844
for <
[email protected]>; Thu, 16 Oct 1997 19:42:11 +0200 (MET DST)
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 19:39:41 +0100
Reply-To: sturm <
[email protected]>
Sender:
[email protected]
From: sturm <
[email protected]>
To:
[email protected]
Subject: =?ISO-8859-1?Q?probleme_mit_=22ls=22?=
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: AK-Mail 3.0b [ger] (unregistered)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
hi,
ich habe ein problem mit dem wu-ftpd auf hp-ux. ich habe guest- und real-
gruppen eingerichtet. bei den real-usern ist alles ok. wenn ich
mich als user der guest-gruppe einlogge habe ich folgendes
problem: mit "ls" zeigt das prog "nichts" an (ausser befehl
erfolgreich) mit nlist bekomme ich aber den inhalt angezeigt!
h e l p ! !
ciao matze
From
[email protected] Thu Oct 16 08:09:23 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA31044;
Thu, 16 Oct 1997 13:07:36 -0500 (CDT)
Received: from nms.rz.uni-kiel.de (nms100.rz.uni-kiel.de [134.245.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA02039
for <
[email protected]>; Thu, 16 Oct 1997 13:02:12 -0500 (CDT)
Received: from marvin.bwl.uni-kiel.de by nms.rz.uni-kiel.de
with Local-SMTP (PP) id <
[email protected]>;
Thu, 16 Oct 1997 20:07:24 +0200
Received: by marvin.bwl.uni-kiel.de (AIX 3.2/UCB 5.64/4.03) id AA41263;
Thu, 16 Oct 1997 19:52:09 +0200
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 19:52:09 +0200 (DFT)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Josef Siemes)
To:
[email protected]
Subject: Re: =?ISO-8859-1?Q?probleme_mit_=22ls=22?=
In-Reply-To: <
[email protected]> from "sturm" at Oct 16, 97 07:39:41 pm
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>
> hi,
perhaps you should try posting in english, so that other readers of this
list can understand what you're asking ...
>
> ich habe ein problem mit dem wu-ftpd auf hp-ux. ich habe guest- und real-
> gruppen eingerichtet. bei den real-usern ist alles ok. wenn ich
> mich als user der guest-gruppe einlogge habe ich folgendes
> problem: mit "ls" zeigt das prog "nichts" an (ausser befehl
> erfolgreich) mit nlist bekomme ich aber den inhalt angezeigt!
Since I have no access to HP-UX I only try to translate it a bit:
<translate>
wu-ftp on hp-ux is used. Real-users are working. guest-users don't
get anything on 'ls', but 'nlist' works.
</translate>
So your external ls seems not to work. Do you have a ls-binary in the guest
directories?
For further hints first check the wu-ftp FAQ,
http://www.hvu.nl/~koos/wu-ftpd-faq.html, and the related documents there.
Josef
(Josef Siemes,
[email protected])
From
[email protected] Thu Oct 16 08:21:47 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA07655;
Thu, 16 Oct 1997 13:19:56 -0500 (CDT)
Received: from NS1.southcom.net (
[email protected] [207.69.189.145])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA08883
for <
[email protected]>; Thu, 16 Oct 1997 13:19:31 -0500 (CDT)
Received: from NS1.southcom.net (ws1.southcom.net [207.69.189.147])
by NS1.southcom.net (8.8.5/8.8.5) with SMTP id NAA24606;
Thu, 16 Oct 1997 13:20:18 -0400
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 14:15:20 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Jeff Myers <
[email protected]>
To: sturm <
[email protected]>
Cc:
[email protected]
Subject: Re: probleme mit "ls"
In-Reply-To: <
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Do you have a "static" linked ls?
This fixed a similar problem.
Sorry, I have to respond in English, my Deutsch is
very very rusty. :>)
At 07:39 PM 10/16/97 +0100, sturm wrote:
>hi,
>
>ich habe ein problem mit dem wu-ftpd auf hp-ux. ich habe guest- und real-
>gruppen eingerichtet. bei den real-usern ist alles ok. wenn ich
>mich als user der guest-gruppe einlogge habe ich folgendes
>problem: mit "ls" zeigt das prog "nichts" an (ausser befehl
>erfolgreich) mit nlist bekomme ich aber den inhalt angezeigt!
>
> h e l p ! !
>
>ciao matze
>
From
[email protected] Thu Oct 16 08:46:31 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA06923;
Thu, 16 Oct 1997 13:39:14 -0500 (CDT)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA06817
for <
[email protected]>; Thu, 16 Oct 1997 13:36:40 -0500 (CDT)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id UAA14736;
Thu, 16 Oct 1997 20:35:10 GMT
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 20:35:10 +0000 (GMT)
Reply-To: "T's Mailing Lists" <
[email protected]>
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To: Bob Luckin <
[email protected]>
Cc:
[email protected]
Subject: Re: WU: Suggestion for Subjects
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 16 Oct 1997, Bob Luckin wrote:
> > It has been suggested on other mailing lists that a poster
> > prefix his/her subject with a 2-letter code, unique to that
> > mailing list. This makes it easy for people who subscribe
> > to many lists and/or people who like to filter their email
> > before reading it.
> >
> > As you can see, I suggest we use "WU:" as a prefix.
>
> As has already been suggested, this is not necessary if you have access to
> a mail filtering capability (such as procmail). So the question is, how many
> readers don't have access ?
Yet another question is, how many mailreaders there are, that can >not< be
tweaked into filtering incoming mail somehow (by the To: field). And even
then you can do a small script that runs a filter (procmail) first and
starts your mailreader after. I mean >even< Netscape does have such
capabilities...
> And if it is desirable to prefix the subject, it should be done automatically
> by the mailing list server, not by each individual. Certainly some servers
> can do this automatically (majordomo); not sure about the one used for wu_ftpd
> though.
>
> Kent, I seem to recall you have some list admin rights. Any idea if this can
> be done (if it is really wanted) ?
What would this exactly change?
*
t
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
Tom: So far, der winter kommt, ich schaff mir glaub ich noch ein paar
Tom: Zyxel traffos an...
Roli: Aber genug davon nehmen. Wenn die Dinger kapput gehen werden sie
Roli: nicht mehr warm.
From
[email protected] Thu Oct 16 08:51:11 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA05512;
Thu, 16 Oct 1997 13:46:45 -0500 (CDT)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA03322
for <
[email protected]>; Thu, 16 Oct 1997 13:39:03 -0500 (CDT)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id UAA14810
for <
[email protected]>; Thu, 16 Oct 1997 20:37:38 GMT
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 20:37:37 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: =?ISO-8859-1?Q?probleme_mit_=22ls=22?=
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 16 Oct 1997, Josef Siemes wrote:
> <translate>
> wu-ftp on hp-ux is used. Real-users are working. guest-users don't
> get anything on 'ls', but 'nlist' works.
> </translate>
Missing libraries or something? Just guessing.
*
t
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
Tom: So far, der winter kommt, ich schaff mir glaub ich noch ein paar
Tom: Zyxel traffos an...
Roli: Aber genug davon nehmen. Wenn die Dinger kapput gehen werden sie
Roli: nicht mehr warm.
From
[email protected] Thu Oct 16 09:05:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA03030;
Thu, 16 Oct 1997 14:04:04 -0500 (CDT)
Received: from tecoma.mccc.edu (tecoma.mccc.edu [198.133.170.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA30192
for <
[email protected]>; Thu, 16 Oct 1997 14:00:35 -0500 (CDT)
Received: from tecoma (tecoma [198.133.170.1])
by tecoma.mccc.edu (8.8.5/8.8.5) with SMTP id PAA09803;
Thu, 16 Oct 1997 15:00:24 -0400 (EDT)
Message-Id: <Pine.SOL.3.96.971016145836.9102C-100000@tecoma>
Date: Thu, 16 Oct 1997 15:00:24 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Pete Holsberg <
[email protected]>
To: "T's Mailing Lists" <
[email protected]>
Cc:
[email protected]
Subject: Re: WU: Suggestion for Subjects
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: pjh@tecoma
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 16 Oct 1997, T's Mailing Lists wrote:
> Yet another question is, how many mailreaders there are,
> that can >not< be tweaked into filtering incoming mail
> somehow (by the To: field). And even then you can do a
> small script that runs a filter (procmail) first and
> starts your mailreader after. I mean >even< Netscape does
> have such capabilities...
I'm sorry I mentioned filtering! I don't care about
filtering!! :-)
I would like to be able to look at my chronological list of
email messages and see which ones are from which mailing
lists.
Thanks,
Pete
From
[email protected] Thu Oct 16 10:04:51 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA12706;
Thu, 16 Oct 1997 15:00:32 -0500 (CDT)
Received: from finwe.jrnl.com (FINWE.JRNL.COM [199.244.139.200])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA18831
for <
[email protected]>; Thu, 16 Oct 1997 14:56:46 -0500 (CDT)
Received: from jrnl.com ([152.163.66.131]) by finwe.jrnl.com
(post.office MTA v2.0 0813 ID# 0-29013) with ESMTP id AAA15724
for <
[email protected]>; Thu, 16 Oct 1997 15:57:32 -0400
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 15:56:10 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Jenice Darner <
[email protected]>
To: WU-FTP discussion <
[email protected]>
Subject: Re: probleme mit "ls"
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: thorn
X-Mailer: Mozilla 4.03 [en] (X11; I; IRIX 6.2 IP22)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
T's Mailing Lists wrote:
>
> On Thu, 16 Oct 1997, Josef Siemes wrote:
>
> > <translate>
> > wu-ftp on hp-ux is used. Real-users are working. guest-users don't
> > get anything on 'ls', but 'nlist' works.
> > </translate>
>
check that /bin/ls is the defined ls for the guests and that you haven't
got the anonymous access chrooted. If /bin/ls *is* the guest group ls,
make sure it is executable by all. If /bin/ls is *not* the ls for the
guest group, check on /sbin/ or /usr/bin...depending on he HPUX version,
the "static" ls is usually the one you avoid...however in 10.20, it's
the one you copy to ~ftp/bin/. Ahhhhh....the wonderful world of HPUX...
Denise
From
[email protected] Thu Oct 16 17:30:48 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id WAA15021;
Thu, 16 Oct 1997 22:21:30 -0500 (CDT)
Received: from pop.cybernex.net (
[email protected] [207.198.151.60])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id WAA16219
for <
[email protected]>; Thu, 16 Oct 1997 22:14:23 -0500 (CDT)
Received: from shell1.cybernex.net (
[email protected] [204.141.116.19])
by pop.cybernex.net (Mail-clerk/Homer) with SMTP id WAA12539
for <
[email protected]>; Thu, 16 Oct 1997 22:23:33 -0400
Message-Id: <
[email protected]>
Date: Thu, 16 Oct 1997 22:21:29 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "Matt W." <
[email protected]>
To:
[email protected]
Subject: users e-mail address
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Anybody,
I first off would like to thank everybody for all the tips for my last
problems with FTP users. Now that I have it setup, is there a way where
when a spacific user (the users is a guest user) logs in it asks obviously
for his username and password, but once the computer see that it is that
user, then ask for the users valid e-mail address, then have the computer
do a Reverse Name Lookup on the
[email protected]. The reason that
it would be nice to have this is because it is kinda used as an
anonymous login but they are put to a certain drive on the server. I of
courese would like all the address put to a log and the nice security
stuff. I know that a person could put in a fake e-mail address at a real
server to get past it, but is there a way to make sure that they put in
their REAL address??
Thank You VERY much!!!
Matt
From
[email protected] Fri Oct 17 05:25:45 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA12440;
Fri, 17 Oct 1997 10:21:35 -0500 (CDT)
Received: from tecoma.mccc.edu (tecoma.mccc.edu [198.133.170.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA26810
for <
[email protected]>; Fri, 17 Oct 1997 10:12:45 -0500 (CDT)
Received: from tecoma (tecoma [198.133.170.1])
by tecoma.mccc.edu (8.8.5/8.8.5) with SMTP id LAA01197
for <
[email protected]>; Fri, 17 Oct 1997 11:12:44 -0400 (EDT)
Message-Id: <Pine.SOL.3.96.971017111109.1158A-100000@tecoma>
Date: Fri, 17 Oct 1997 11:12:43 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Pete Holsberg <
[email protected]>
To:
[email protected]
Subject: WU: ftp logins and "lastlog" file
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: pjh@tecoma
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
All of a sudden (beta 15, is it?), ftp logins are being
logged into the lastlog file.
Did I do that with something in a config file? How do I
make it stop?
Thanks,
Pete
From
[email protected] Fri Oct 17 05:31:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA20201;
Fri, 17 Oct 1997 10:30:09 -0500 (CDT)
Received: from tecoma.mccc.edu (tecoma.mccc.edu [198.133.170.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA25081
for <
[email protected]>; Fri, 17 Oct 1997 10:14:17 -0500 (CDT)
Received: from tecoma (tecoma [198.133.170.1])
by tecoma.mccc.edu (8.8.5/8.8.5) with SMTP id LAA01249
for <
[email protected]>; Fri, 17 Oct 1997 11:14:03 -0400 (EDT)
Message-Id: <Pine.SOL.3.96.971017111300.1228A-100000@tecoma>
Date: Fri, 17 Oct 1997 11:14:03 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Pete Holsberg <
[email protected]>
To:
[email protected]
Subject: ftpwho
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: pjh@tecoma
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I compiled wu-ftpd beta-whatever right out of the box and
there are no headings on the report from ftpwho.
Can anyone just tell me what the headings should be?
Thanks,
Pete
From
[email protected] Fri Oct 17 05:53:48 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA04200;
Fri, 17 Oct 1997 10:50:11 -0500 (CDT)
Received: from gatekeeper.ph.ucla.edu (
[email protected] [128.97.116.86])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA25569
for <
[email protected]>; Fri, 17 Oct 1997 10:48:04 -0500 (CDT)
Received: from emerald (emerald.ph.ucla.edu [128.97.25.5]) by gatekeeper.ph.ucla.edu (8.6.12/8.6.9) with SMTP id IAA09708; Fri, 17 Oct 1997 08:47:47 -0700
Message-Id: <
[email protected]>
Date: Fri, 17 Oct 1997 08:51:49 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Brian Pape <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: Permissions in upload
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: Windows Eudora Pro Version 3.0 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> I have a little and easy to resolve problem (i hope), i have some users
>which publish their web pages by uploading to a ftp server managed with
>wu-ftp beta 14, everything works great, i use the guestgroup feature, but i
>have a problem, every thing they upload only get permisions for the user of
>the file, no other permisions: -rw------- but i need thad beside of this
>permisions the file get the group read and all read permisions something
>like -rw-r--r-- please could you help me?
give in.wuftpd the -u switch (which is a umask).
Brian Pape
Computer Resource Services
University California Los Angeles
[email protected]
From
[email protected] Fri Oct 17 06:45:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA09563;
Fri, 17 Oct 1997 11:41:28 -0500 (CDT)
Received: from MISsentry.el.nec.com ([192.216.82.86])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA22858
for <
[email protected]>; Fri, 17 Oct 1997 11:38:07 -0500 (CDT)
Received: from misnjourin.el.nec.com (misnjourin.el.nec.com [143.103.4.203]) by MISsentry.el.nec.com (8.7.1/8.7.1) with SMTP id JAA14071 for <
[email protected]>; Fri, 17 Oct 1997 09:34:14 -0700 (PDT)
Received: by misnjourin.el.nec.com (SMI-8.6/SMI-SVR4)
id JAA27031; Fri, 17 Oct 1997 09:38:33 -0700
Message-Id: <
[email protected]>
Date: Fri, 17 Oct 1997 09:38:33 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Nicholas G. Jourin)
To:
[email protected]
Subject: Please unsubscribe me
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Dear Sirs,
David Hawley, "
[email protected]", doesn't work here any more. Could
someone please unsubsribe him from this list.
Thank you.
From
[email protected] Fri Oct 17 07:16:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA08991;
Fri, 17 Oct 1997 12:12:40 -0500 (CDT)
Received: from landfield.com (ns.landfield.com [208.196.145.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA15280
for <
[email protected]>; Fri, 17 Oct 1997 12:07:51 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Fri, 17 Oct 1997 12:03:30 +0000 (US/Central)
Reply-To:
[email protected]
Sender:
[email protected]
From: Kent Landfield <
[email protected]>
To:
[email protected]
Subject: Re: WU: Suggestion for Subjects
In-Reply-To: <
[email protected]> from "Bob Luckin" at Oct 16, 97 11:54:38 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
# > As you can see, I suggest we use "WU:" as a prefix.
#
# Kent, I seem to recall you have some list admin rights. Any idea if this can
# be done (if it is really wanted) ?
Not that I can see. (Listproc needs some new features...)
Besides listproc, a change like this also affects my list archiving software.
It is not equipted to deal with a WU: before the Re: for followups. I could
change it but unless someone knows a trick of listproc that I can't seem to
see in the docs, I'm not going to bother. ;)
--
Kent Landfield Phone: 1-817-545-2502
Email:
[email protected] http://www.landfield.com/
Please send comp.sources.misc related mail to
[email protected].
Search the Usenet Hypertext FAQ Archive at
http://www.faqs.org/faqs/
From
[email protected] Fri Oct 17 10:38:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA23768;
Fri, 17 Oct 1997 15:35:28 -0500 (CDT)
Received: from att.com (kcgw2.att.com [192.128.133.152])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA02751
for <
[email protected]>; Fri, 17 Oct 1997 15:28:26 -0500 (CDT)
Received: by kcgw2.att.com; Fri Oct 17 15:13 CDT 1997
Received: from lynxhub.lz.att.com ([135.25.204.10])
by kcig2.att.att.com (AT&T/GW-1.0) with SMTP id PAA29051
for <
[email protected]>; Fri, 17 Oct 1997 15:18:19 -0500 (CDT)
Received: from ROGERH ([135.25.200.159]) by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA03769; Fri, 17 Oct 1997 16:26:03 -0400
Received: by ROGERH with Microsoft Mail
id <01BCDB19.DF689650@ROGERH>; Fri, 17 Oct 1997 16:29:42 -0400
Message-Id: <01BCDB19.DF689650@ROGERH>
Date: Fri, 17 Oct 1997 16:29:41 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: "Roger A. Hanke" <
[email protected]>
To: "'WUFTPD List'" <
[email protected]>
Subject: interrupted file transfers not logged?
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Well I noticed a couple scenarios when file transfers, downloads, from
various FTP clients did not get any xferlog entry when the client interrupted
the download. These were clients that did not send an ABORT command
I should add. I am currently using Beta 13 version on Solaris 2.5.1.
The best example was Navigator 3.0 when hit on cancel or STOP button during
download. Another example is if you hit ^C from Win95/NT Dos based
FTP client. These do show up as broken pipe or connection lost errors in
the server syslog when debugging is active. But no entry is made in the xferlog
regardless of how much data was actually transferred.
My managements question that I havent been able to answer is this.
If upon reception of an abort command WUFTPD server can correctly
log in xferlog how many bytes it transferred, how come it cant do this
in these other situations. Their concern is if people are downloading very
large files and frequently giving up on them, that we are using a lot of
resources and bandwidth that cant be accounted for or charged back
to anybody.
They would like me to hack the WUFTPD server to make sure it always
logs partial transfers, not just aborted ones. I can not believe this hasnt
been looked at or thought about already, so that there is probably more
to it than that, so I have been resisting so far.
So any information or suggestions are gladly welcomed ;^>
Thanx,
Roger A. Hanke
------------------------------------------------------------------------------------
Roger A. Hanke AT&T Web Site Services
(732)576-5738
[email protected] or
FAX (732)576-6041
[email protected]
LZ 1L-221
http://lynxhub.att.com/~rah/
------------------------------------------------------------------------------------
From
[email protected] Fri Oct 17 14:42:05 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA00019;
Fri, 17 Oct 1997 19:37:10 -0500 (CDT)
Received: from fellspt.charm.net (
[email protected] [199.0.70.29])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA07933
for <
[email protected]>; Fri, 17 Oct 1997 19:35:29 -0500 (CDT)
Received: from bytor ([207.16.136.206])
by fellspt.charm.net (8.8.7/8.8.5) with SMTP id UAA13382
for <
[email protected]>; Fri, 17 Oct 1997 20:35:28 -0400 (EDT)
Message-Id: <
[email protected]>
Date: Fri, 17 Oct 1997 20:35:33 -5
Reply-To:
[email protected]
Sender:
[email protected]
From: "Sean Rolinson" <
[email protected]>
To:
[email protected]
Subject: An easy problem (I hope)...
MIME-Version: 1.0
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
X-mailer: Pegasus Mail for Win32 (v2.54)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hello list,
I have a problem with a Sun Sparc 5 and wu-ftpd-2.4.2-15.
The program is installed and works properly for existing users. The
problem I am having is with the FTP or anonymous user. I've created
a directory for the ftp account called /local/home/ftp. The
directory structure is setup as suggested by the man pages. Now,
when I ftp in anonymously, and try to do an ls, I get the following
message:
ftp> ls
200 PORT command successful.
425 Can't create data socket (0.0.0.0,20): No such file or directory.
ftp>
Now, Ive used Wu-ftpd with BSDI before and I had to place some
/usr/lib files in the ~ftp/usr/lib directory. I placed all the files
that a 'ldd ls' and 'ldd -v ls' found. This still did not work. Are
there additional files I should use or am I not placing them in the
proper directory??? Any insight would be greatly appreciated...
The system is a Sun Sparc 5 with 64 Megs of RAM. Here is a
copy of my uname -a.
SunOS ss5a.digex.neoplanet.com 5.5.1 Generic_103640-05 sun4m sparc
SUNW,SPARCstation-5
(Digex set up this server for us)
Thanks...
Sean Rolinson
[email protected]
From
[email protected] Fri Oct 17 14:45:03 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA15892;
Fri, 17 Oct 1997 19:43:10 -0500 (CDT)
Received: from differential.com ([204.152.97.192])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA07782
for <
[email protected]>; Fri, 17 Oct 1997 19:38:05 -0500 (CDT)
Received: (from jevans@localhost) by differential.com (8.8.0/8.6.9) id RAA08867; Fri, 17 Oct 1997 17:37:35 -0700 (PDT)
Message-Id: <
[email protected]>
Date: Fri, 17 Oct 1997 17:37:35 -0700 (PDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Dave Jevans <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: interrupted file transfers not logged?
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>They would like me to hack the WUFTPD server to make sure it always
>logs partial transfers, not just aborted ones. I can not believe this hasnt
>been looked at or thought about already, so that there is probably more
>to it than that, so I have been resisting so far.
Roger,
It is in fact not super hard to add this.
Differential's commercial FileDrive servers,
based partially on wu-ftpd, have the capability of
logging failed versus completed transfers.
Flag them separately in the logfile. There is
a field in each entry which indicates whether a
transfer is upload or download. We added 2 new flags
for this field... one indicates failed upload, the other
indicates failed download. All other fields are the
same as the regular log.
Our Web-viewable stats engine, part of our secure Web-based
remote administration system, lets you view statistics about
failed versus completed transfers.
If you would like more info on the log format, contact me.
David Jevans
--
David Jevans
http://www.differential.com
Email:
[email protected] Phone: (408) 864-0603
Discover www.filedrive.com: Secure FTP and Extranet data management.
From
[email protected] Fri Oct 17 14:51:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA17538;
Fri, 17 Oct 1997 19:49:26 -0500 (CDT)
Received: from differential.com ([204.152.97.192])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA17845
for <
[email protected]>; Fri, 17 Oct 1997 19:44:20 -0500 (CDT)
Received: (from jevans@localhost) by differential.com (8.8.0/8.6.9) id RAA10300; Fri, 17 Oct 1997 17:43:51 -0700 (PDT)
Message-Id: <
[email protected]>
Date: Fri, 17 Oct 1997 17:43:51 -0700 (PDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Dave Jevans <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: An easy problem (I hope)...
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>I have a problem with a Sun Sparc 5 and wu-ftpd-2.4.2-15.
>problem I am having is with the FTP or anonymous user. I've created
>a directory for the ftp account called /local/home/ftp. The
>ftp> ls
>200 PORT command successful.
>425 Can't create data socket (0.0.0.0,20): No such file or directory.
Sean,
Have you setup the ~ftp/dev/ directory?
You need to have the tcp and udp devices in there,
or a chrooted ftp cannot make IP connections on Solaris.
When you do a "man ftpd" you should see a shell script
in the man pages. cut this out and run it. It will
setup your ~ftp directory properly, including the devices
in ~ftp/dev
--
David Jevans
http://www.differential.com
Email:
[email protected] Phone: (408) 864-0603
Discover www.filedrive.com: Secure FTP and Extranet data management.
From
[email protected] Fri Oct 17 15:23:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA20336;
Fri, 17 Oct 1997 20:20:51 -0500 (CDT)
Received: from fellspt.charm.net (
[email protected] [199.0.70.29])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id UAA09471
for <
[email protected]>; Fri, 17 Oct 1997 20:18:56 -0500 (CDT)
Received: from bytor ([207.16.136.206])
by fellspt.charm.net (8.8.7/8.8.5) with SMTP id VAA18454;
Fri, 17 Oct 1997 21:18:53 -0400 (EDT)
Message-Id: <
[email protected]>
Date: Fri, 17 Oct 1997 21:18:58 -5
Reply-To:
[email protected]
Sender:
[email protected]
From: "Sean Rolinson" <
[email protected]>
To: Dave Jevans <
[email protected]>
Cc:
[email protected]
Subject: Re: An easy problem (I hope)...
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
X-mailer: Pegasus Mail for Win32 (v2.54)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Great!! it worked perfectly...
The in.ftpd man pages that were installed (by wuftpd?) did not have
the below mentioned information. However, I got that information
from another Sun box and the script worked great.
Thanks...
Sean
> Date: Fri, 17 Oct 1997 17:43:51 -0700 (PDT)
> From: Dave Jevans <
[email protected]>
> To:
[email protected]
> Subject: Re: An easy problem (I hope)...
> Cc:
[email protected]
>
> >I have a problem with a Sun Sparc 5 and wu-ftpd-2.4.2-15.
> >problem I am having is with the FTP or anonymous user. I've created
> >a directory for the ftp account called /local/home/ftp. The
>
> >ftp> ls
> >200 PORT command successful.
> >425 Can't create data socket (0.0.0.0,20): No such file or directory.
>
> Sean,
>
> Have you setup the ~ftp/dev/ directory?
> You need to have the tcp and udp devices in there,
> or a chrooted ftp cannot make IP connections on Solaris.
>
> When you do a "man ftpd" you should see a shell script
> in the man pages. cut this out and run it. It will
> setup your ~ftp directory properly, including the devices
> in ~ftp/dev
>
> --
> David Jevans
http://www.differential.com
> Email:
[email protected] Phone: (408) 864-0603
>
> Discover www.filedrive.com: Secure FTP and Extranet data management.
>
>
From
[email protected] Sun Oct 19 18:13:18 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA29267;
Sun, 19 Oct 1997 18:06:41 -0500 (CDT)
Received: from optima.cs.arizona.edu (optima.CS.Arizona.EDU [192.12.69.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA26930
for <
[email protected]>; Sun, 19 Oct 1997 18:05:00 -0500 (CDT)
Received: from lectura.CS.Arizona.EDU (lectura.CS.Arizona.EDU [192.12.69.186])
by optima.cs.arizona.edu (8.8.7/8.8.7) with ESMTP id QAA04865;
Sun, 19 Oct 1997 16:04:59 -0700 (MST)
Received: from localhost (localhost [127.0.0.1])
by lectura.CS.Arizona.EDU (8.8.7/8.8.7) with SMTP id QAA06675;
Sun, 19 Oct 1997 16:04:58 -0700 (MST)
Message-Id: <
[email protected]>
Date: Sun, 19 Oct 1997 16:04:58 -0700 (MST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Jim Davis <
[email protected]>
To: Scot Needy <
[email protected]>
Cc:
[email protected]
Subject: Re: ls -la does not show user/group Solaris 2.5.1
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Sun, 19 Oct 1997, Scot Needy wrote:
> Here is dev/
> crw-rw-rw- 1 root 11, 42 Oct 19 16:18 tcp
> crw-rw-rw- 1 root 105, 2 Oct 19 16:46 ticlts
> crw-rw-rw- 1 root 105, 1 Oct 19 17:03 ticotsord
> crw-r--r-- 1 root 11, 41 Oct 19 17:04 udp
I think you need mode 666 for that one.
> crw-rw-rw- 1 root 13, 12 Oct 19 16:18 zero
>
>
> Here is usr/lib/
You're missing a number of important libraries here. (And some of those
directory permissions look a little dubious.)
The Sun (not wu-ftpd) in.ftpd man page lists what you need (with the
exception of libmp.so on 2.5.1 systems).
From
[email protected] Mon Oct 20 06:46:38 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA15683;
Mon, 20 Oct 1997 06:40:04 -0500 (CDT)
Received: from mh004.infi.net (mailhost.infi.net [208.131.167.6])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id GAA11220
for <
[email protected]>; Mon, 20 Oct 1997 06:34:15 -0500 (CDT)
Received: from finch.engrs.infi.net (spot.engrs.infi.net [206.153.61.89])
by mh004.infi.net (8.8.5/8.8.5) with ESMTP id HAA19152;
Mon, 20 Oct 1997 07:34:13 -0400 (EDT)
Message-Id: <
[email protected]>
Date: Mon, 20 Oct 1997 07:30:46 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Scot Needy <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: An easy problem (I hope)...
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.03 [en] (WinNT; U)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Check the FAQ closely I think there are some devices you are missing in
the
chrooted env.
Scot
Sean Rolinson wrote:
> Hello list,
>
> I have a problem with a Sun Sparc 5 and wu-ftpd-2.4.2-15.
>
> The program is installed and works properly for existing users. The
> problem I am having is with the FTP or anonymous user. I've created
> a directory for the ftp account called /local/home/ftp. The
> directory structure is setup as suggested by the man pages. Now,
> when I ftp in anonymously, and try to do an ls, I get the following
> message:
>
> ftp> ls
> 200 PORT command successful.
> 425 Can't create data socket (0.0.0.0,20): No such file or directory.
> ftp>
>
> Now, Ive used Wu-ftpd with BSDI before and I had to place some
> /usr/lib files in the ~ftp/usr/lib directory. I placed all the files
> that a 'ldd ls' and 'ldd -v ls' found. This still did not work. Are
> there additional files I should use or am I not placing them in the
> proper directory??? Any insight would be greatly appreciated...
>
> The system is a Sun Sparc 5 with 64 Megs of RAM. Here is a
> copy of my uname -a.
>
> SunOS ss5a.digex.neoplanet.com 5.5.1 Generic_103640-05 sun4m sparc
> SUNW,SPARCstation-5
>
> (Digex set up this server for us)
>
> Thanks...
>
> Sean Rolinson
>
[email protected]
From
[email protected] Mon Oct 20 07:08:45 1997
Received: from relay3.UU.NET by relay3.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdlzn02620; Sun, 19 Oct 1997 18:47:09 -0400 (EDT)
Received: from wugate.wustl.edu by relay3.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdlzn02615; Sun, 19 Oct 1997 18:47:08 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA23603;
Sun, 19 Oct 1997 17:39:08 -0500 (CDT)
Received: from finch.engrs.infi.net (finch.engrs.infi.net [206.153.61.77])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA23713
for <
[email protected]>; Sun, 19 Oct 1997 17:28:00 -0500 (CDT)
Received: by finch.engrs.infi.net; id AA18107; Sun, 19 Oct 1997 12:23:44 -0400
Message-Id: <
[email protected]>
Date: Sun, 19 Oct 1997 11:23:43 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Scot Needy <
[email protected]>
To:
[email protected]
Subject: ls -la does not show user/group Solaris 2.5.1
In-Reply-To: <
[email protected]>
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi;
I think I have got everything req in the documentation faq and links
to other Solaris FAQ's but I still cannot get ls -la to
show the user and group name rather than the UID and file
permissions.
Here is dev/
crw-rw-rw- 1 root 11, 42 Oct 19 16:18 tcp
crw-rw-rw- 1 root 105, 2 Oct 19 16:46 ticlts
crw-rw-rw- 1 root 105, 1 Oct 19 17:03 ticotsord
crw-r--r-- 1 root 11, 41 Oct 19 17:04 udp
crw-rw-rw- 1 root 13, 12 Oct 19 16:18 zero
Here is usr/lib/
-r-xr-xr-x 1 root 24576 Oct 19 17:09 ld.so
-r-xr-xr-x 1 root 137172 Oct 19 17:09 ld.so.1
-r-xr-xr-x 1 root 664776 Oct 19 17:09 libc.so.1
-r-xr-xr-x 1 root 2564 Oct 19 15:51 libdl.so.1
-r-xr-xr-x 1 root 15720 Oct 19 17:09 libintl.so.1
-r-xr-xr-x 1 root 15720 Oct 19 16:33 libmp.so.1
-r-xr-xr-x 1 root 571940 Oct 19 17:13 libnsl.so.1
-r-xr-xr-x 1 root 1753 Oct 19 17:07 nslookup.help
-r-xr-xr-x 1 root 15632 Oct 19 17:13 nss_compat.so.1
-r-xr-xr-x 1 root 9324 Oct 19 17:13 nss_dns.so.1
-r-xr-xr-x 1 root 21144 Oct 19 17:13 nss_files.so.1
-r-xr-xr-x 1 root 24404 Oct 19 17:13 nss_nis.so.1
-r-xr-xr-x 1 root 28920 Oct 19 17:13 nss_nisplus.so.1
-r-xr-xr-x 1 root 9312 Oct 19 17:13 straddr.so
etc/
drw-rw-rw- 3 root 512 Oct 19 17:14 .
drwxr-xr-x 7 root 512 Oct 19 16:17 ..
dr--r--r-- 2 root 512 Oct 19 15:55 default
-r--r--r-- 1 daemon 5234 Oct 19 16:22 group
-r--r--r-- 1 root 1064 Oct 19 16:49 netconfig
-r--r--r-- 1 root 690 Oct 19 17:14 nsswitch.conf
-r--r--r-- 1 daemon 11428 Oct 19 15:47 passwd
etc/default:
total 3
dr--r--r-- 2 root 512 Oct 19 15:55 .
drw-rw-rw- 3 root 512 Oct 19 17:14 ..
-r-xr-xr-x 1 root 462 Oct 19 15:55 init
I have tried /usr/bin/ls and /usr/ucb/ls
Any Ideas ?
Thanks
From
[email protected] Mon Oct 20 09:14:06 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA28905;
Mon, 20 Oct 1997 09:07:24 -0500 (CDT)
Received: from tecoma.mccc.edu (tecoma.mccc.edu [198.133.170.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA26330
for <
[email protected]>; Mon, 20 Oct 1997 09:01:45 -0500 (CDT)
Received: from tecoma (tecoma [198.133.170.1])
by tecoma.mccc.edu (8.8.5/8.8.5) with SMTP id KAA22408
for <
[email protected]>; Mon, 20 Oct 1997 10:01:38 -0400 (EDT)
Message-Id: <Pine.SOL.3.96.971020100115.22401A-100000@tecoma>
Date: Mon, 20 Oct 1997 10:01:33 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Pete Holsberg <
[email protected]>
To:
[email protected]
Subject: TEST
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: pjh@tecoma
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
No traffic since Friday???
From
[email protected] Mon Oct 20 11:35:24 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA09654;
Mon, 20 Oct 1997 11:28:43 -0500 (CDT)
Received: from tecoma.mccc.edu (tecoma.mccc.edu [198.133.170.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA03084
for <
[email protected]>; Mon, 20 Oct 1997 11:22:12 -0500 (CDT)
Received: from tecoma (tecoma [198.133.170.1])
by tecoma.mccc.edu (8.8.5/8.8.5) with SMTP id MAA26120
for <
[email protected]>; Mon, 20 Oct 1997 12:22:11 -0400 (EDT)
Message-Id: <Pine.SOL.3.96.971020122005.26056A-100000@tecoma>
Date: Mon, 20 Oct 1997 12:22:11 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Pete Holsberg <
[email protected]>
To:
[email protected]
Subject: Logging to wtmpx
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: pjh@tecoma
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I'm running the latest beta (having upgraded from plain
2.4) and now all ftp logins -- including those of people
who get denied service for whatever reason -- are logged to
/var/adm/wtmpx (Solaris 2.5).
I hate this! How do I turn it off. ftpd runs with only the
-a switch.
Thanks,
pete
From
[email protected] Mon Oct 20 12:07:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA15682;
Mon, 20 Oct 1997 11:59:37 -0500 (CDT)
Received: from att.com (cagw2.att.com [192.128.52.90])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA02680
for <
[email protected]>; Mon, 20 Oct 1997 11:58:01 -0500 (CDT)
Received: by cagw2.att.com; Mon Oct 20 09:40 EDT 1997
Received: from lynxhub.lz.att.com ([135.25.204.10])
by caig2.att.att.com (AT&T/GW-1.0) with SMTP id JAA23531
for <
[email protected]>; Mon, 20 Oct 1997 09:56:01 -0400 (EDT)
Received: from ROGERH ([135.25.200.159]) by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA18009; Mon, 20 Oct 1997 09:41:57 -0400
Received: by ROGERH with Microsoft Mail
id <01BCDD3C.DEE4E3D0@ROGERH>; Mon, 20 Oct 1997 09:45:16 -0400
Message-Id: <01BCDD3C.DEE4E3D0@ROGERH>
Date: Mon, 20 Oct 1997 09:45:15 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: "Roger A. Hanke" <
[email protected]>
To: "rah@lynxhub" <
[email protected]>,
"'
[email protected]'"
<
[email protected]>
Cc: "'WUFTPD List'" <
[email protected]>
Subject: RE: interrupted file transfers not logged?
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Dave,
Thanks for the response. Yeah that sounds like a good extension to the flags
field. What I was really concerned about though was changing such a
vital part of WUFTPD server operation, the logging subsystem. So how
involved are the coding changes to keep track of partial or interrupted
transfers (non aborted ones)? And since I would want to submit this as a
patch to be accepted in a future release, is there anything you ended up
doing that people might object to having in a future WUFTPD release?
I would prefer not having to introduce a new IFDEF for something like
this that I consider part of the servers basic operation.
Thanx,
Roger Hanke
----------
From: Dave Jevans[SMTP:
[email protected]]
Sent: Friday, October 17, 1997 8:37 PM
To: rah@lynxhub
Cc:
[email protected]
Subject: Re: interrupted file transfers not logged?
>They would like me to hack the WUFTPD server to make sure it always
>logs partial transfers, not just aborted ones. I can not believe this hasnt
>been looked at or thought about already, so that there is probably more
>to it than that, so I have been resisting so far.
Roger,
It is in fact not super hard to add this.
Differential's commercial FileDrive servers,
based partially on wu-ftpd, have the capability of
logging failed versus completed transfers.
Flag them separately in the logfile. There is
a field in each entry which indicates whether a
transfer is upload or download. We added 2 new flags
for this field... one indicates failed upload, the other
indicates failed download. All other fields are the
same as the regular log.
Our Web-viewable stats engine, part of our secure Web-based
remote administration system, lets you view statistics about
failed versus completed transfers.
If you would like more info on the log format, contact me.
David Jevans
--
David Jevans
http://www.differential.com
Email:
[email protected] Phone: (408) 864-0603
Discover www.filedrive.com: Secure FTP and Extranet data management.
From
[email protected] Mon Oct 20 12:51:27 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA15255;
Mon, 20 Oct 1997 12:44:15 -0500 (CDT)
Received: from differential.com (differential.com [204.152.97.192])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA16299
for <
[email protected]>; Mon, 20 Oct 1997 12:41:25 -0500 (CDT)
Received: (from jevans@localhost) by differential.com (8.8.0/8.6.9) id KAA23895; Mon, 20 Oct 1997 10:39:20 -0700 (PDT)
Message-Id: <
[email protected]>
Date: Mon, 20 Oct 1997 10:39:20 -0700 (PDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Dave Jevans <
[email protected]>
To:
[email protected]
Cc:
[email protected],
[email protected]
Subject: RE: interrupted file transfers not logged?
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>field. What I was really concerned about though was changing such a
>vital part of WUFTPD server operation, the logging subsystem. So ho
>involved are the coding changes to keep track of partial or interrupte
>transfers (non aborted ones)? And since I would want to submit this as a
Roger,
Adding logging of interuppted and aborted transfers is easy and pretty
self contained.
You will modify two functions in ftpd.c
retrieve() and store()
track the return value of the transfer functions receive_data
and send_data() routines respectively. Also track the return status
of the dataconn() routine, which sets up the sockets for the
transfer.
If these routines fail, then change the goto so that it goes
to the logging code at the end of the retrieve() and store() functions,
instead of going to the end of the functions without executing the
logging code.
The file logging is 2 lines of code that sprintfs the log string
and then writes it to the logfile. Change the sprinf so that insead
of just putting an "i" or "o" for whether the file is incomgin
or outgoing, you do a ?: operator and print a different char
for the status of the transfer:
For outgoing transfers:
(dataerr == -1 ? 'p' : (dataerr == -2 ? 'q' : 'o')),
/* 'o' == OK, 'p' == error, 'q' == aborted */
For incoming transfers:
(dataerr == -1 ? 'j' : (dataerr == -2 ? 'k' : 'i')),
/* 'i' == OK, 'j' == error, 'k' == aborted */
DJ
---
David Jevans
http://www.differential.com
Email:
[email protected] Phone: (408) 864-0603
Secure FTP and Extranet data management.
www.filedrive.com
From
[email protected] Mon Oct 20 13:04:38 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA17741;
Mon, 20 Oct 1997 12:56:51 -0500 (CDT)
Received: from optima.cs.arizona.edu (optima.CS.Arizona.EDU [192.12.69.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA14182
for <
[email protected]>; Mon, 20 Oct 1997 12:51:46 -0500 (CDT)
Received: from lectura.CS.Arizona.EDU (lectura.CS.Arizona.EDU [192.12.69.186])
by optima.cs.arizona.edu (8.8.7/8.8.7) with ESMTP id KAA21731;
Mon, 20 Oct 1997 10:51:45 -0700 (MST)
Received: from localhost (localhost [127.0.0.1])
by lectura.CS.Arizona.EDU (8.8.7/8.8.7) with SMTP id KAA01185;
Mon, 20 Oct 1997 10:51:44 -0700 (MST)
Message-Id: <
[email protected]>
Date: Mon, 20 Oct 1997 10:51:43 -0700 (MST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Jim Davis <
[email protected]>
To: Pete Holsberg <
[email protected]>
Cc:
[email protected]
Subject: Re: Logging to wtmpx
In-Reply-To: <Pine.SOL.3.96.971020122005.26056A-100000@tecoma>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Mon, 20 Oct 1997, Pete Holsberg wrote:
> I'm running the latest beta (having upgraded from plain
> 2.4) and now all ftp logins -- including those of people
> who get denied service for whatever reason -- are logged to
> /var/adm/wtmpx (Solaris 2.5).
>
> I hate this! How do I turn it off. ftpd runs with only the
> -a switch.
Easy enough: edit src/logwtmp.c. (Note it picks up WTMPX_FILE from
#include'ing <utmpx>, instead of setting it in src/pathnames.h.)
Though why you'd want to turn that off isn't clear.
From
[email protected] Mon Oct 20 13:28:53 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA05732;
Mon, 20 Oct 1997 13:22:00 -0500 (CDT)
Received: from tecoma.mccc.edu (tecoma.mccc.edu [198.133.170.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA19040
for <
[email protected]>; Mon, 20 Oct 1997 13:15:42 -0500 (CDT)
Received: from tecoma (tecoma [198.133.170.1])
by tecoma.mccc.edu (8.8.5/8.8.5) with SMTP id OAA29905;
Mon, 20 Oct 1997 14:15:06 -0400 (EDT)
Message-Id: <Pine.SOL.3.96.971020141402.29866A-100000@tecoma>
Date: Mon, 20 Oct 1997 14:15:06 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Pete Holsberg <
[email protected]>
To: Jim Davis <
[email protected]>
Cc:
[email protected]
Subject: Re: Logging to wtmpx
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: pjh@tecoma
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Mon, 20 Oct 1997, Jim Davis wrote:
> On Mon, 20 Oct 1997, Pete Holsberg wrote:
>
> > I'm running the latest beta (having upgraded from plain
> > 2.4) and now all ftp logins -- including those of people
> > who get denied service for whatever reason -- are logged to
> > /var/adm/wtmpx (Solaris 2.5).
> >
> > I hate this! How do I turn it off. ftpd runs with only the
> > -a switch.
>
> Easy enough: edit src/logwtmp.c. (Note it picks up
> #WTMPX_FILE from include'ing <utmpx>, instead of setting
> it in src/pathnames.h.)
Thanks.
> Though why you'd want to turn that off isn't clear.
To keep wtmpx a reasonable size for the "last" command. I
get all the logging I want to xferlog.
Pete
From
[email protected] Mon Oct 20 14:28:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA16149;
Mon, 20 Oct 1997 14:19:07 -0500 (CDT)
Received: from elliot.mtq.gouv.qc.ca (elliot.mtq.gouv.qc.ca [132.221.39.151])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA11238
for <
[email protected]>; Mon, 20 Oct 1997 14:16:51 -0500 (CDT)
Received: by elliot.mtq.gouv.qc.ca id PAA09593; Mon, 20 Oct 1997 15:20:53 -0400
Received: by dgaron.mtq.gouv.qc.ca with Microsoft Mail
id <
[email protected]>; Mon, 20 Oct 1997 15:11:50 -0400
Message-Id: <
[email protected]>
Date: Mon, 20 Oct 1997 15:17:32 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Denis Garon <
[email protected]>
To: "'
[email protected]'" <
[email protected]>
Subject: ftp problem with mkdir command ...Please Help!
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id OAA12773
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I use ftpd and i config one user (ftpesept) like that in ftpaccess file:
upload /export/home/ftp/RecensementCanada * yes ftpesept ftp 0644 dirs
When the user ftpesept logg in ftp, he can make new directory and upload files.
When he upload files, the protection was like that:
rwxr-xr-x ftpesept ftp
And that was ok. I want anonymous user to access that files.
But when the user ftpesept do a makedir, than the directory protection was like that:
rwxrwxr-x ftpesept ftp
And that was not OK because anonymous user can transfert in that directory!!!
So why the makedir command not use the 0644 in upload command when creating directory???
*************************************************************
Denis Garon, Analyste en informatique
Transports Qu�bec, 35, De Port-Royal Est, Bur:5.00A
Montr�al, Qc, Canada, H3L 3T1
T�l. : (514) 873-6848 FAX. : (514) 873-8203
From
[email protected] Mon Oct 20 15:48:23 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA00461;
Mon, 20 Oct 1997 15:41:12 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA22101
for <
[email protected]>; Mon, 20 Oct 1997 15:35:02 -0500 (CDT)
Received: from egate2.mnet.uswest.com (egate-ne1.mnet.uswest.com [151.117.138.135])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id OAA12118
for <
[email protected]>; Mon, 20 Oct 1997 14:34:31 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate2.mnet.uswest.com (8.7.1/8.7.1) with SMTP id PAA00403 for <
[email protected]>; Mon, 20 Oct 1997 15:34:30 -0500 (CDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id PAA11533 for <
[email protected]>; Mon, 20 Oct 1997 15:41:13 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA4189
for <
[email protected]>; Mon, 20 Oct 1997 14:34:27 -0600
Message-Id: <
[email protected]>
Date: Mon, 20 Oct 1997 14:37:52 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: User Ratios
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi all. Phil says he won't be able to get to user ratios for a while,
so I thought I'd take a stab at it. I've got a question concerning the
conventions for adding new code,though:
Should I create a new module (ie ratio.c) or just shove the code into
ftpd.c?
-Brad
From
[email protected] Mon Oct 20 21:55:25 1997
Received: from relay5.UU.NET by relay5.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdmde23574; Mon, 20 Oct 1997 18:31:04 -0400 (EDT)
Received: from wugate.wustl.edu by relay5.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdmde23560; Mon, 20 Oct 1997 18:30:59 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA10525;
Mon, 20 Oct 1997 17:11:14 -0500 (CDT)
Received: from Bahamut.dragonfire.net (Bahamut.dragonfire.net [209.70.16.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA08224
for <
[email protected]>; Mon, 20 Oct 1997 17:05:46 -0500 (CDT)
Received: (from achurch@localhost) by Bahamut.dragonfire.net (8.8.5/8.7.5) id SAA22784; Mon, 20 Oct 1997 18:05:41 -0400
Message-Id: <
[email protected]>
Date: Mon, 20 Oct 1997 18:05:40 EDT
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Andy Church)
To:
[email protected]
Subject: Re: User Ratios
X-Mailer: MMail v4.62
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>Hi all. Phil says he won't be able to get to user ratios for a while,
>so I thought I'd take a stab at it. I've got a question concerning the
>conventions for adding new code,though:
>
>Should I create a new module (ie ratio.c) or just shove the code into
>ftpd.c?
Definitely create a new source file. IMO, ftpd.c is too big as it is,
and someone ought to split it up. (But it won't be me, unless I can figure
out how to squeeze another 4 or 6 hours into each day...)
--Andy Church | If Bell Atlantic really is the heart
[email protected] | of communication, then it desperately
www.dragonfire.net/~achurch/ | needs a quadruple bypass.
From
[email protected] Mon Oct 20 21:55:35 1997
Received: from relay5.UU.NET by relay5.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdmdg02802; Mon, 20 Oct 1997 19:05:55 -0400 (EDT)
Received: from wugate.wustl.edu by relay5.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdmdg02776; Mon, 20 Oct 1997 19:05:53 -0400 (EDT)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA03730;
Mon, 20 Oct 1997 17:42:52 -0500 (CDT)
Received: from mh004.infi.net (mailhost.infi.net [208.131.167.6])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA09461
for <
[email protected]>; Mon, 20 Oct 1997 17:35:44 -0500 (CDT)
Received: from finch.engrs.infi.net (spot.engrs.infi.net [206.153.61.89])
by mh004.infi.net (8.8.5/8.8.5) with ESMTP id SAA03623;
Mon, 20 Oct 1997 18:34:19 -0400 (EDT)
Message-Id: <
[email protected]>
Date: Mon, 20 Oct 1997 18:30:52 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Scot Needy <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: ls -la does not show user/group Solaris 2.5.1
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.03 [en] (WinNT; U)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Opps It was ~/etc/ It seems I did not have to make this a readble
directory on DEC OSF but Solaris 2.5.1 I did.
d--x--x--x dec
dr-xr-xr-x Solaris
Thanks for all the help..
Scot
Jim Davis wrote:
> On Sun, 19 Oct 1997, Scot Needy wrote:
>
> > Here is dev/
> > crw-rw-rw- 1 root 11, 42 Oct 19 16:18 tcp
> > crw-rw-rw- 1 root 105, 2 Oct 19 16:46 ticlts
> > crw-rw-rw- 1 root 105, 1 Oct 19 17:03 ticotsord
> > crw-r--r-- 1 root 11, 41 Oct 19 17:04 udp
>
> I think you need mode 666 for that one.
>
> > crw-rw-rw- 1 root 13, 12 Oct 19 16:18 zero
> >
> >
> > Here is usr/lib/
>
> You're missing a number of important libraries here. (And some of those
> directory permissions look a little dubious.)
>
> The Sun (not wu-ftpd) in.ftpd man page lists what you need (with the
> exception of libmp.so on 2.5.1 systems).
From
[email protected] Tue Oct 21 03:05:21 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA31707;
Tue, 21 Oct 1997 02:58:47 -0500 (CDT)
Received: from carson.xcom.it (carson.xcom.it [194.184.26.53])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id CAA29165
for <
[email protected]>; Tue, 21 Oct 1997 02:53:47 -0500 (CDT)
Received: (from luicat@localhost) by carson.xcom.it (8.6.12/8.6.12) id JAA21925; Tue, 21 Oct 1997 09:53:59 +0200
Message-Id: <Pine.BSF.3.91.971021093932.21804A-100000@carson>
Date: Tue, 21 Oct 1997 09:53:59 +0200 (MET DST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Luigi Catuogno <
[email protected]>
To:
[email protected]
Subject: Problems with guest users
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: luicat@carson
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
I have problem with guest users.
My system is a Digital DEC 3000 (OSF/1 V3.2) and I installed wu-ftpd 2.4.
I did these settings into /etc/passwd:
ftptest:Q1fOwwNG5Zqxo:4999:23:ftp test:/usr/pub/www/ciccio/./.:/bin/ftponlysh
ftp:*:4998:23:ftp mast:/usr/pub/www/:/bin/sh
and this is the directory tree in /usr/pub/www/ciccio/./
# ls -R ciccio
bin etc
ciccio/bin:
ls
ciccio/etc:
passwd sia
ciccio/etc/sia:
siainitgood
Ok, user ftptest logs into his root and can perform correctly uploads, downloads, and
chdir/mkdirs but he can't do "ls" (the content of the directory doesn't appear).
ftp> ls
200 PORT command successful.
150 Opening ASCII mode data connection for /bin/ls.
226 Transfer complete.
Could someone help me?
thanks
------------------------------------------
Luigi Catuogno
XCOM - Wide Communication
e-mail:
[email protected]
Office: +39 (89) 953-118
------------------------------------------
From
[email protected] Tue Oct 21 04:07:12 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA26540;
Tue, 21 Oct 1997 03:56:32 -0500 (CDT)
Received: from maltms1.data.telia.se (maltms1.data.telia.se [131.116.41.116])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id DAA08356
for <
[email protected]>; Tue, 21 Oct 1997 03:56:21 -0500 (CDT)
Received: from by maltms1.data.telia.se with SMTP
(1.37.109.14/16.2) id AA062113870; Tue, 21 Oct 1997 10:51:10 +0200
Message-Id: <H00003ca028d98f3@MHS>
Date: Tue, 21 Oct 97 10:51:02 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected]
Subject: Problems with guest users
In-Reply-To: <Pine.BSF.3.91.971021093932.21804A-100000@carson>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; name="Meddelandetext"
Content-Transfer-Encoding: 7bit
X-Openmail-Hops: 2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I have the same problem with the addition that the user can upload files
and make directories but not remove anything although the owner of the dirs
and files are correct...
I am running wu-ftpd 2.4.2 BETA-15 on redhat linux using an alpha server...
BTW, this seems to be a common problem; perhaps the most common reasons
should be added to the guest FAQ? Only a suggestion....
/Per
> Hi,
> I have problem with guest users.
> My system is a Digital DEC 3000 (OSF/1 V3.2) and I installed wu-ftpd
2.4.
>
> I did these settings into /etc/passwd:
>
> ftptest:Q1fOwwNG5Zqxo:4999:23:ftp
test:/usr/pub/www/ciccio/./.:/bin/ftponlysh
> ftp:*:4998:23:ftp mast:/usr/pub/www/:/bin/sh
>
> and this is the directory tree in /usr/pub/www/ciccio/./
>
> # ls -R ciccio
> bin etc
>
> ciccio/bin:
> ls
>
> ciccio/etc:
> passwd sia
>
> ciccio/etc/sia:
> siainitgood
>
> Ok, user ftptest logs into his root and can perform correctly uploads,
downloads
> , and
> chdir/mkdirs but he can't do "ls" (the content of the directory doesn't
appear).
>
>
> ftp> ls
> 200 PORT command successful.
> 150 Opening ASCII mode data connection for /bin/ls.
> 226 Transfer complete.
>
> Could someone help me?
>
> thanks
>
> ------------------------------------------
> Luigi Catuogno
> XCOM - Wide Communication
> e-mail:
[email protected]
> Office: +39 (89) 953-118
> ------------------------------------------
>
From
[email protected] Tue Oct 21 04:25:18 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA20374;
Tue, 21 Oct 1997 04:15:42 -0500 (CDT)
Received: from wunet.wustl.edu (wunet.wustl.edu [128.252.120.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id EAA27140
for <
[email protected]>; Tue, 21 Oct 1997 04:13:03 -0500 (CDT)
Received: from sierra.onr.com by wunet.wustl.edu (PMDF V4.3-10 #20062)
id <
[email protected]>; Tue, 21 Oct 1997 03:50:00 -0500 (CDT)
Received: from onr.com (Onramp_SA1-V23.onr.com [206.104.9.222])
by sierra.onr.com (8.8.5/8.8.5) with ESMTP id EAA17462 for
<
[email protected]>; Tue, 21 Oct 1997 04:13:46 -0500 (CDT)
Message-Id: <
[email protected]>
Date: Sun, 12 Oct 1997 16:16:00 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Lee Tacker <
[email protected]>
To:
[email protected]
Subject: Subscribe wu-ftp
MIME-version: 1.0
Content-type: text/plain; charset=us-ascii
Content-transfer-encoding: 7bit
X-Mailer: Mozilla 4.03 [en] (Win95; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
From
[email protected] Tue Oct 21 10:06:33 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA17952;
Tue, 21 Oct 1997 09:57:28 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA04378
for <
[email protected]>; Tue, 21 Oct 1997 09:52:51 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA10879;
Tue, 21 Oct 1997 09:52:52 -0500
Message-Id: <
[email protected]>
Date: Tue, 21 Oct 1997 09:52:52 -0500 (CDT)
Reply-To: Michael Brennen <
[email protected]>
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: Problems with guest users
In-Reply-To: <H00003ca028d98f3@MHS>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I think you will find that the most common reasons for 'ls' failure *are*
in guest howto. If you find that they don't solve the problem, report it
to the list. I too am running on an alpha server and do not have the
delete problems you've reported.
-- Michael
On Tue, 21 Oct 1997
[email protected] wrote:
> I have the same problem with the addition that the user can upload files
> and make directories but not remove anything although the owner of the dirs
> and files are correct...
>
> I am running wu-ftpd 2.4.2 BETA-15 on redhat linux using an alpha server...
>
> BTW, this seems to be a common problem; perhaps the most common reasons
> should be added to the guest FAQ? Only a suggestion....
From
[email protected] Tue Oct 21 16:14:05 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA05383;
Tue, 21 Oct 1997 16:05:20 -0500 (CDT)
Received: from ananke.cic.itcr.ac.cr (ananke.cic.itcr.ac.cr [163.178.128.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA05342
for <
[email protected]>; Tue, 21 Oct 1997 16:02:10 -0500 (CDT)
Received: from mimas.cic.itcr.ac.cr (mimas.cic.itcr.ac.cr [163.178.128.20])
by ananke.cic.itcr.ac.cr (8.8.5/8.8.5) with ESMTP id PAA03703
for <
[email protected]>; Tue, 21 Oct 1997 15:09:00 -0600
Received: from MIMAS/SpoolDir by mimas.cic.itcr.ac.cr (Mercury 1.21);
21 Oct 97 15:05:57 -0600
Received: from SpoolDir by MIMAS (Mercury 1.30); 21 Oct 97 15:05:44 -0600
Message-Id: <
[email protected]>
Date: Tue, 21 Oct 1997 15:05:41 -06:00
Reply-To:
[email protected]
Sender:
[email protected]
From: "CARLOS SIRIAS QUESADA (ing)" <
[email protected]>
To:
[email protected]
Subject: Not recognizing users.
X-mailer: Pegasus Mail v3.40
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I have wu-ftpd2.4.2-Beta12 under a linux red hat 4.1, i also had the
early edition of that package, the thing is that i couldn't get the
stuff to recognize my users and log them on the server, the only
account that works is anonymous, i already read the man on ftpd and
on ftpaccess, but my tables seem to be right.
Can somebody help me on this one.
Carlos Sirias Quesada
From
[email protected] Tue Oct 21 18:34:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA02181;
Tue, 21 Oct 1997 18:23:53 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA29215
for <
[email protected]>; Tue, 21 Oct 1997 18:20:23 -0500 (CDT)
Received: from egate2.mnet.uswest.com (egate-ne1.mnet.uswest.com [151.117.138.135])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id RAA18488
for <
[email protected]>; Tue, 21 Oct 1997 17:19:52 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate2.mnet.uswest.com (8.7.1/8.7.1) with SMTP id SAA24519 for <
[email protected]>; Tue, 21 Oct 1997 18:19:50 -0500 (CDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id SAA03867 for <
[email protected]>; Tue, 21 Oct 1997 18:26:37 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA20452
for <
[email protected]>; Tue, 21 Oct 1997 17:19:48 -0600
Message-Id: <
[email protected]>
Date: Tue, 21 Oct 1997 17:23:14 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: Problems reading from a file.
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi all.
I'm working on the user ratio implementation and am trying to get ftpd
to read a user credit file (a simple text file), but it doesn't want to
play nice. For some reason it won't open any files for reading. Is
there something going on behind the scenes that I'm missing?
-Brad
From
[email protected] Wed Oct 22 06:11:11 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA22112;
Wed, 22 Oct 1997 06:04:38 -0500 (CDT)
Received: from Atel.it ([194.244.75.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA17666
for <
[email protected]>; Wed, 22 Oct 1997 06:00:58 -0500 (CDT)
Received: from atel.it by Atel.it (SMI-8.6/SMI-SVR4)
id MAA05693; Wed, 22 Oct 1997 12:58:13 +0200
Message-Id: <
[email protected]>
Date: Wed, 22 Oct 1997 13:00:26 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Massimo Vulpiani <
[email protected]>
To:
[email protected]
Subject: securid support
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="------------F191D12959F852DBCB5FCE79"
X-Sender:
[email protected]
X-Mailer: Mozilla 4.02 [en] (X11; I; SunOS 5.5.1 sun4u)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
--------------F191D12959F852DBCB5FCE79
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Hello,
is there any possibility to include the Security Dinamics
strong authentication in your server ?
Thank you in advance
Massimo Vulpiani
--
_____ Massimo Vulpiani
/ /\ Senior Security Engineer
/____/ \ Atel Spa
/ /\ \ Via Caldera 21
/____/ \ \ Edificio D/3
\ \ /\ / 20153 Milano - Italy
\____\/\/\/ Phone : +39.2.452701
\____\/\/ Fax : +39.2.45270299
\____\/ E-mail:
[email protected]
http://www.atel.it
--------------F191D12959F852DBCB5FCE79
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<HTML>
Hello,
<P>is there any possibility to include the Security Dinamics
<BR>strong authentication in your server ?
<P>Thank you in advance
<P>Massimo Vulpiani
<BR>
<PRE>--
_____ Massimo Vulpiani
/ /\ Senior Security Engineer
/____/ \ Atel Spa
/ /\ \ Via Caldera 21
/____/ \ \ Edificio D/3
\ \ /\ / 20153 Milano - Italy
\____\/\/\/ Phone : +39.2.452701
\____\/\/ Fax : +39.2.45270299
\____\/ E-mail:
[email protected]
<A HREF="
http://www.atel.it">
http://www.atel.it</A></PRE>
</HTML>
--------------F191D12959F852DBCB5FCE79--
From
[email protected] Wed Oct 22 07:52:25 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA28122;
Wed, 22 Oct 1997 07:45:43 -0500 (CDT)
Received: from maltms1.data.telia.se (maltms1.data.telia.se [131.116.41.116])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id HAA06752
for <
[email protected]>; Wed, 22 Oct 1997 07:42:54 -0500 (CDT)
Received: from by maltms1.data.telia.se with SMTP
(1.37.109.14/16.2) id AA283553864; Wed, 22 Oct 1997 14:37:44 +0200
Message-Id: <H00003ca028ecbf6@MHS>
Date: Wed, 22 Oct 97 14:35:26 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected]
Subject: Re: Problems with guest users
In-Reply-To: <
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; name="Meddelandetext"
Content-Transfer-Encoding: 7bit
X-Openmail-Hops: 2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Well, problem solved!
I redid everything according to the FAQ and found what was wrong; as
default in ftpaccess guest users have the same restrictions as anonymous
users regarding chmod, delete etc. I changed that and then it worked! This
little story says something about "really having read the docs..."! :-)
So my tip is; if it does not work for you and you have followed the FAQ but
only added info to ftpaccess, check whats in there from the beginning!!
Thanks!
/Per
>
> I think you will find that the most common reasons for 'ls' failure *are*
> in guest howto. If you find that they don't solve the problem, report it
> to the list. I too am running on an alpha server and do not have the
> delete problems you've reported.
>
> -- Michael
>
> On Tue, 21 Oct 1997
[email protected] wrote:
>
> > I have the same problem with the addition that the user can upload
files
> > and make directories but not remove anything although the owner of the
dirs
> > and files are correct...
> >
> > I am running wu-ftpd 2.4.2 BETA-15 on redhat linux using an alpha
server...
> >
> > BTW, this seems to be a common problem; perhaps the most common reasons
> > should be added to the guest FAQ? Only a suggestion....
>
>
From
[email protected] Wed Oct 22 22:56:00 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id WAA24968;
Wed, 22 Oct 1997 22:33:17 -0500 (CDT)
Received: from tecoma.mccc.edu (tecoma.mccc.edu [198.133.170.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id WAA29268
for <
[email protected]>; Wed, 22 Oct 1997 22:00:34 -0500 (CDT)
Received: from tecoma (tecoma [198.133.170.1])
by tecoma.mccc.edu (8.8.5/8.8.5) with SMTP id WAA06105
for <
[email protected]>; Wed, 22 Oct 1997 22:52:09 -0400 (EDT)
Message-Id: <Pine.SOL.3.96.971022224751.6036A-100000@tecoma>
Date: Wed, 22 Oct 1997 22:52:09 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Pete Holsberg <
[email protected]>
To:
[email protected]
Subject: ftpwho headings???
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: pjh@tecoma
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Here's a line from the output of ftpwho, split into muliple
lines:
1) ftp
2) 3485
3) 0.0
4) 1.1
5) 2292
6) 1300
7) ?
8) S
9) 20:51:42
10) 0:00
11) ftpd:
12) 207.61.109.36:
13) anonymous/mozilla@:
14) RETR
15) /pub/netscape/communicator/4.03/shipping/english/windows/windows3.1/base_install/cb16e403.exe
Would someone please supply the headers for the columns?
I can guess at a few:
15) full pathname of program being ftp's
14) it's a retry of a failed download
13) login/password
12) their host IP
11) program I'm running
And the rest???
Thanks,
Pete
From
[email protected] Wed Oct 22 23:40:43 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id XAA05840;
Wed, 22 Oct 1997 23:35:10 -0500 (CDT)
Received: from apollo.is.co.za (apollo.is.co.za [196.4.160.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id XAA11932
for <
[email protected]>; Wed, 22 Oct 1997 23:28:24 -0500 (CDT)
Received: from admin.is.co.za (admin.is.co.za [196.23.0.9]) by apollo.is.co.za (8.8.6/8.7.5/IShub#2) with ESMTP id GAA22549; Thu, 23 Oct 1997 06:28:15 +0200 (GMT)
Received: (from oskar@localhost) by admin.is.co.za (8.8.6/8.7.3/ISsubsidiary#1) id GAA25245; Thu, 23 Oct 1997 06:28:13 +0200 (GMT)
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 06:28:13 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Oskar Pearson <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: ftpwho headings???
In-Reply-To: <Pine.SOL.3.96.971022224751.6036A-100000@tecoma>; from Pete Holsberg on Wed, Oct 22, 1997 at 10:52:09PM -0400
References: <Pine.SOL.3.96.971022224751.6036A-100000@tecoma>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.69e
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi
> Here's a line from the output of ftpwho, split into muliple
> lines:
>
> 1) ftp
> 2) 3485
> 3) 0.0
> 4) 1.1
> 5) 2292
> 6) 1300
> 7) ?
> 8) S
> 9) 20:51:42
> 10) 0:00
> 11) ftpd:
> 12) 207.61.109.36:
> 13) anonymous/mozilla@:
> 14) RETR
> 15) /pub/netscape/communicator/4.03/shipping/english/windows/windows3.1/base_install/cb16e403.exe
>
>
> Would someone please supply the headers for the columns?
All of this is actually just the output if the 'ps' command. Look
at the source (specifically at the src/ftpcount.c file) and figure what
command it's actually running. (whenever you see a '%d' it's referring
to the process number)
> I can guess at a few:
> 14) it's a retry of a failed download
Not as far as I know - it stands for 'retrieve' rathere than 'retry' IMO
The actual ftp program sets everything after the 'ftpd: ' text. Everything
before that is set by the ps command.
Oskar
--
"Haven't slept at all. I don't see why people insist on sleeping. You feel
so much better if you don't. And how can anyone want to lose a minute -
a single minute of being alive?" -- Think Twice
From
[email protected] Thu Oct 23 03:44:31 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA28722;
Thu, 23 Oct 1997 03:37:38 -0500 (CDT)
Received: from firewall.ddeorg.soft.net (firewall.ddeorg.soft.net [164.164.74.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id DAA30937
for <
[email protected]>; Thu, 23 Oct 1997 03:33:49 -0500 (CDT)
Received: by firewall.ddeorg.soft.net (8.8.5/9.6)
id OAA12339; Thu, 23 Oct 1997 14:04:51 +0530 (IST)
Received: from madras.ddeorg.soft.net by ddeorg.soft.net (8.8.5/9.6) with ESMTP
id OAA14401; Thu, 23 Oct 1997 14:04:49 +0530 (IST)
Received: from localhost by madras.ddeorg.soft.net (8.8.7/9.7) with SMTP
id NAA14171; Thu, 23 Oct 1997 13:59:42 +0530 (IST)
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 13:59:41 +0530
Reply-To:
[email protected]
Sender:
[email protected]
From: "Nagaraj.J" <
[email protected]>
To:
[email protected]
Subject: Problems in data transfer (wu-ftpd-2.4-beta-15)
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
We have a svr4 based system. (Supermax) I have ported
wu-ftpd-2.4.2-beta-15) for this (svr4) platform. As per the instructions
given in the README & INSTALL files, I generated src/makefiles/Makefile.sbs,
support/makefiles/Makefile.sbs and src/config/config.sbs files from
Makefile.gen and config.gen files. I have no problem in genarating the
executables.
When I connect to ftp on this m/c from some other system,
everything goes fine until I do data transfer. i.e, it allows me to login,
asks for the passwd and gives the ftp prompt. The real problem starts when I
execute 'ls -l' or 'get filename' or 'put filename'. It prompts with (for eg.)
ftp> ls -l
500 Illegal PORT Command
125 Using existing data connection for /bin/ls.
When I abort this using ctrl-c, it transfers the data line by line for each successive command on the same (command) socket. I mean, it will transfer the data for the first command (ls -l ) on the same socket which it used for
commands.
Any suggestions please. Is it some thing to do with configuration ?
Thanks in advance
Regards
/Raju
PS : I have already posted this question to '
[email protected]' and this
bug is given a id (request number) 513. But so far I didn't get any response.
Hence I am posting this question again.
--
.------------------------------------------------------------.
| Nagaraja J, (Raju) |
| DDE ORG Systems, Phone : +91-080-553 8125 |
| III Floor, Maruthi Towers, +91-080-553 9217 |
| 3/4, Hosur Road, Fax : +91-080-553 8646 |
| Madiwala, email :
[email protected] |
| Bangalore 560 068 INDIA.
[email protected] |
`------------------Attitude is Everything--------------------'
From
[email protected] Thu Oct 23 04:15:18 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA31036;
Thu, 23 Oct 1997 04:08:34 -0500 (CDT)
Received: from pts.co.uk (ptsplc.pts.co.uk [193.119.197.88])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA26751
for <
[email protected]>; Thu, 23 Oct 1997 04:02:37 -0500 (CDT)
Received: from pts.com (athens [193.119.197.14]) by pts.co.uk (8.6.8.1/SCA-6.6) with SMTP
id KAA16052 for <
[email protected]>; Thu, 23 Oct 1997 10:04:03 +0100
Received: by pts.com (5.x/SMI-4.1)
id AA23889; Thu, 23 Oct 1997 10:00:45 +0100
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 10:00:45 +0100
Reply-To:
[email protected]
Sender:
[email protected]
From: Simon Hill <
[email protected]>
To:
[email protected]
Subject: truncated message file
X-Sun-Charset: US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
Is there a maximum length for a .message file ?
I'm writing download instructions for a product on our ftp site but
the message gets truncated after around 50 lines.
Can this limit be increased ? Is this a limit or a bug ?
I'm using wu-ftpd-2.4.2-beta-13
Thanks.
Simon.
From
[email protected] Thu Oct 23 06:59:24 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id GAA09184;
Thu, 23 Oct 1997 06:52:36 -0500 (CDT)
Received: from doctor.nl2k.ab.ca (
[email protected] [204.209.81.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id GAA04525
for <
[email protected]>; Thu, 23 Oct 1997 06:48:33 -0500 (CDT)
Received: (from doctor@localhost)
by doctor.nl2k.ab.ca (8.8.7/8.8.5) id FAA28983;
Thu, 23 Oct 1997 05:50:02 -0600 (MDT)
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 05:50:01 -0600 (MDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: The Doctor <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: truncated message file
In-Reply-To: <
[email protected]> from "Simon Hill" at Oct 23, 97 10:00:45 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>
> Hi,
>
> Is there a maximum length for a .message file ?
> I'm writing download instructions for a product on our ftp site but
> the message gets truncated after around 50 lines.
>
> Can this limit be increased ? Is this a limit or a bug ?
> I'm using wu-ftpd-2.4.2-beta-13
>
> Thanks.
> Simon.
>
Please update to wy-ftpd-2.4.2-beta-15.
From
[email protected] Thu Oct 23 07:24:24 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA12536;
Thu, 23 Oct 1997 07:17:42 -0500 (CDT)
Received: from smtp.datcon.co.uk (smtp.datcon.co.uk [192.91.191.4])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id HAA05840
for <
[email protected]>; Thu, 23 Oct 1997 07:16:55 -0500 (CDT)
Received: by smtp.datcon.co.uk with SMTP (Microsoft Exchange Server Internet Mail Connector Version 4.0.995.52)
id <
[email protected]>; Thu, 23 Oct 1997 13:16:48 +0100
Message-Id: <c=GB%a=TMAILUK%p=DCNET%
[email protected]>
Date: Thu, 23 Oct 1997 13:16:27 +0100
Reply-To:
[email protected]
Sender:
[email protected]
From: Shriman Gurung <
[email protected]>
To: "'
[email protected]'" <
[email protected]>
Subject: Pointer to wu-ftpd FAQ please
X-Mailer: Microsoft Exchange Server Internet Mail Connector Version 4.0.995.52
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
(I'm sure this question's been asked and answered a hundred times - I'm
sorry!)
I've just built wu-ftpd 2.4 and now I'm looking to configure it to do
what I want. I've read the examples and the man pages but they dont
really match my questions. Is there a FAQ somewhere?
I can see no mention of it in the docs.
Thanks
Shriman Gurung
sg at datcon dot co dot uk
From
[email protected] Thu Oct 23 08:27:57 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA28206;
Thu, 23 Oct 1997 08:20:42 -0500 (CDT)
Received: from K3.peakpeak.com (
[email protected] [207.174.103.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA07443
for <
[email protected]>; Thu, 23 Oct 1997 08:19:21 -0500 (CDT)
Received: (from chrism@localhost)
by K3.peakpeak.com (8.8.5/8.8.5) id HAA10515
for
[email protected]; Thu, 23 Oct 1997 07:19:36 -0600
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 07:19:36 -0600 (MDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Chris Magnuson <
[email protected]>
To:
[email protected]
Subject: version
Content-Type: text
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
What's the latest version of wu-ftp that should be used on production
RedHat 4.2 systems?
Thanks,
Chris Magnuson
[email protected]
From
[email protected] Thu Oct 23 09:05:20 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA10684;
Thu, 23 Oct 1997 08:58:30 -0500 (CDT)
Received: from finwe.jrnl.com (FINWE.JRNL.COM [199.244.139.200])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA10958
for <
[email protected]>; Thu, 23 Oct 1997 08:51:46 -0500 (CDT)
Received: from jrnl.com ([152.163.230.146]) by finwe.jrnl.com
(post.office MTA v2.0 0813 ID# 0-29013) with ESMTP id AAA23441;
Thu, 23 Oct 1997 09:53:02 -0400
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 09:43:13 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (denise)
To:
[email protected]
Cc:
[email protected]
Subject: Re: Problems in data transfer (wu-ftpd-2.4-beta-15)
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.02 [en] (Win95; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Nagaraj.J wrote:
> Hi,
>
> We have a svr4 based system. (Supermax) I have ported
> wu-ftpd-2.4.2-beta-15) for this (svr4) platform. As per the instructions
> given in the README & INSTALL files, I generated src/makefiles/Makefile.sbs,
> support/makefiles/Makefile.sbs and src/config/config.sbs files from
> Makefile.gen and config.gen files. I have no problem in genarating the
> executables.
>
> When I connect to ftp on this m/c from some other system,
> everything goes fine until I do data transfer. i.e, it allows me to login,
> asks for the passwd and gives the ftp prompt. The real problem starts when I
> execute 'ls -l' or 'get filename' or 'put filename'. It prompts with (for eg.)
>
> ftp> ls -l
> 500 Illegal PORT Command
> 125 Using existing data connection for /bin/ls.
>
> When I abort this using ctrl-c, it transfers the data line by line for each successive command on the same (command) socket. I mean, it will transfer the data for the first command (ls -l ) on the same socket which it used for
> commands.
>
> Any suggestions please. Is it some thing to do with configuration ?
>
First of all, let me say that it is amazing to me that there is another person in the world who has used a supermax.DDE's Euromax systems are the hardware, not the OS name, so I am going to assume that you are running a DDE version of
unix(SVR4? Are you sure it isn't system 4?).
Second, supermax utilizes bastardized versions of Unix. Therefore, you are going to run into problems using anything that isn't ported just for your system.
I worked for a while on a DDE Supermax system running a proprietary OS known as Euromax, a system 4 release BSDish OS. A number of our problems stemed from the Eromax usage of group permitions.
You'd really have to look carefully at the OS texts that DDE provides you with (if they didn't, you should talk to someone at DDE that handles the documentation) and look for the group permitions documentation specifically. There are
things that I experienced on the Euromax system that I have never seen in any other Unix system.
Hope that helps a little.
Denise
From
[email protected] Thu Oct 23 09:11:38 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA17796;
Thu, 23 Oct 1997 09:04:44 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA14123
for <
[email protected]>; Thu, 23 Oct 1997 09:03:18 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA04159;
Thu, 23 Oct 1997 09:03:08 -0500
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 09:03:08 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Shriman Gurung <
[email protected]>
Cc: "'
[email protected]'" <
[email protected]>
Subject: Re: Pointer to wu-ftpd FAQ please
In-Reply-To: <c=GB%a=TMAILUK%p=DCNET%
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Thu, 23 Oct 1997, Shriman Gurung wrote:
> I've just built wu-ftpd 2.4 and now I'm looking to configure it to do
> what I want. I've read the examples and the man pages but they dont
> really match my questions. Is there a FAQ somewhere?
This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to
[email protected]
with a subject line: send faq
guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "
[email protected]"
(immediate autoresponder; subject does not matter)
wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
There are additional security references in the above docs.
From
[email protected] Thu Oct 23 09:50:08 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA06664;
Thu, 23 Oct 1997 09:43:11 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA22834
for <
[email protected]>; Thu, 23 Oct 1997 09:37:51 -0500 (CDT)
Received: from egate2.mnet.uswest.com (egate-ne1.mnet.uswest.com [151.117.138.135])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id IAA00383
for <
[email protected]>; Thu, 23 Oct 1997 08:37:18 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate2.mnet.uswest.com (8.7.1/8.7.1) with SMTP id JAA10395 for <
[email protected]>; Thu, 23 Oct 1997 09:37:16 -0500 (CDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id JAA15251 for <
[email protected]>; Thu, 23 Oct 1997 09:44:01 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA21956
for <
[email protected]>; Thu, 23 Oct 1997 08:37:13 -0600
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 08:40:40 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: Re: Problems reading from a file.
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Jim Davis wrote:
>
> On Tue, 21 Oct 1997, Brad Waite wrote:
>
> > Hi all.
> >
> > I'm working on the user ratio implementation and am trying to get ftpd
> > to read a user credit file (a simple text file), but it doesn't want to
> > play nice. For some reason it won't open any files for reading. Is
> > there something going on behind the scenes that I'm missing?
>
> Well you've checked the obvious possibility about chroot getting in the
> way?
>
> Apart from that possibility I can't think of a reason why it wouldn't just
> do it.
Okay, I can get ftpd to read the credit file now and notify the user of
his dl credits upon login. Now I'm calling for recommendations on how
to update the file after the chroot(). The file has to be updated after
every transfer, otherwise the user could open another connection and
leech based on the initial credits. Ideas?
-Brad
From
[email protected] Thu Oct 23 10:44:24 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA21033;
Thu, 23 Oct 1997 10:34:30 -0500 (CDT)
Received: from ns.tpesp.com (
[email protected] [195.99.192.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA12412
for <
[email protected]>; Thu, 23 Oct 1997 10:29:32 -0500 (CDT)
Received: from juanen (juanen.tpesp.com [195.99.192.11]) by ns.tpesp.com (8.8.7/8.7.3) with SMTP id RAA05229 for <
[email protected]>; Thu, 23 Oct 1997 17:32:12 +0200
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 17:22:11 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Juan Enrique Gomez <
[email protected]>
To:
[email protected]
Subject: Guestgroup?
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Sender:
[email protected]
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32)
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id KAA09616
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi!
I have been trying to make the home dir of my users their root dir when
they login with ther name and password. I got this working last week when i
used the /home/<username> default structure. But after i got this working i
moved the home directories to /u/web since then when a user logs-in they
can go to their home directory but they also can make a cd .. to go the
upper directory :-(
All of them are asigned to the ftponly group, and the ftpaccess file has
the guestgroup ftponly command.
Please help!, Thanks in advance.
Regards.
-----------------------------------------------
Juan Enrique G�mez
Departamento de Inform�tica
Tecnipublicaciones Espa�a -
http://www.tpesp.es
[email protected]
-----------------------------------------------
From
[email protected] Thu Oct 23 11:07:55 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA13195;
Thu, 23 Oct 1997 11:00:03 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA08520
for <
[email protected]>; Thu, 23 Oct 1997 10:58:43 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id KAA07214;
Thu, 23 Oct 1997 10:58:29 -0500
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 10:58:29 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Juan Enrique Gomez <
[email protected]>
Cc:
[email protected]
Subject: Re: Guestgroup?
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Did you change the path to the home directories in /etc/passwd? Do they
still have /./? That is what causes the chroot.
-- Michael
On Thu, 23 Oct 1997, Juan Enrique Gomez wrote:
> I have been trying to make the home dir of my users their root dir when
> they login with ther name and password. I got this working last week when i
> used the /home/<username> default structure. But after i got this working i
> moved the home directories to /u/web since then when a user logs-in they
> can go to their home directory but they also can make a cd .. to go the
> upper directory :-(
From
[email protected] Thu Oct 23 11:33:58 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA03268;
Thu, 23 Oct 1997 11:26:48 -0500 (CDT)
Received: from goldnet.ru (root@[195.34.13.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA30334
for <
[email protected]>; Thu, 23 Oct 1997 11:22:04 -0500 (CDT)
Received: from master (ppp1-1.dialnet.ru [195.34.15.1])
by goldnet.ru (8.8.5/8.8.5) with ESMTP id UAA23003
for <
[email protected]>; Thu, 23 Oct 1997 20:19:17 +0300 (MSK)
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 19:55:35 +0300
Reply-To:
[email protected]
Sender:
[email protected]
From: "Vlad S." <
[email protected]>
To: <
[email protected]>
Subject: Problems in directory list transfer (wu-ftpd-2.4.2-beta-12)
MIME-Version: 1.0
Content-Type: text/plain; charset=KOI8-R
Content-Transfer-Encoding: 7bit
X-MSMail-Priority: Normal
X-Priority: 3
X-Mailer: Microsoft Internet Mail 4.70.1155
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
I have a Linux based system (RedHat Linux 4.2).
I installed wu-ftpd-2.4.2b12-6.rpm and made
'/home/ftp' directory (according to record in /etc/passwd for ftp user)
I created there 'pub' subdirectory and put there some files.
(rights for all directories are 755)
When I connect to ftp on this computer from some other system,
everything goes fine until I type 'ls'. i.e, it allows me to login as
'anonymous',
asks for the passwd and gives the ftp prompt. The real problem starts when
I
execute 'ls'. It shows only:
200 Port command successful
150 Opening ASCII mode data connection for /bin/ls
226 Transfer complete
It does not shown directory list!
For 'pub' subdirectory I get the same result.
But when login as registered user (e.g 'vlad') 'ls' works
and shows '/home/vlad' directory list as it should to do!
What should I do to let anonymous ftp-users see directory lists?
Any suggestions please.
Sorry by my English.
Vladislav, Moscow.
From
[email protected] Thu Oct 23 11:57:21 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA30063;
Thu, 23 Oct 1997 11:50:32 -0500 (CDT)
Received: from finwe.jrnl.com (FINWE.JRNL.COM [199.244.139.200])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA01151
for <
[email protected]>; Thu, 23 Oct 1997 11:44:05 -0500 (CDT)
Received: from jrnl.com ([152.163.66.131]) by finwe.jrnl.com
(post.office MTA v2.0 0813 ID# 0-29013) with ESMTP id AAA24808;
Thu, 23 Oct 1997 12:45:24 -0400
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 12:44:01 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From: Jenice Darner <
[email protected]>
To:
[email protected],
[email protected]
Subject: Re: Problems in directory list transfer (wu-ftpd-2.4.2-beta-12)
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: thorn
X-Mailer: Mozilla 4.03 [en] (X11; I; IRIX 6.2 IP22)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Vlad S. wrote:
>
> Hi,
> I have a Linux based system (RedHat Linux 4.2).
> I installed wu-ftpd-2.4.2b12-6.rpm and made
> '/home/ftp' directory (according to record in /etc/passwd for ftp user)
> I created there 'pub' subdirectory and put there some files.
> (rights for all directories are 755)
> When I connect to ftp on this computer from some other system,
> everything goes fine until I type 'ls'. i.e, it allows me to login as
> 'anonymous',
> asks for the passwd and gives the ftp prompt. The real problem starts when
> I
> execute 'ls'. It shows only:
>
> 200 Port command successful
> 150 Opening ASCII mode data connection for /bin/ls
> 226 Transfer complete
>
> It does not shown directory list!
> For 'pub' subdirectory I get the same result.
> But when login as registered user (e.g 'vlad') 'ls' works
> and shows '/home/vlad' directory list as it should to do!
In a chrooted environment:
Check that the ~ftp/bin/ls has exec permitions by all users, if it does,
try copying over the 'ls' from /usr/bin/ls and test it, if that doesn't
work, try /sbin/ls and test it.
If you aren't in a chrooted environment:
Make sure that /bin/ls (or where ever ftp is using ls from) is
executable by all.
If you don't know which 'ls' is being used by ftp, do a 'whereis ls',
the first 'ls' in your path is the one called by ftp. Make sure that
'ls' is executable by all users (chmod 711 ls).
Denise
From
[email protected] Thu Oct 23 12:29:20 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA30948;
Thu, 23 Oct 1997 12:22:30 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA08970
for <
[email protected]>; Thu, 23 Oct 1997 12:18:50 -0500 (CDT)
Received: from egate2.mnet.uswest.com (egate-ne1.mnet.uswest.com [151.117.138.135])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id LAA28919
for <
[email protected]>; Thu, 23 Oct 1997 11:18:20 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate2.mnet.uswest.com (8.7.1/8.7.1) with SMTP id MAA01421 for <
[email protected]>; Thu, 23 Oct 1997 12:18:17 -0500 (CDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id MAA08266 for <
[email protected]>; Thu, 23 Oct 1997 12:25:03 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA16702
for <
[email protected]>; Thu, 23 Oct 1997 11:13:27 -0600
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 11:16:56 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: Re: ftpwho headings???
References: <Pine.SOL.3.96.971022224751.6036A-100000@tecoma> <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I'm running on IRIX 5.3, and all I get in my ftpwho output is:
Service class real:
root 27202 184 0 03:33:39 ? 0:29 ftpd -a -t180 -T300
- 1 users ( 1 maximum)
As I read the source, it's supposed to replace the ftpd command line
with the useful info. Any suggestions as to why it isn't doing so?
-Brad
Oskar Pearson wrote:
>
> Hi
>
> > Here's a line from the output of ftpwho, split into muliple
> > lines:
> >
> > 1) ftp
> > 2) 3485
> > 3) 0.0
> > 4) 1.1
> > 5) 2292
> > 6) 1300
> > 7) ?
> > 8) S
> > 9) 20:51:42
> > 10) 0:00
> > 11) ftpd:
> > 12) 207.61.109.36:
> > 13) anonymous/mozilla@:
> > 14) RETR
> > 15) /pub/netscape/communicator/4.03/shipping/english/windows/windows3.1/base_install/cb16e403.exe
> >
> >
> > Would someone please supply the headers for the columns?
> All of this is actually just the output if the 'ps' command. Look
> at the source (specifically at the src/ftpcount.c file) and figure what
> command it's actually running. (whenever you see a '%d' it's referring
> to the process number)
>
> > I can guess at a few:
>
> > 14) it's a retry of a failed download
> Not as far as I know - it stands for 'retrieve' rathere than 'retry' IMO
>
> The actual ftp program sets everything after the 'ftpd: ' text. Everything
> before that is set by the ps command.
>
> Oskar
>
> --
> "Haven't slept at all. I don't see why people insist on sleeping. You feel
> so much better if you don't. And how can anyone want to lose a minute -
> a single minute of being alive?" -- Think Twice
From
[email protected] Thu Oct 23 14:11:08 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA09225;
Thu, 23 Oct 1997 14:04:05 -0500 (CDT)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA06278
for <
[email protected]>; Thu, 23 Oct 1997 13:57:32 -0500 (CDT)
Received: from egate2.mnet.uswest.com (egate-ne1.mnet.uswest.com [151.117.138.135])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id MAA16471
for <
[email protected]>; Thu, 23 Oct 1997 12:57:01 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate2.mnet.uswest.com (8.7.1/8.7.1) with SMTP id NAA13297 for <
[email protected]>; Thu, 23 Oct 1997 13:57:00 -0500 (CDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id OAA10050 for <
[email protected]>; Thu, 23 Oct 1997 14:03:44 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA26624
for <
[email protected]>; Thu, 23 Oct 1997 12:56:57 -0600
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 13:00:25 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: RATIOS
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Okay, folks. I've figured that the best way to maintain a ratio file is
to use fixed-length byte count fields. That makes it easy to modify the
file while maintaining field integrity.
But now there's another issue. What kind of byte counts should we
store? There's been a suggestion to store both the total uploaded
Kbytes as well as the total downloaded K, and calculate the user's
download credit dynamically (based on that user's ratio). The problem
with this method becomes apparent when you change that user's ratio.
For instance, if a user has a 1:10 ratio, and has uploaded 2 megs, and
downed 20 megs, his stats would be 2000/20000, and he wouldn't be
allowed to down anything more. Now let's suppose that since he's been a
good gumby that you increase his ratio to 1:20. Now he can download an
additional 20 megs without upping anything else.
The other method I can see is to store the credits in K that the user
has available. After a STOR, multiply the number of K the user ups by
his ratio and add it to the existing value in the file. That way you
always have an accurate credit record.
The first method allows you to track total usage, but I think that'd be
best done in another file or by a log analyer.
Comments?
-Brad Waite
From
[email protected] Thu Oct 23 20:49:32 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id UAA30438;
Thu, 23 Oct 1997 20:42:29 -0500 (CDT)
Received: from home.humboldt1.com (home.humboldt1.com [206.13.45.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id UAA07332
for <
[email protected]>; Thu, 23 Oct 1997 20:39:21 -0500 (CDT)
Received: from home.comhelp.com.humboldt1.com (comhelp.com [206.13.45.66])
by home.humboldt1.com (8.8.4/8.8.4) with SMTP
id SAA17282 for <
[email protected]>; Thu, 23 Oct 1997 18:38:33 -0700 (PDT)
Received: by home.comhelp.com.humboldt1.com (SMI-8.6/SMI-SVR4)
id SAA01969; Thu, 23 Oct 1997 18:38:34 -0700
Message-Id: <Pine.SOL.3.91.971023183615.1957A-100000@home>
Date: Thu, 23 Oct 1997 18:38:34 -0700 (PDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Mail Lists <
[email protected]>
To:
[email protected]
Subject: logging
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hello...
I'm wanting to turn on logging of all transfers, deletions, etc to my
FTP site. Before I did anything it was logging when people deleted
files, but nothing changed when I configured it to run with the -l flag.
Advice on getting other activities logged would be much appreciated.
thanks.
From
[email protected] Thu Oct 23 21:38:57 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA10384;
Thu, 23 Oct 1997 21:32:13 -0500 (CDT)
Received: from oblivion.gt.ed.net (
[email protected] [128.61.51.109])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA15637
for <
[email protected]>; Thu, 23 Oct 1997 21:26:21 -0500 (CDT)
Received: from localhost (naushad@localhost)
by oblivion.gt.ed.net (8.8.5/8.8.5) with SMTP id WAA30796
for <
[email protected]>; Thu, 23 Oct 1997 22:31:38 -0400
Message-Id: <
[email protected]>
Date: Thu, 23 Oct 1997 22:31:37 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Naushad Ali <
[email protected]>
To:
[email protected]
Subject: limiting simultaneous connections
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I have seen this question asked several places, but I can't find the
answer: how do I limit the number of simultaneous connections from IP
addresses? As in, I only want to allow 1 login per IP. I do know how to
limit the total number of connections...
thanks ahead of time,
nick
A soul in tension thats learning to fly
Condition grounded but determined to try
Can't keep my eyes from the-circling-skies
Tounge-tied & twisted just an earth-bound misfit,I
-Pink Floyd
Powered by Coca Cola...
From
[email protected] Fri Oct 24 01:15:16 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id BAA04386;
Fri, 24 Oct 1997 01:08:39 -0500 (CDT)
Received: from wunet.wustl.edu (wunet.wustl.edu [128.252.120.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id BAA21962
for <
[email protected]>; Fri, 24 Oct 1997 01:05:09 -0500 (CDT)
Received: from bogis01.bogw.de by wunet.wustl.edu (PMDF V4.3-10 #20062)
id <
[email protected]>; Fri, 24 Oct 1997 00:41:55 -0500 (CDT)
Received: from huette ([195.30.110.30])
by bogis01.bogw.de (Netscape Mail Server v2.0) with ESMTP id AAA3948 for
<
[email protected]>; Fri, 24 Oct 1997 08:04:37 +0200
Message-Id: <
[email protected]>
Date: Fri, 24 Oct 1997 08:04:34 +0100
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Dirk Huettemann)
To:
[email protected]
Subject: Subscribe wu-ftp
MIME-version: 1.0
Content-type: text/plain; charset=us-ascii
Content-transfer-encoding: 7bit
X-Mailer: Mozilla 4.01 [de] (WinNT; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
From
[email protected] Fri Oct 24 02:03:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id BAA07378;
Fri, 24 Oct 1997 01:57:32 -0500 (CDT)
Received: from goldnet.ru (root@[195.34.13.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id BAA32504
for <
[email protected]>; Fri, 24 Oct 1997 01:51:55 -0500 (CDT)
Received: from master (ppp1-1.dialnet.ru [195.34.15.1])
by goldnet.ru (8.8.5/8.8.5) with ESMTP id KAA29818
for <
[email protected]>; Fri, 24 Oct 1997 10:49:17 +0300 (MSK)
Message-Id: <
[email protected]>
Date: Fri, 24 Oct 1997 10:36:50 +0300
Reply-To:
[email protected]
Sender:
[email protected]
From: "Vlad S." <
[email protected]>
To: "wu-ftpd FAQ" <
[email protected]>
Subject: ? Problems in directory list transfer 2
MIME-Version: 1.0
Content-Type: text/plain; charset=KOI8-R
Content-Transfer-Encoding: 7bit
X-MSMail-Priority: Normal
X-Priority: 3
X-Mailer: Microsoft Internet Mail 4.70.1155
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
I wrote in previous message:
> I have a Linux based system (RedHat Linux 4.2).
> I installed wu-ftpd-2.4.2b12-6.rpm and made
> '/home/ftp' directory (according to record in /etc/passwd for ftp user)
> I created there 'pub' subdirectory and put there some files.
> (rights for all directories are 755)
> When I connect to ftp on this computer from some other system,
> everything goes fine until I type 'ls'. i.e, it allows me to login as
> 'anonymous',
> asks for the passwd and gives the ftp prompt. The real problem starts
when
> I execute 'ls'. It shows only:
>
> 200 Port command successful
> 150 Opening ASCII mode data connection for /bin/ls
> 226 Transfer complete
>
> It does not shown directory list!
> For 'pub' subdirectory I get the same result.
> But when I login as a registered user (e.g 'vlad') 'ls' works
> and shows '/home/vlad' directory list as it should to do!
Denise recommended me to do following things:
"In a chrooted environment:
Check that the ~ftp/bin/ls has exec permitions by all users, if it does,
try copying over the 'ls' from /usr/bin/ls and test it, if that doesn't
work, try /sbin/ls and test it.
If you aren't in a chrooted environment:
Make sure that /bin/ls (or where ever ftp is using ls from) is
executable by all.
If you don't know which 'ls' is being used by ftp, do a 'whereis ls',
the first 'ls' in your path is the one called by ftp. Make sure that
'ls' is executable by all users (chmod 711 ls)."
---
I did all these things (and I set all possible rights for all users),
but I still have this problem - 'anonymous' ftp-users
do not get directory list having entered 'ls' command.
(I tried put in ~/ftp/bin ls-emulator command which just write
a line "Hi!" in some file. This file didn't appear after ftp session)
Any suggestions, please.
Vladislav
From
[email protected] Fri Oct 24 08:13:19 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA05389;
Fri, 24 Oct 1997 08:06:38 -0500 (CDT)
Received: from att.com (cagw1.att.com [192.128.52.89])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA26630
for <
[email protected]>; Fri, 24 Oct 1997 08:03:31 -0500 (CDT)
Received: by cagw1.att.com; Fri Oct 24 08:58 EDT 1997
Received: from attrh11.attrh.att.com (attrh11.attrh.att.com [135.38.199.67])
by caig1.att.att.com (AT&T/GW-1.0) with ESMTP id IAA03208
for <
[email protected]>; Fri, 24 Oct 1997 08:54:45 -0400 (EDT)
Received: from zethar.angels.att.com by attrh11.attrh.att.com (8.7.3/EMS-1.1 SunOS)
id JAA22519 for <
[email protected]>; Fri, 24 Oct 1997 09:08:33 -0400 (EDT)
Received: from nasrudin.angels.att.com by zethar.angels.att.com (SMI-8.6/SMI-SVR4)
id JAA15914; Fri, 24 Oct 1997 09:02:42 -0400
Received: by nasrudin.angels.att.com (SMI-8.6/SMI-SVR4)
id JAA26911; Fri, 24 Oct 1997 09:02:40 -0400
Message-Id: <
[email protected]>
Date: Fri, 24 Oct 1997 09:02:40 -0400
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Dan Transue)
To:
[email protected]
Subject: wu-ftpd-2.4 and last
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Greetings,
It seems that the daemon does not log ftp entries in a way that the last
command likes. I have written a program to dump out the wtmp entries and
can see that wu-ftpd is writing the entries.
Has anyone modified the src appropriately for use on a Solaris 2.5.1 system?
I could use the mods if someone has them.
Please reply directly as I am not on the list.
Thanks!
-dan
--
=============================================================================
Dan Transue Phone: (908) 457-2935
AT&T - CCS Marketing Transaction Sys FAX: (908) 457-4440
30 Knightsbridge Rd, Room 33C42 EMAIL:
[email protected]
Piscataway, NJ 08854
=============================================================================
From
[email protected] Fri Oct 24 09:44:27 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA01095;
Fri, 24 Oct 1997 09:35:09 -0500 (CDT)
Received: from loginmail.FH-Reutlingen.DE (loginmail.fh-reutlingen.de [134.103.32.22])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA05133
for <
[email protected]>; Fri, 24 Oct 1997 09:33:54 -0500 (CDT)
Received: from lupo by loginmail.FH-Reutlingen.DE with SMTP id AA08089
(5.67b8/IDA-1.5 for <
[email protected]>); Fri, 24 Oct 1997 16:31:38 +0200
Message-Id: <
[email protected]>
Date: Fri, 24 Oct 1997 16:33:51 +0000
Reply-To:
[email protected]
Sender:
[email protected]
From: "Uwe Poliak" <
[email protected]>
To:
[email protected]
Subject: URGENT: Authentication problem using Solaris 2.5 and NIS+
X-Mailer: Pegasus Mail for Win32 (v2.54)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi everyone out there,
we use wu-ftpd-2.4.2-academ[BETA-15](1) on our ftp-server. The OS
under which the server is running is Solaris 2.5 without any patches.
We use NIS+.
The NIS+-server and replica are both patched with the latest
packages. The NIS+-server/replica are different to the ftp server.
All server run Solaris 2.5
Now, when I reboot the ftp-server, users cannot log in to the ftp
server. Their access with their real username and password is denied
with a login incorrect message.
When a users first connects to the ftp-server via telnet and
authenticates himself with his username and password, the telnet
login works.
Let me say, that the passwords are given in the CORRECT way at each
try!
After this telnet connection, the user can log in to the ftp server
with his username and password, until the next time the ftp server
is rebooted.
Does anyone know about an incompatibility between the authentication
mechanism of wu-ftpd (beta-15) and NIS+ under SOlaris 2.5?
If yes, is there a workaround to solve this problem?
Is there a possibility to replace wu-ftpd's authentication mechanism
to work with Sol2.5 and NIS+?
Thanks in advance,
Uwe Poliak
Computing Centre
Fachhochschule Reutlingen
Uwe Poliak
---
PGP public key gegen Mail mit Betreff "!Send Public Key!"
oder von
http://www.fh-reutlingen.de/~poliak/infos/uwe.asc
From
[email protected] Fri Oct 24 09:54:15 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA01371;
Fri, 24 Oct 1997 09:46:46 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA15063
for <
[email protected]>; Fri, 24 Oct 1997 09:43:36 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA02008;
Fri, 24 Oct 1997 09:43:35 -0500
Message-Id: <
[email protected]>
Date: Fri, 24 Oct 1997 09:43:34 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Dan Transue <
[email protected]>
Cc:
[email protected]
Subject: Re: wu-ftpd-2.4 and last
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
If you are running the old 2.4 you should go to the latest beta -- many
bugs and security holes fixed. Can't help on the log stuff.
-- Michael
On Fri, 24 Oct 1997, Dan Transue wrote:
> It seems that the daemon does not log ftp entries in a way that the last
> command likes. I have written a program to dump out the wtmp entries and
> can see that wu-ftpd is writing the entries.
This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to
[email protected]
with a subject line: send faq
guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "
[email protected]"
(immediate autoresponder; subject does not matter)
wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
There are additional security references in the above docs.
From
[email protected] Fri Oct 24 10:20:00 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA13051;
Fri, 24 Oct 1997 10:12:10 -0500 (CDT)
Received: from ns.tpesp.com (
[email protected] [195.99.192.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA31028
for <
[email protected]>; Fri, 24 Oct 1997 10:05:27 -0500 (CDT)
Received: from instalacion (juanen.tpesp.com [195.99.192.11]) by ns.tpesp.com (8.8.7/8.7.3) with SMTP id RAA00277 for <
[email protected]>; Fri, 24 Oct 1997 17:07:38 +0200
Message-Id: <
[email protected]>
Date: Fri, 24 Oct 1997 16:58:05 +0200
Reply-To:
[email protected]
Sender:
[email protected]
From: Juan Enrique Gomez <
[email protected]>
To:
[email protected]
Subject: Delete permisions
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Sender:
[email protected]
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32)
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id KAA04519
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi!
I have yet solved my problem with the chroot dirs, but now a new problem
appears. I need that the users which logs-in in the ftp be able to delete
files, i have tried to change all the possible permisions. user read and
write the rest only read, wiht +x every combination possible. Please any help?
Thanks.
[email protected]
-----------------------------------------------
Juan Enrique G�mez
Departamento de Inform�tica
Tecnipublicaciones Espa�a -
http://www.tpesp.es
[email protected]
-----------------------------------------------
From
[email protected] Fri Oct 24 10:31:06 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA07504;
Fri, 24 Oct 1997 10:24:29 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA04588
for <
[email protected]>; Fri, 24 Oct 1997 10:20:35 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id KAA03036;
Fri, 24 Oct 1997 10:20:33 -0500
Message-Id: <
[email protected]>
Date: Fri, 24 Oct 1997 10:20:33 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Juan Enrique Gomez <
[email protected]>
Cc:
[email protected]
Subject: Re: Delete permisions
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Look at permissions in /etc/ftpaccess?
-- Michael
On Fri, 24 Oct 1997, Juan Enrique Gomez wrote:
> I have yet solved my problem with the chroot dirs, but now a new problem
> appears. I need that the users which logs-in in the ftp be able to delete
> files, i have tried to change all the possible permisions. user read and
> write the rest only read, wiht +x every combination possible. Please any help?
From
[email protected] Fri Oct 24 14:13:49 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA09104;
Fri, 24 Oct 1997 14:05:37 -0500 (CDT)
Received: from uswgco2.uswc.uswest.com (uswgco2.uswest.com [206.196.133.74])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA20904
for <
[email protected]>; Fri, 24 Oct 1997 14:02:44 -0500 (CDT)
Received: from egate2.mnet.uswest.com (egate-ne1.mnet.uswest.com [151.117.138.135])
by uswgco2.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id NAA10172
for <
[email protected]>; Fri, 24 Oct 1997 13:02:13 -0600 (MDT)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate2.mnet.uswest.com (8.7.1/8.7.1) with SMTP id NAA06095 for <
[email protected]>; Fri, 24 Oct 1997 13:58:52 -0500 (CDT)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id OAA00193 for <
[email protected]>; Fri, 24 Oct 1997 14:05:39 -0500
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA8571
for <
[email protected]>; Fri, 24 Oct 1997 12:58:50 -0600
Message-Id: <
[email protected]>
Date: Fri, 24 Oct 1997 13:02:17 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: RFC: User Ratios
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi all. It's me again. With yet another question on user ratios.
I've implemented it so that after an ls, get or put the user receives a
report of his current dl credit. However, that credit figure is based
off of the value read from the creditfile at the beginning of the
session plus any adds or subs from the current session. If a user were
to log in twice, they'd get the same value. I tried getting the value
from the file for every transaction, but then there's a lot of I/O even
for just a simple "ls".
The solution I came up with is to only do a verify when the user tries
to RETR a file, and when they upload for credit. When the verify is
called, it sets the global credit value, so everything will report
correctly after that. This seems to work relatively well. However, if
a user has multiple sessions open, the report after a ls will probably
show an incorrect value.
I think the latter solution works well, as most people realize bandwidth
is bandwidth and there not much of a reason to open multiple sessions.
Leeches will be disappointed, but that's fine by me.
Comments? Even if you don't care about user ratios, I'd appreciate some
feedback. I know a lot of people lurk on here, and I figure that I can
make this little part of the program better by taking advantage of our
combined brainpower.
Thanks,
Brad
From
[email protected] Fri Oct 24 18:04:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA16164;
Fri, 24 Oct 1997 17:58:02 -0500 (CDT)
Received: from wunet.wustl.edu (wunet.wustl.edu [128.252.120.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA09746
for <
[email protected]>; Fri, 24 Oct 1997 17:55:20 -0500 (CDT)
Received: from nfs1.jvnc.net by wunet.wustl.edu (PMDF V4.3-10 #20062)
id <
[email protected]>; Fri, 24 Oct 1997 17:32:02 -0500 (CDT)
Received: (from vikas@localhost) by nfs1.jvnc.net (8.8.5/8.8.5)
id SAA10401 for
[email protected]; Fri, 24 Oct 1997 18:55:16 -0400 (EDT)
Message-Id: <
[email protected]>
Date: Fri, 24 Oct 1997 18:55:16 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Vikas Aggarwal <
[email protected]>
To:
[email protected]
Subject: virtual FTP servers
Content-transfer-encoding: 7BIT
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I wanted to setup multiple anonymous FTP sites on my Unix machine.
Such that if a user does an 'ftp abc.dom' then they get to a
different anonymous FTP tree, and if they do a 'ftp xyz.dom' they
get to a different anonymous FTP tree.
Is this possible with the current wu-ftpd daemon ? I guess I will have
to use virtual interfaces on my machine...
-vikas
From
[email protected] Fri Oct 24 23:04:07 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id WAA31649;
Fri, 24 Oct 1997 22:55:47 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id WAA10760
for <
[email protected]>; Fri, 24 Oct 1997 22:51:12 -0500 (CDT)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id WAA19366;
Fri, 24 Oct 1997 22:51:20 -0500
Message-Id: <
[email protected]>
Date: Fri, 24 Oct 1997 22:51:20 -0500 (CDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Vikas Aggarwal <
[email protected]>
Cc:
[email protected]
Subject: Re: virtual FTP servers
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
The document is in the root directory of the beta distribution below.
-- Michael
On Fri, 24 Oct 1997, Vikas Aggarwal wrote:
> I wanted to setup multiple anonymous FTP sites on my Unix machine.
> Such that if a user does an 'ftp abc.dom' then they get to a
> different anonymous FTP tree, and if they do a 'ftp xyz.dom' they
> get to a different anonymous FTP tree.
This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to
[email protected]
with a subject line: send faq
guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "
[email protected]"
(immediate autoresponder; subject does not matter)
wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
There are additional security references in the above docs.
From
[email protected] Sat Oct 25 13:37:44 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA17245;
Sat, 25 Oct 1997 13:31:36 -0500 (CDT)
Received: from sod.off.net (
[email protected] [207.54.131.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA19359
for <
[email protected]>; Sat, 25 Oct 1997 13:22:24 -0500 (CDT)
Received: from localhost (pschwan@localhost) by sod.off.net (8.8.5/8.6.9) with SMTP id OAA22283 for <
[email protected]>; Sat, 25 Oct 1997 14:20:05 -0400
Message-Id: <
[email protected]>
Date: Sat, 25 Oct 1997 14:20:04 -0400 (EDT)
Reply-To:
[email protected]
Sender:
[email protected]
From: Phil Schwan <
[email protected]>
To: wu-ftpd mailing list <
[email protected]>
Subject: xferstats version 1.03
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender:
[email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I've released xferstats version 1.03--there's only a few changes, namely:
* check to make sure the xferlog file actually exists
thanks to: Emil Isberg <
[email protected]>
* added a small Solaris compatibility flag
thanks to: Emil Isberg <
[email protected]>
* added INSTALL file and man page, modified the Makefile
ftp://sod.off.net/pub/xferstats-1.03.tar.gz
Enjoy!
Phil
--------------------------------------------------------------------------
'The ultimate seal on any software product is not any sort of kite mark or
standards conformance certificate, it's that label that says, "Destruction
tested by Alan Cox.... Survived."' -- Clive Dolphin (3Com PDD)
From
[email protected] Mon Oct 27 01:43:54 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id BAA16824;
Mon, 27 Oct 1997 01:30:28 -0600 (CST)
Received: from public.shenzhen.cngb.com ([203.93.104.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id BAA24825
for <
[email protected]>; Mon, 27 Oct 1997 01:27:09 -0600 (CST)
Received: from localhost (wzy@localhost)
by public.shenzhen.cngb.com (8.8.5/8.8.5) with SMTP id PAA06604;
Mon, 27 Oct 1997 15:24:52 +0800 (CST)
Message-Id: <Pine.SOL.3.96.971027151636.6583A-100000@public>
Date: Mon, 27 Oct 1997 15:24:52 +0800 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected]
Cc:
[email protected],
[email protected]
Subject: Virtual Feature of wu-ftpd-2.4.2-beta15
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Dear Sir:
Sorry to bore you.
I get a copy of wu-ftpd-2.4.2-beta-15 and install it in my Linux system, I
found a funny thing. when I access the virtual host of mine, I can login
as anonymous and real user. If I use real user, I can see the file in the
user's home directory with 'ls' or 'dir'. But if I use anonymous, I cant
see anything with 'ls' or 'dir'. I can sure I have login it and I can
download and send the files in the '/' and subdirectory of the virtual.
What have happened? Can you give me some help?
My system is Slackware3.3 with kernel 2.1.59.
Regards.
From
[email protected] Mon Oct 27 09:17:14 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA09132;
Mon, 27 Oct 1997 09:06:58 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA29561
for <
[email protected]>; Mon, 27 Oct 1997 09:04:56 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA03688;
Mon, 27 Oct 1997 09:04:39 -0600
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 09:04:39 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: Virtual Feature of wu-ftpd-2.4.2-beta15
In-Reply-To: <Pine.SOL.3.96.971027151636.6583A-100000@public>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Mon, 27 Oct 1997
[email protected] wrote:
> I get a copy of wu-ftpd-2.4.2-beta-15 and install it in my Linux system, I
> found a funny thing. when I access the virtual host of mine, I can login
> as anonymous and real user. If I use real user, I can see the file in the
> user's home directory with 'ls' or 'dir'. But if I use anonymous, I cant
> see anything with 'ls' or 'dir'. I can sure I have login it and I can
> download and send the files in the '/' and subdirectory of the virtual.
> What have happened? Can you give me some help?
The guest howto, FAQ, and list archives have answers to your questions.
This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to
[email protected]
with a subject line: send faq
guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "
[email protected]"
(immediate autoresponder; subject does not matter)
wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
There are additional security references in the above docs.
From
[email protected] Mon Oct 27 10:30:57 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA01962;
Mon, 27 Oct 1997 10:18:53 -0600 (CST)
Received: from doctor.nl2k.ab.ca (
[email protected] [204.209.81.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA02328
for <
[email protected]>; Mon, 27 Oct 1997 10:10:53 -0600 (CST)
Received: (from doctor@localhost)
by doctor.nl2k.ab.ca (8.8.8/8.8.5) id JAA15245;
Mon, 27 Oct 1997 09:11:13 -0700 (MST)
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 09:11:12 -0700 (MST)
Reply-To:
[email protected]
Sender:
[email protected]
From: The Doctor <
[email protected]>
To:
[email protected]
Cc:
[email protected],
[email protected]
Subject: Re: Virtual Feature of wu-ftpd-2.4.2-beta15
In-Reply-To: <
[email protected]> from "Michael Brennen" at Oct 27, 97 09:04:39 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Recently, I have had problems getting anonymous accces to ftp.academ.com.
Any problems?
>
> On Mon, 27 Oct 1997
[email protected] wrote:
>
> > I get a copy of wu-ftpd-2.4.2-beta-15 and install it in my Linux system, I
> > found a funny thing. when I access the virtual host of mine, I can login
> > as anonymous and real user. If I use real user, I can see the file in the
> > user's home directory with 'ls' or 'dir'. But if I use anonymous, I cant
> > see anything with 'ls' or 'dir'. I can sure I have login it and I can
> > download and send the files in the '/' and subdirectory of the virtual.
> > What have happened? Can you give me some help?
>
> The guest howto, FAQ, and list archives have answers to your questions.
>
> This is the location for the latest wu-ftpd. You can't see the
> directory contents, but get the file anyway. It's there.
>
>
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
>
> wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
> OR
> send mail to
[email protected]
> with a subject line: send faq
>
> guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
> OR
> send mail to "
[email protected]"
> (immediate autoresponder; subject does not matter)
>
> wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
> wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
>
> There are additional security references in the above docs.
>
>
>
From
[email protected] Mon Oct 27 10:43:11 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA17278;
Mon, 27 Oct 1997 10:35:06 -0600 (CST)
Received: from finwe.jrnl.com (FINWE.JRNL.COM [199.244.139.200])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA17340
for <
[email protected]>; Mon, 27 Oct 1997 10:28:52 -0600 (CST)
Received: from jrnl.com ([152.163.66.131]) by finwe.jrnl.com
(post.office MTA v2.0 0813 ID# 0-29013) with ESMTP id AAA15256
for <
[email protected]>; Mon, 27 Oct 1997 11:27:17 -0500
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 11:25:54 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Jenice Darner <
[email protected]>
To: WU-FTP discussion <
[email protected]>
Subject: log output
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: thorn
X-Mailer: Mozilla 4.03 [en] (X11; I; IRIX 6.2 IP22)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Two questions:
1- I have been looking for a way to generate *just* the ip addresses
from the reverse lookup that outputs into the xferlogs, if anyone knows
how this can be done, without slowing down the ftp service, please let
me know.
2- I have been trying to use the GWFstats interface for the log output,
but it the tar package didn't come with a great deal of compilation
documentation and I am snagged on the perl program. If anyone has
experience with this tool (creates graphical and text ouput of the
xferlogs in several formats), could I ask you a few questions?
Denise
From
[email protected] Mon Oct 27 10:49:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA17143;
Mon, 27 Oct 1997 10:41:24 -0600 (CST)
Received: from birch.palni.edu (birch.palni.edu [198.62.84.160])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA03109
for <
[email protected]>; Mon, 27 Oct 1997 10:37:33 -0600 (CST)
Received: by birch.palni.edu (SMI-8.6/25-eef)
id QAA13455; Mon, 27 Oct 1997 16:37:34 GMT
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 11:37:34 -0500 (EST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Tom Metzger <
[email protected]>
To:
[email protected]
Subject: New (?) INSTALL problem
Content-Type: text
X-Mailer: ELM [version 2.4 PL25]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hello,
I'm trying to upgrade to the 2.4.2 beta 15 of WU-FTP (my system:
Slackware Linux 3.0 running kernel 2.0.29) and I've run into a problem
during the " ./build lnx " portion that doesn't seem to be listed in the
FAQ or the README files.
During the beginning portion of the "build" when it's doing all the
"Making ftpd" compiles, it gives this error message:
gcc -O6 -fomit-frame-pointer -fno-strength-reduce -pipe -I.. -I../support -L../support -s -DDIRENT_ILLEGAL_ACCESS -o ftpd ftpd.o ftpcmd.o glob.o logwtmp.o popen.o vers.o access.o extensions.o realpath.o acl.o private.o authenticate.o conversions.o hostacc.o sigfix.o -lsupport
glob.o(.text+0x4b2): undefined reference to `dirfd'
make: *** [ftpd] Error 1
At that point, it proceeds with the "Making ftpcount, ftpshut and ckconfig"
sections and the final message before returning to the prompt is this:
Links to executables are in bin directory:
size: bin/ftpd: No such file or directory
text data bss dec hex filename
2856 2644 112 5612 15ec bin/ftpcount
3144 2301 112 5557 15b5 bin/ftpshut
2856 2644 112 5612 15ec bin/ftpwho
1144 1920 100 3164 c5c bin/ckconfig
Done
dragon:/home/local/src/wu-ftpd-2.4.2-beta-15#
Any ideas what's happening here or am I forgetting something?
--
Tom Metzger -> INCOLSA Unix System Administrator ->
http://www.palni.edu/~tom
Help Stop Internet Spam! --->
http://www.vix.com/spam/
Don't Spread That Hoax! -->
http://www.nonprofit.net/hoax/hoax.html
From
[email protected] Mon Oct 27 13:22:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA08544;
Mon, 27 Oct 1997 13:14:14 -0600 (CST)
Received: from postman.eglin.af.mil (postman.eglin.af.mil [129.61.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA13632
for <
[email protected]>; Mon, 27 Oct 1997 13:11:39 -0600 (CST)
Received: from mailhub1.eglin.af.mil (mailhub1.eglin.af.mil [129.61.200.103]) by postman.eglin.af.mil (8.8.5/8.6.9) with ESMTP id NAA06847 for <
[email protected]>; Mon, 27 Oct 1997 13:11:37 -0600 (CST)
Received: by mailhub1.eglin.af.mil with Internet Mail Service (5.0.1458.49)
id <VJWP25ZZ>; Mon, 27 Oct 1997 13:05:13 -0600
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 13:03:12 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: "Gray, Mark M. " <
[email protected]>
To: "'
[email protected]'" <
[email protected]>
Subject: "real" user password for wu-ftpd on Solaris 2.5.1
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1458.49)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I have the wu-ftpd version 2.4 compiler under gcc on a Solaris 2.5.1
system. When it comes to checking passwords, it works exactly like I
want it to for anonymous ftp users. However, when a real user, (one who
has a password entry in the for real no-kidding /etc/passwd and an entry
in the real no-kidding /etc/shadow file), logs in they get asked for a
password, (like you would expect), but upon entering their correct
password, they are denied access. On entering NO PASSWORD at all
(hitting the return key) they have the access that they are expecting to
have.
Any suggestions? Is this in a FAQ somewhere?
Thanks,
Mark M. Gray
From
[email protected] Mon Oct 27 13:35:11 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA05787;
Mon, 27 Oct 1997 13:27:04 -0600 (CST)
Received: from finwe.jrnl.com (FINWE.JRNL.COM [199.244.139.200])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA06345
for <
[email protected]>; Mon, 27 Oct 1997 13:22:38 -0600 (CST)
Received: from jrnl.com ([152.163.66.131]) by finwe.jrnl.com
(post.office MTA v2.0 0813 ID# 0-29013) with ESMTP id AAA16303;
Mon, 27 Oct 1997 14:23:59 -0500
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 14:22:36 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Jenice Darner <
[email protected]>
To:
[email protected], WU-FTP discussion <
[email protected]>
Subject: Re: "real" user password for wu-ftpd on Solaris 2.5.1
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: thorn
X-Mailer: Mozilla 4.03 [en] (X11; I; IRIX 6.2 IP22)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Gray, Mark M. wrote:
>
> I have the wu-ftpd version 2.4 compiler under gcc on a Solaris 2.5.1
> system. When it comes to checking passwords, it works exactly like I
> want it to for anonymous ftp users. However, when a real user, (one who
> has a password entry in the for real no-kidding /etc/passwd and an entry
> in the real no-kidding /etc/shadow file), logs in they get asked for a
> password, (like you would expect), but upon entering their correct
> password, they are denied access. On entering NO PASSWORD at all
> (hitting the return key) they have the access that they are expecting to
> have.
>
> Any suggestions? Is this in a FAQ somewhere?
>
> Thanks,
>
> Mark M. Gray
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
From
[email protected] Mon Oct 27 13:39:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA06999;
Mon, 27 Oct 1997 13:32:53 -0600 (CST)
Received: from styx.wsc.com (styx.wsc.com [198.4.124.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA07003
for <
[email protected]>; Mon, 27 Oct 1997 13:29:26 -0600 (CST)
Received: from hera.wscis.wsc.com (hera.wscis.wsc.com [198.4.125.3]) by styx.wsc.com (8.8.5/8.7.3) with ESMTP id OAA14918 for <
[email protected]>; Mon, 27 Oct 1997 14:29:24 -0500 (EST)
Received: from phorcys (phorcys [198.4.125.27]) by hera.wscis.wsc.com (8.6.8/8.6.6) with ESMTP id OAA24008 for <
[email protected]>; Mon, 27 Oct 1997 14:29:23 -0500
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 14:29:23 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Thomas Go <
[email protected]>
To: "
[email protected]" <
[email protected]>
Subject: Netscape and wu-ftp
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.01 [en] (WinNT; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
I am not sure whether this is a problem within Netscape or wu-ftp.
When I ftp via netscape to a wu-ftp server, the port would change from
21 to a high port number. I have even tried to specify the site to use
21 by placing a :21 at the end of the url request. Does any experience
this problem. Is it wu-ftp or netscape and how can I resolve this?
thanks,
Thomas
[email protected]
From
[email protected] Mon Oct 27 14:11:26 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA06967;
Mon, 27 Oct 1997 14:04:10 -0600 (CST)
Received: from postman.eglin.af.mil (postman.eglin.af.mil [129.61.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA10194
for <
[email protected]>; Mon, 27 Oct 1997 14:02:46 -0600 (CST)
Received: from mailhub1.eglin.af.mil (mailhub1.eglin.af.mil [129.61.200.103]) by postman.eglin.af.mil (8.8.5/8.6.9) with ESMTP id OAA10663 for <
[email protected]>; Mon, 27 Oct 1997 14:02:43 -0600 (CST)
Received: by mailhub1.eglin.af.mil with Internet Mail Service (5.0.1458.49)
id <VJWP26PP>; Mon, 27 Oct 1997 13:56:05 -0600
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 13:55:27 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: "Gray, Mark M. " <
[email protected]>
To: "'
[email protected]'" <
[email protected]>
Subject: "real" user passwords on Solaris 2.5.1 gcc 2.4 compiler
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1458.49)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I guess I should have mentioned that I already have the Shadow password
defines and things turned on in the ftpd compile. Is there a library I
need to install similar to the one for LINUX?
>
> I have the wu-ftpd version 2.4 compiler under gcc on a Solaris
2.5.1
> system. When it comes to checking passwords, it works exactly
like I
> want it to for anonymous ftp users. However, when a real
user, (one who
> has a password entry in the for real no-kidding /etc/passwd
and an entry
> in the real no-kidding /etc/shadow file), logs in they get
asked for a
> password, (like you would expect), but upon entering their
correct
> password, they are denied access. On entering NO PASSWORD at
all
> (hitting the return key) they have the access that they are
expecting to
> have.
>
> Any suggestions? Is this in a FAQ somewhere?
>
> Thanks,
>
> Mark M. Gray
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
From
[email protected] Mon Oct 27 14:30:20 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA29111;
Mon, 27 Oct 1997 14:22:56 -0600 (CST)
Received: from postman.eglin.af.mil (postman.eglin.af.mil [129.61.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA06121
for <
[email protected]>; Mon, 27 Oct 1997 14:18:28 -0600 (CST)
Received: from mailhub1.eglin.af.mil (mailhub1.eglin.af.mil [129.61.200.103]) by postman.eglin.af.mil (8.8.5/8.6.9) with ESMTP id OAA11787 for <
[email protected]>; Mon, 27 Oct 1997 14:18:26 -0600 (CST)
Received: by mailhub1.eglin.af.mil with Internet Mail Service (5.0.1458.49)
id <VJWP26WL>; Mon, 27 Oct 1997 14:12:02 -0600
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 14:15:56 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From: "Gray, Mark M. " <
[email protected]>
To: "'
[email protected]'" <
[email protected]>
Subject: index listing from web browsers when connecting to ftp site
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1458.49)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I need to know how I set up the directories so that when a user connects
to my ftp site from a web browser I.E.: MS internet explorer, netscape
navigator, mosaic, etc. they get a directory listing and are able to
click on a directory that is in the listing and cd to that directory.
Is this something that needs to be set up using the cgi-bin features of
webservers?
Or is there something else I need to do?
Thanks,
Mark M. Gray
From
[email protected] Mon Oct 27 14:42:30 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA13515;
Mon, 27 Oct 1997 14:35:14 -0600 (CST)
Received: from finwe.jrnl.com (FINWE.JRNL.COM [199.244.139.200])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA13987
for <
[email protected]>; Mon, 27 Oct 1997 14:33:27 -0600 (CST)
Received: from jrnl.com ([152.163.66.131]) by finwe.jrnl.com
(post.office MTA v2.0 0813 ID# 0-29013) with ESMTP id AAA16706;
Mon, 27 Oct 1997 15:34:48 -0500
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 15:33:24 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Jenice Darner <
[email protected]>
To:
[email protected], WU-FTP discussion <
[email protected]>
Subject: Re: index listing from web browsers when connecting to ftp site
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: thorn
X-Mailer: Mozilla 4.03 [en] (X11; I; IRIX 6.2 IP22)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Gray, Mark M. wrote:
>
> I need to know how I set up the directories so that when a user connects
> to my ftp site from a web browser I.E.: MS internet explorer, netscape
> navigator, mosaic, etc. they get a directory listing and are able to
> click on a directory that is in the listing and cd to that directory.
> Is this something that needs to be set up using the cgi-bin features of
> webservers?
> Or is there something else I need to do?
>
> Thanks,
>
> Mark M. Gray
All the questions that you are asking are covered in the O'Rielly text
"Managing Internet Information Servers"...It's worth the $35, there are
about 100 pages dealing specifically with wu-ftp and different
configurations of wu-ftp.
From
[email protected] Mon Oct 27 14:49:02 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA13456;
Mon, 27 Oct 1997 14:41:28 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA01679
for <
[email protected]>; Mon, 27 Oct 1997 14:37:59 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id OAA12210;
Mon, 27 Oct 1997 14:37:55 -0600
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 14:37:55 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: "Gray, Mark M. " <
[email protected]>
Cc:
[email protected]
Subject: Re: "real" user password for wu-ftpd on Solaris 2.5.1
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Mon, 27 Oct 1997, Gray, Mark M. wrote:
> I have the wu-ftpd version 2.4 compiler under gcc on a Solaris 2.5.1
> system. When it comes to checking passwords, it works exactly like I
> want it to for anonymous ftp users. However, when a real user, (one who
> has a password entry in the for real no-kidding /etc/passwd and an entry
> in the real no-kidding /etc/shadow file), logs in they get asked for a
> password, (like you would expect), but upon entering their correct
> password, they are denied access. On entering NO PASSWORD at all
> (hitting the return key) they have the access that they are expecting to
> have.
First of all, upgrade to beta 15 for bug and security reasons. Then check
the distribution docs for shadow compile options (not the default). The
FAQ and other goodies are below.
-- Michael
This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to
[email protected]
with a subject line: send faq
guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "
[email protected]"
(immediate autoresponder; subject does not matter)
wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
There are additional security references in the above docs.
From
[email protected] Mon Oct 27 14:50:57 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA07397;
Mon, 27 Oct 1997 14:43:49 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA30293
for <
[email protected]>; Mon, 27 Oct 1997 14:39:57 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id OAA12254;
Mon, 27 Oct 1997 14:40:00 -0600
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 14:40:00 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Thomas Go <
[email protected]>
Cc:
[email protected]
Subject: Re: Netscape and wu-ftp
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
This is PASV, where NS opens a high port back to the ftp server.
-- Michael
On Mon, 27 Oct 1997, Thomas Go wrote:
> I am not sure whether this is a problem within Netscape or wu-ftp.
> When I ftp via netscape to a wu-ftp server, the port would change from
> 21 to a high port number. I have even tried to specify the site to use
> 21 by placing a :21 at the end of the url request. Does any experience
> this problem. Is it wu-ftp or netscape and how can I resolve this?
From
[email protected] Mon Oct 27 14:54:48 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA09296;
Mon, 27 Oct 1997 14:47:35 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA12236
for <
[email protected]>; Mon, 27 Oct 1997 14:44:20 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id OAA12402;
Mon, 27 Oct 1997 14:44:13 -0600
Message-Id: <
[email protected]>
Date: Mon, 27 Oct 1997 14:44:13 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: "Gray, Mark M. " <
[email protected]>
Cc:
[email protected]
Subject: Re: index listing from web browsers when connecting to ftp site
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Use the resources I just sent and get the external 'ls' working. This is
described in the guest howto.
-- Michael
On Mon, 27 Oct 1997, Gray, Mark M. wrote:
> I need to know how I set up the directories so that when a user connects
> to my ftp site from a web browser I.E.: MS internet explorer, netscape
> navigator, mosaic, etc. they get a directory listing and are able to
> click on a directory that is in the listing and cd to that directory.
From
[email protected] Tue Oct 28 04:14:03 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id EAA29941;
Tue, 28 Oct 1997 04:06:21 -0600 (CST)
Received: from maltms1.data.telia.se (maltms1.data.telia.se [131.116.41.116])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id DAA01774
for <
[email protected]>; Tue, 28 Oct 1997 03:58:53 -0600 (CST)
Received: from by maltms1.data.telia.se with SMTP
(1.37.109.14/16.2) id AA218712403; Tue, 28 Oct 1997 10:53:23 +0100
Message-Id: <H00003ca02924d15@MHS>
Date: Tue, 28 Oct 97 10:53:26 +0100
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected]
Subject: A special case of guest access
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; name="Meddelandetext"
Content-Transfer-Encoding: 7bit
X-Openmail-Hops: 2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi all!
I have a guest account up and running with no problems (thanks all!)
using wu-ftpd beta 15 on redhat linux.
Now on to the next project...
I want a group of users to use the same directory tree all being guest
users and I want every created directory/file to be owned by the creator
as user and a group that all these users belong to having the same
rights as the creating user, i.e rwx rights for the group as well. Why?
Because I want to be able to see who uploaded/created any file/directory
but all users must be able to create/delete/move/etc files and
directories...
How do I do this? I ask you this because I noticed that with my first
guest account the group rights are only r-x and I have not found any way
of setting the rights on the group level so to speak...
I hope you understand my "explanation/question" (I hardly do myself :-)
). I would very much appreciate any help on this matter and (as usual)
it is a bit urgent...
Thanks!
/Per
From
[email protected] Tue Oct 28 08:27:27 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA24655;
Tue, 28 Oct 1997 08:18:12 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA28424
for <
[email protected]>; Tue, 28 Oct 1997 08:10:51 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id IAA06110;
Tue, 28 Oct 1997 08:10:47 -0600
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 08:10:47 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: A special case of guest access
In-Reply-To: <H00003ca02924d15@MHS>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Do *not* put an 'upload' directive in /etc/ftpaccess for those
directories. Create a login account for each user, put them all in the
same group. Set the CMASK in ~/src/ftpd.c to 002; uploaded files will be
owned buy the individual account, with 664 perms on the files.
-- Michael
On Tue, 28 Oct 1997
[email protected] wrote:
> I want a group of users to use the same directory tree all being guest
> users and I want every created directory/file to be owned by the creator
> as user and a group that all these users belong to having the same
> rights as the creating user, i.e rwx rights for the group as well. Why?
> Because I want to be able to see who uploaded/created any file/directory
> but all users must be able to create/delete/move/etc files and
> directories...
>
> How do I do this? I ask you this because I noticed that with my first
> guest account the group rights are only r-x and I have not found any way
> of setting the rights on the group level so to speak...
From
[email protected] Tue Oct 28 08:56:49 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA18646;
Tue, 28 Oct 1997 08:48:20 -0600 (CST)
Received: from malmo.trab.se (malmo.trab.se [131.115.48.10])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA16625
for <
[email protected]>; Tue, 28 Oct 1997 08:44:18 -0600 (CST)
Received: from linkoping.trab.se (helios.linkoping.trab.se [131.115.46.4]) by malmo.trab.se (8.7.5/TRAB-primary-2) with ESMTP id PAA12332 for <
[email protected]>; Tue, 28 Oct 1997 15:43:43 +0100 (MET)
Received: from helios.linkoping.trab.se (helios.linkoping.trab.se [131.115.46.4]) by linkoping.trab.se (8.8.3/TRAB-secondary-1) with SMTP id PAA06611 for <
[email protected]>; Tue, 28 Oct 1997 15:43:43 +0100 (MET)
Message-Id: <Roam.SIMC.2.0.6.878049823.800.ath@helios>
Date: Tue, 28 Oct 1997 15:43:43 +0100 (MET)
Reply-To: Anders Thulin <
[email protected]>
Sender:
[email protected]
From: Anders Thulin <
[email protected]>
To:
[email protected]
Subject: Re: A special case of guest access
In-Reply-To: "Your message with ID" <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; CHARSET=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Michael Brennen writes:
> Do *not* put an 'upload' directive in /etc/ftpaccess for those
> directories. Create a login account for each user, put them all in the
> same group. Set the CMASK in ~/src/ftpd.c to 002; [...]
This is probably OK if *all* FTP-accounts share the same semantics as
regards group rights. But if the accounts mentioned are special that
way, and there are other accounts with other semantics, some
discrimination functionality must be implemented that sets umask()
according to the type of account.
There's a similar problem with disk quotas -- if a group of users
(with different FTP accounts, and thus UID's) should share a common
pool of disk space, associated with the group, the FTP server must somehow
switch over to the UID associated with that quota assignment, without
for that reason drop the login name for logging purposes.
(Assuming disk quota is based on UID rather than GID, of course.)
From
[email protected] Tue Oct 28 09:08:54 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA25669;
Tue, 28 Oct 1997 09:01:09 -0600 (CST)
Received: from maltms1.data.telia.se (maltms1.data.telia.se [131.116.41.116])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA20305
for <
[email protected]>; Tue, 28 Oct 1997 08:57:59 -0600 (CST)
Received: from by maltms1.data.telia.se with SMTP
(1.37.109.14/16.2) id AA093190349; Tue, 28 Oct 1997 15:52:29 +0100
Message-Id: <H00003ca0292e048@MHS>
Date: Tue, 28 Oct 97 15:52:40 +0100
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected]
Cc:
[email protected]
Subject: Re: A special case of guest access
In-Reply-To: <Roam.SIMC.2.0.6.878049823.800.ath@helios>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; name="Meddelandetext"
Content-Transfer-Encoding: 7bit
X-Openmail-Hops: 2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> Michael Brennen writes:
>
> > Do *not* put an 'upload' directive in /etc/ftpaccess for those
> > directories. Create a login account for each user, put them all in
the
> > same group. Set the CMASK in ~/src/ftpd.c to 002; [...]
>
> This is probably OK if *all* FTP-accounts share the same semantics
as
> regards group rights. But if the accounts mentioned are special that
> way, and there are other accounts with other semantics, some
> discrimination functionality must be implemented that sets umask()
> according to the type of account.
>
> There's a similar problem with disk quotas -- if a group of users
> (with different FTP accounts, and thus UID's) should share a common
> pool of disk space, associated with the group, the FTP server must
somehow
> switch over to the UID associated with that quota assignment, without
> for that reason drop the login name for logging purposes.
> (Assuming disk quota is based on UID rather than GID, of course.)
>
>
Do you mean that with this setup disk quotas based on group won't work?
If so, is there a solution?
/Per
From
[email protected] Tue Oct 28 09:15:27 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA28171;
Tue, 28 Oct 1997 09:08:02 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA28099
for <
[email protected]>; Tue, 28 Oct 1997 09:03:56 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA07727;
Tue, 28 Oct 1997 09:03:46 -0600
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 09:03:46 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Anders Thulin <
[email protected]>
Cc:
[email protected]
Subject: Re: A special case of guest access
In-Reply-To: <Roam.SIMC.2.0.6.878049823.800.ath@helios>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Tue, 28 Oct 1997, Anders Thulin wrote:
> Michael Brennen writes:
> > Do *not* put an 'upload' directive in /etc/ftpaccess for those
> > directories. Create a login account for each user, put them all in the
> > same group. Set the CMASK in ~/src/ftpd.c to 002; [...]
>
> This is probably OK if *all* FTP-accounts share the same semantics as
> regards group rights. But if the accounts mentioned are special that
> way, and there are other accounts with other semantics, some
> discrimination functionality must be implemented that sets umask()
> according to the type of account.
Yup; I wasn't addressing the total picture, just what he wanted to do. In
other cases one might be able to use upload directives in /etc/ftpaccess
to set specific ownership/permissions. wu-ftpd has its config limits, and
not all requirements may be able to be met at once. Understanding the
entire picture is necessary in any case.
-- Michael
From
[email protected] Tue Oct 28 09:35:08 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA09773;
Tue, 28 Oct 1997 09:27:34 -0600 (CST)
Received: from ns.cvzoom.net (ns.cvzoom.net [208.226.154.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA28713
for <
[email protected]>; Tue, 28 Oct 1997 09:24:14 -0600 (CST)
Received: from mover.cvzoom.net ([208.226.154.16])
by ns.cvzoom.net (8.8.7/8.8.7) with SMTP id KAA03599
for <
[email protected]>; Tue, 28 Oct 1997 10:23:23 -0500 (EST)
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 10:27:11 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: "michael J Farina" <
[email protected]>
To: <
[email protected]>
Subject: Re: A special case of guest access
MIME-Version: 1.0
Content-Type: text/plain
Content-Transfer-Encoding: 8bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 4.71.1712.3
X-MimeOLE: Produced By Microsoft MimeOLE V4.71.1712.3
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id JAA29307
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
This May be a stupid question but is their a way to chroot user dir's. If they are in different groups well al in separate groups!
From
[email protected] Tue Oct 28 09:44:32 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA20869;
Tue, 28 Oct 1997 09:33:38 -0600 (CST)
Received: from uswgco2.uswc.uswest.com (uswgco2.uswest.com [206.196.133.74])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA27775
for <
[email protected]>; Tue, 28 Oct 1997 09:27:51 -0600 (CST)
Received: from egate2.mnet.uswest.com (egate-ne1.mnet.uswest.com [151.117.138.135])
by uswgco2.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id IAA26828
for <
[email protected]>; Tue, 28 Oct 1997 08:27:20 -0700 (MST)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate2.mnet.uswest.com (8.7.1/8.7.1) with SMTP id JAA20281 for <
[email protected]>; Tue, 28 Oct 1997 09:27:18 -0600 (CST)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id JAA16136 for <
[email protected]>; Tue, 28 Oct 1997 09:34:11 -0600
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA27288
for <
[email protected]>; Tue, 28 Oct 1997 08:27:16 -0700
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 08:30:47 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: [Fwd: Re: A special case of guest access]
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Anders Thulin wrote:
>
> Michael Brennen writes:
>
> > Do *not* put an 'upload' directive in /etc/ftpaccess for those
> > directories. Create a login account for each user, put them all in the
> > same group. Set the CMASK in ~/src/ftpd.c to 002; [...]
>
> This is probably OK if *all* FTP-accounts share the same semantics as
> regards group rights. But if the accounts mentioned are special that
> way, and there are other accounts with other semantics, some
> discrimination functionality must be implemented that sets umask()
> according to the type of account.
>
> There's a similar problem with disk quotas -- if a group of users
> (with different FTP accounts, and thus UID's) should share a common
> pool of disk space, associated with the group, the FTP server must somehow
> switch over to the UID associated with that quota assignment, without
> for that reason drop the login name for logging purposes.
> (Assuming disk quota is based on UID rather than GID, of course.)
I've been facing a similar problem. I'd like to have many guest
accounts that have the same access permissions (times, etc), and have 1
(or several) accounts that are guests (non-anonymous) as well, yet have
different access. Basically, this is a form of a restricted anonymous
user. By restricted, I mean that I can change the password/accesses and
limit who can get on, without limiting the other group of users. I can
also track now based on the uid of one of these restricted users their
statistics.
-Brad Waite
From
[email protected] Tue Oct 28 09:51:46 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id JAA25563;
Tue, 28 Oct 1997 09:36:08 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id JAA31685
for <
[email protected]>; Tue, 28 Oct 1997 09:29:41 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id JAA08337;
Tue, 28 Oct 1997 09:29:39 -0600
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 09:29:39 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: michael J Farina <
[email protected]>
Cc:
[email protected]
Subject: Re: A special case of guest access
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
The guest howto (below) describes the process in detail. Just put each
group on the guestgroup line in /etc/ftpaccess.
-- Michael
On Tue, 28 Oct 1997, michael J Farina wrote:
> This May be a stupid question but is their a way to chroot user dir's.
> If they are in different groups well al in separate groups!
This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to
[email protected]
with a subject line: send faq
guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "
[email protected]"
(immediate autoresponder; subject does not matter)
wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
There are additional security references in the above docs.
From
[email protected] Tue Oct 28 10:23:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA27476;
Tue, 28 Oct 1997 10:11:56 -0600 (CST)
Received: from ns.cvzoom.net ([208.226.154.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA32193
for <
[email protected]>; Tue, 28 Oct 1997 10:05:30 -0600 (CST)
Received: from mover.cvzoom.net ([208.226.154.16])
by ns.cvzoom.net (8.8.7/8.8.7) with SMTP id LAA03660
for <
[email protected]>; Tue, 28 Oct 1997 11:04:34 -0500 (EST)
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 11:08:23 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: "michael J Farina" <
[email protected]>
To: <
[email protected]>
Subject: Re: A special case of guest access
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 4.71.1712.3
X-MimeOLE: Produced By Microsoft MimeOLE V4.71.1712.3
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Do I really Need wu-ftpd-2.4.2-beta-15?
From
[email protected] Tue Oct 28 11:38:00 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA30604;
Tue, 28 Oct 1997 11:09:11 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA23846
for <
[email protected]>; Tue, 28 Oct 1997 11:03:34 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id LAA10777;
Tue, 28 Oct 1997 11:03:33 -0600
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 11:03:33 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: michael J Farina <
[email protected]>
Cc:
[email protected]
Subject: Re: A special case of guest access
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Depends on the release you have now and how much you care about bug and
security fixes.
-- Michael
On Tue, 28 Oct 1997, michael J Farina wrote:
> Do I really Need wu-ftpd-2.4.2-beta-15?
>
From
[email protected] Tue Oct 28 11:44:13 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA09184;
Tue, 28 Oct 1997 11:28:54 -0600 (CST)
Received: from spock.tinet.ie (spock.tinet.ie [159.134.237.8])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA10272
for <
[email protected]>; Tue, 28 Oct 1997 11:26:56 -0600 (CST)
Received: from itchy.tinet.ie (pc214.eng.tinet.ie [159.134.237.214])
by spock.tinet.ie (8.8.7/8.8.7) with ESMTP id RAA19947
for <
[email protected]>; Tue, 28 Oct 1997 17:25:56 GMT
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 17:26:06 +0000
Reply-To:
[email protected]
Sender:
[email protected]
From: Ger <
[email protected]>
To:
[email protected]
Subject: Ports for PASV mode
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.01 [en] (Win95; I)
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi,
is there a way to restrict the ports that are used for PASV mode
without impacting availability?
Ger.
From
[email protected] Tue Oct 28 11:54:56 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA04629;
Tue, 28 Oct 1997 11:46:11 -0600 (CST)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA00045
for <
[email protected]>; Tue, 28 Oct 1997 11:42:36 -0600 (CST)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id TAA04126;
Tue, 28 Oct 1997 19:40:51 GMT
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 19:40:51 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To:
[email protected]
Cc:
[email protected],
[email protected]
Subject: Re: A special case of guest access
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Well I have missed this thread a bit, and it might be that I'm a bit off
here, but, gentlemen, isn't this not >exactly< the situation I have
been facing and what is >exactly< resolved by the patch I have posted
here a while ago? Correct me if I'm wrong.
http://www.spin.ch/SPIN/tpo/homepage/linux/academ-patch.html
Cheers,
*
t
On Tue, 28 Oct 1997,
[email protected] wrote:
> I want a group of users to use the same directory tree all being guest
> users and I want every created directory/file to be owned by the creator
> as user and a group that all these users belong to having the same
> rights as the creating user, i.e rwx rights for the group as well. Why?
> Because I want to be able to see who uploaded/created any file/directory
> but all users must be able to create/delete/move/etc files and
> directories...
>
> How do I do this? I ask you this because I noticed that with my first
> guest account the group rights are only r-x and I have not found any way
> of setting the rights on the group level so to speak...
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
Tom: So far, der winter kommt, ich schaff mir glaub ich noch ein paar
Tom: Zyxel traffos an...
Roli: Aber genug davon nehmen. Wenn die Dinger kapput gehen werden sie
Roli: nicht mehr warm.
From
[email protected] Tue Oct 28 15:11:51 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA28097;
Tue, 28 Oct 1997 15:03:35 -0600 (CST)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA07952
for <
[email protected]>; Tue, 28 Oct 1997 14:59:04 -0600 (CST)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id WAA11359
for <
[email protected]>; Tue, 28 Oct 1997 22:57:45 GMT
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 22:57:44 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To:
[email protected]
Subject: Re: A special case of guest access
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Tue, 28 Oct 1997, T's Mailing Lists wrote:
> here, but, gentlemen, isn't this not >exactly< the situation I have
^^^^^^^^^
well this is really stupid, I meant the people discussing that
particualar problem, but of course that's for everybody. Sorry.
*
t
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
Tom: So far, der winter kommt, ich schaff mir glaub ich noch ein paar
Tom: Zyxel traffos an...
Roli: Aber genug davon nehmen. Wenn die Dinger kapput gehen werden sie
Roli: nicht mehr warm.
From
[email protected] Tue Oct 28 15:42:02 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA26658;
Tue, 28 Oct 1997 15:34:32 -0600 (CST)
Received: from mail1.bellglobal.com (mail1.bellglobal.com [204.101.251.200])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA02460
for <
[email protected]>; Tue, 28 Oct 1997 15:29:10 -0600 (CST)
Received: from zombie.sympatico.ca ([192.168.1.67]) by mail1.bellglobal.com
(Netscape Mail Server v2.02) with SMTP id AAA11105
for <
[email protected]>; Tue, 28 Oct 1997 16:28:38 -0500
Received: from zombie by zombie.sympatico.ca (SMI-8.6/SMI-SVR4)
id QAA03773; Tue, 28 Oct 1997 16:26:32 -0500
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 16:26:32 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: "James O'Byrne" <
[email protected]>
To:
[email protected]
Subject: I made a change...Home dir
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.03 (X11; I; SunOS 5.6 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I noticed when logging in, a user who had no home dir, was given access
to the /. This was unacceptable, so I made some changes to the source.
Sysadmins now have the choice of detering users sans home dir from
logging in with the -h (I just picked that as it was unused) option in
inetd.conf
the program operates normally without the -h.
I had not seen anything in your faq or patch readme files concerning
this.
James O'Byrne
if anyone wants the source code let me know.
--
mailto:
[email protected]
From
[email protected] Tue Oct 28 17:17:31 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA07402;
Tue, 28 Oct 1997 17:09:53 -0600 (CST)
Received: from ns.cvzoom.net ([208.226.154.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA27031
for <
[email protected]>; Tue, 28 Oct 1997 17:03:20 -0600 (CST)
Received: from master.cvzoom.net (master.cvzoom.net [208.226.154.14])
by ns.cvzoom.net (8.8.7/8.8.7) with SMTP id SAA05893
for <
[email protected]>; Tue, 28 Oct 1997 18:02:18 -0500 (EST)
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 18:02:49 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: "Michael J Farina" <
[email protected]>
To: <
[email protected]>
Subject: Not Seeing files
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 4.71.1712.3
X-MimeOLE: Produced By Microsoft MimeOLE V4.71.1712.3
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I love the fact that you can chroot user's dirs. Now some FTP programs can
see the files in their dir can you help?
Mike
From
[email protected] Tue Oct 28 17:42:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA30283;
Tue, 28 Oct 1997 17:35:20 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA06252
for <
[email protected]>; Tue, 28 Oct 1997 17:32:11 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id RAA24995;
Tue, 28 Oct 1997 17:32:02 -0600
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 17:32:02 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Michael J Farina <
[email protected]>
Cc:
[email protected]
Subject: Re: Not Seeing files
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Carefully check the guest howto for external ls setup. This was posted
to the list in the last day or two.
-- Michael
On Tue, 28 Oct 1997, Michael J Farina wrote:
> I love the fact that you can chroot user's dirs. Now some FTP programs can
> see the files in their dir can you help?
From
[email protected] Tue Oct 28 18:25:25 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA06992;
Tue, 28 Oct 1997 18:18:24 -0600 (CST)
Received: from micro.internexus.net (
[email protected] [206.152.14.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA11357
for <
[email protected]>; Tue, 28 Oct 1997 18:11:38 -0600 (CST)
Received: from localhost (master@localhost)
by micro.internexus.net (8.8.7/8.8.4) with SMTP
id TAA25281 for <
[email protected]>; Tue, 28 Oct 1997 19:11:28 -0500
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 19:11:28 -0500 (EST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Laszlo Vecsey <
[email protected]>
To:
[email protected]
Subject: wu-ftpd beta15 and Linux 2.0.31
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Has anyone else noticed a problem with 'stuck' ftp sessions?
I run ftpwho and I see ftp sessions still active from days back, and I
know the users from those sites have long terminated their sessions. I
believe this behavior began either when I upgraded one release,
respectively, to Linux 2.0.31, or wu-ftpd beta15.
- lv
From
[email protected] Tue Oct 28 18:38:43 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA23343;
Tue, 28 Oct 1997 18:31:09 -0600 (CST)
Received: from inorganic5.fdt.net (inorganic5.fdt.net [205.229.48.42])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA08433
for <
[email protected]>; Tue, 28 Oct 1997 18:25:02 -0600 (CST)
Received: from localhost (jlewis@localhost)
by inorganic5.fdt.net with SMTP id TAA30050;
Tue, 28 Oct 1997 19:24:50 -0500
Message-Id: <
[email protected]>
Date: Tue, 28 Oct 1997 19:24:49 -0500 (EST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Jon Lewis <
[email protected]>
To: Laszlo Vecsey <
[email protected]>
Cc:
[email protected]
Subject: Re: wu-ftpd beta15 and Linux 2.0.31
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-To-Stop-Spam-See:
http://inorganic5.fdt.net/~jlewis/spam.html
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Tue, 28 Oct 1997, Laszlo Vecsey wrote:
> Has anyone else noticed a problem with 'stuck' ftp sessions?
>
> I run ftpwho and I see ftp sessions still active from days back, and I
> know the users from those sites have long terminated their sessions. I
> believe this behavior began either when I upgraded one release,
> respectively, to Linux 2.0.31, or wu-ftpd beta15.
This has been around for "some time". I posted a patch that terminates
these hung sessions a few beta's ago, but I think the patch was considered
too much of a hack to be included in the source.
------------------------------------------------------------------
Jon Lewis <
[email protected]> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______
http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____
From
[email protected] Wed Oct 29 03:52:57 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA29730;
Wed, 29 Oct 1997 03:46:20 -0600 (CST)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id DAA21571
for <
[email protected]>; Wed, 29 Oct 1997 03:39:31 -0600 (CST)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id LAA02551;
Wed, 29 Oct 1997 11:38:05 GMT
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 11:38:05 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To: Jon Lewis <
[email protected]>
Cc: Laszlo Vecsey <
[email protected]>,
[email protected]
Subject: Re: wu-ftpd beta15 and Linux 2.0.31
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Tue, 28 Oct 1997, Jon Lewis wrote:
> On Tue, 28 Oct 1997, Laszlo Vecsey wrote:
>
> > Has anyone else noticed a problem with 'stuck' ftp sessions?
> >
> > I run ftpwho and I see ftp sessions still active from days back, and I
> > know the users from those sites have long terminated their sessions. I
> > believe this behavior began either when I upgraded one release,
> > respectively, to Linux 2.0.31, or wu-ftpd beta15.
>
> This has been around for "some time". I posted a patch that terminates
> these hung sessions a few beta's ago, but I think the patch was considered
> too much of a hack to be included in the source.
Interestingly enough I had this "bug" with Debian's wu-ftpd version
which disapeared when I "upgraded" to academ 15...
*
t
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
Tom: So far, der winter kommt, ich schaff mir glaub ich noch ein paar
Tom: Zyxel traffos an...
Roli: Aber genug davon nehmen. Wenn die Dinger kapput gehen werden sie
Roli: nicht mehr warm.
From
[email protected] Wed Oct 29 10:37:20 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA27885;
Wed, 29 Oct 1997 10:28:15 -0600 (CST)
Received: from ns.cvzoom.net ([208.226.154.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA30089
for <
[email protected]>; Wed, 29 Oct 1997 10:21:02 -0600 (CST)
Received: from cvzoom.net ([208.226.154.4])
by ns.cvzoom.net (8.8.7/8.8.7) with ESMTP id LAA06674
for <
[email protected]>; Wed, 29 Oct 1997 11:20:01 -0500 (EST)
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 11:25:05 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael J Farina <
[email protected]>
To:
[email protected]
Subject: guestgroup
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.03 [en] (WinNT; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
If I want all of my Users to be in their own groups and then all of
thoses groups be part of guestgroup. Do I have to staticaly link ls to
all of their home dirs?
MIke
From
[email protected] Wed Oct 29 10:52:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA29220;
Wed, 29 Oct 1997 10:44:37 -0600 (CST)
Received: from claret.psychology.mcmaster.ca (claret.psychology.McMaster.CA [130.113.218.34])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA27664
for <
[email protected]>; Wed, 29 Oct 1997 10:29:54 -0600 (CST)
Received: by claret.psychology.mcmaster.ca (951211.SGI.8.6.12.PATCH1502/951211.SGI)
id LAA07424; Wed, 29 Oct 1997 11:29:20 -0500
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 11:29:20 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Alan J Rosenthal)
To:
[email protected],
[email protected]
Subject: Re: guestgroup
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>Do I have to staticaly link ls to all of their home dirs?
Yes, but you can make these copies of ls the same if they're on the same
disk partition with hard links ("ln"). Symlinks won't work, because under a
chroot, symlink following happens with respect to the new root directory.
But hard links work fine. But hard links are only available within the same
filesystem.
From
[email protected] Wed Oct 29 11:36:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA03154;
Wed, 29 Oct 1997 11:29:11 -0600 (CST)
Received: from rintintin.sierra.com (rintintin.sierra.com [207.82.195.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA00907
for <
[email protected]>; Wed, 29 Oct 1997 11:21:27 -0600 (CST)
Received: from localhost (philip@localhost) by rintintin.sierra.com (8.7.6/8.7.3-jmm-p) with SMTP id JAA28656 for <
[email protected]>; Wed, 29 Oct 1997 09:21:25 -0800 (PST)
Message-Id: <Pine.GSO.3.96.971029091531.8809g-100000@rintintin>
Date: Wed, 29 Oct 1997 09:21:25 -0800 (PST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Philip Hallstrom <
[email protected]>
To:
[email protected]
Subject: Script to make a chrooted environment...
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: philip@rintintin
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi all,
I'm sure many people have already done this, and there are
probably scripts out there already, but it seems this topic pops up over
and over again so I figured I'd post mine...
Basically you'd call it like:
% makeftpchroot -v 2 /path_to_ftp_root/foo/bar/ftp_chroot
The -v is verbosity... 1 will just tell you a bit what's going on, 2 will
spit out a lot of junk you probably don't want to see :)
/path_to_ftp_root is wherever your ftp root directory is.
/foo/bar/ftp_chroot is the directory you'd like to have chrooted. (Note
this script won't create any users... I've got another one if you're
interested in that, but it's a mess :)
This works on Solaris 2.5.1 (Sparc). It assumes you've set up an
anonymous ftp site already... Anyway no promises, no guarantees...
-----------------------------------------------------------------------
#!/bin/sh
USAGE="
% $0 [-v n] directory
"
###
srcDir="/sierra/ftp" #change this to your anonymous ftp root.
mkdir=/usr/bin/mkdir
ln=/usr/bin/ln
find=/usr/bin/find
ls=/usr/bin/ls
chown=/usr/bin/chown
chmod=/usr/bin/chmod
mknod=/usr/sbin/mknod
echon="/usr/ucb/echo -n"
VERBOSE=0
###
while getopts v: opt
do
case $opt in
v) VERBOSE=$OPTARG
;;
\?) echo $USAGE
exit
;;
esac
done
shift `expr $OPTIND - 1`
dir=$1
subDir=`cd $dir;pwd | grep "^$srcDir"`
if [ -z "$subDir" ]; then
echo "ERROR: FTP chroot directory must be underneath $srcDir."
echo $USAGE
exit
fi
if [ ! -d "$dir" ]; then
$echon "Directory '$dir' does not exist. Create it? (y/n) [n]: "
read createDir
if [ "$createDir" = "y" -o "$createDir" = "Y" ]; then
mkdir $dir
else
exit
fi
fi
cd $dir
#
# Make all the directories.
#
if [ $VERBOSE -ge 1 ]; then
$echon "Making directories..."
fi
for dir in `cd $srcDir ; $find dev etc usr -type d -print`
do
if [ $VERBOSE -ge 2 ]; then
$echon " $dir"
fi
$mkdir $dir
$chown -h root:other $dir
$chmod 0555 $dir
done
if [ $VERBOSE -ge 1 ]; then
echo ""
fi
#
# Make all the hard links.
#
if [ $VERBOSE -ge 1 ]; then
$echon "Making hard links..."
fi
for file in `cd $srcDir ; $find dev etc usr -type f -print`
do
if [ $VERBOSE -ge 2 ]; then
$echon " $file"
fi
$ln $srcDir/$file $file
$chown -h root:other $file
$chmod 0555 $file
done
if [ $VERBOSE -ge 1 ]; then
echo ""
fi
#
# Make all the sym links.
#
if [ $VERBOSE -ge 1 ]; then
$echon "Making sym links..."
fi
for sl in `cd $srcDir ; $find dev etc usr -type l -print`
do
if [ $VERBOSE -ge 2 ]; then
$echon " $sl"
fi
link=`$ls -l $srcDir/$sl | sed 's/^.* -> //'`
$ln -s $link $sl
done
#Symlink bin...
$ln -s usr/bin bin
if [ $VERBOSE -ge 2 ]; then
$echon " bin"
fi
if [ $VERBOSE -ge 1 ]; then
echo ""
fi
#
# Make all the character devices.
#
if [ $VERBOSE -ge 1 ]; then
$echon "Making character devices..."
fi
$mknod dev/null c 13 2
$mknod dev/tcp c 11 42
$mknod dev/ticotsord c 105 1
$mknod dev/udp c 11 41
$mknod dev/zero c 13 12
for cdev in "null" "tcp" "ticotsord" "udp" "zero"
do
if [ $VERBOSE -ge 2 ]; then
$echon " dev/$cdev"
fi
$chown -h root:other dev/$cdev
$chmod 0666 dev/$cdev
done
if [ $VERBOSE -ge 1 ]; then
echo ""
echo "Success!"
echo ""
fi
#--------------------------------------------------------------------
From
[email protected] Wed Oct 29 11:42:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA21619;
Wed, 29 Oct 1997 11:34:21 -0600 (CST)
Received: from mailserver.unipi.it (serra.unipi.it [131.114.21.10])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA03463
for <
[email protected]>; Wed, 29 Oct 1997 11:29:21 -0600 (CST)
Received: from luna.unipi.it (
[email protected] [131.114.190.5]) by mailserver.unipi.it (8.8.7/8.6.9) with ESMTP id RAA39354; Wed, 29 Oct 1997 17:28:56 GMT
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 18:33:48 +0100 (MET)
Reply-To:
[email protected]
Sender:
[email protected]
From: Stefano Ruberti <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: RE: "DIR" doesn't give uid/gid's in English
In-Reply-To: <
[email protected]>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 8bit
MIME-Version: 1.0
X-Sender:
[email protected]
X-Mailer: XFMail 1.2-beta-102697 [p0] on Linux
X-Priority: 3 (Normal)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi David,
I have the same problem. Have you solved?
If yes. I can send me a solution?
ciao.
_sr_
On 10-Oct-97 David G. Mills scrisse:
-> Hey, all...
->
-> Running wu-ftpd 2.4.2 beta 14 on Solaris 2.5.1, using /usr/bin/ls, I get no
-> entries for uid name and gid name from the ~ftp/etc/passwd and
-> ~ftp/etc/group files (just the numeric values, not the names). The
-> permissions on the related files are:
->
-> ~ftp
-> etc/ root:other dr-xr-xr-x
-> group root:other -r--r--r--
-> passwd root:other -r--r--r--
->
-> I've read the "A How-To Guide for wu-ftpd on Solaris 2.5.x"
-> (
http://www.teleport.com/~minerva/wu-ftpd/wuftpd.shtml) and I *think* I've
-> checked the "obvious" things...
->
-> I'd appreciate suggestions on things to check out, etc.
->
-> Thanks!
->
-> david
-> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-> David G. Mills / Systems Admin
->
-> ISG (IPAC Systems Group) / Caltech
->
->
[email protected]
->
-> 626-397-7241
---
---------------------------------------------------------------------
Stefano Ruberti University of Pisa
SERRA Centro di Servizi per la Rete di Ateneo
[email protected] Tel: +39(50)24066 Fax: +39(50)43441
29-Oct-97 18:33:48
---------------------------------------------------------------------
From
[email protected] Wed Oct 29 11:48:41 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA31235;
Wed, 29 Oct 1997 11:40:34 -0600 (CST)
Received: from uswgco2.uswc.uswest.com (uswgco2.uswest.com [206.196.133.74])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA28842
for <
[email protected]>; Wed, 29 Oct 1997 11:35:48 -0600 (CST)
Received: from egate2.mnet.uswest.com (egate-ne1.mnet.uswest.com [151.117.138.135])
by uswgco2.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id KAA09636
for <
[email protected]>; Wed, 29 Oct 1997 10:35:17 -0700 (MST)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate2.mnet.uswest.com (8.7.1/8.7.1) with SMTP id LAA04300 for <
[email protected]>; Wed, 29 Oct 1997 11:35:15 -0600 (CST)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id LAA15376 for <
[email protected]>; Wed, 29 Oct 1997 11:42:05 -0600
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA25336
for <
[email protected]>; Wed, 29 Oct 1997 10:35:13 -0700
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 10:38:44 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: Different classes of guests
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Does anyone else have a need for separating different guest users? For
instance, some guests I want to limit to the daytime, other guests to
the night, and they don't come from known IPs. Or, different guests
should have different upload perms, etc. Anyone else feel the same way?
-Brad Waite
From
[email protected] Wed Oct 29 11:52:09 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA10928;
Wed, 29 Oct 1997 11:42:45 -0600 (CST)
Received: from fionn.es.net (fionn.es.net [198.128.1.30])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA02515
for <
[email protected]>; Wed, 29 Oct 1997 11:35:50 -0600 (CST)
Received: (from helm@localhost)
by fionn.es.net (LBNLMWH11/LBNLMWH09/ESOCF2) id JAA26826;
Wed, 29 Oct 1997 09:35:23 -0800 (PST)
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 09:35:23 -0800 (PST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Helm <
[email protected]>
To:
[email protected],
[email protected]
Cc:
[email protected]
Subject: AFS & anon ftp/incoming
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
/afs & anonymous ftp /incoming (uploads) have problems working
together. I've found a work-around but want to find something
that could be included in the wu-ftpd distribution.
We want to run anonymous ftp with an "/incoming" directory for
uploads. We are running solaris 2.5.1 & wu-2.4.2-academ[BETA-15].
We are also running afs (3.4a2). What we want to do is take
advantage of the security & file management that afs offers
(don't laff -- it does have some advantages). We also want to
extend the least number of privileges possible to the ftp server
itself -- that includes, for afs aficionados, not granting any
afs tokens to the ftpd daemons if possible.
This works fine for classic read-only ftp but it's a problem for
any upload directories. We found we could finagle privileges
around so uploads should work securely for a separate afs volume --
that is, an unprivileged user could write in /incoming --
but ftpd uploads would fail because of a "fchown" call.
Suppose you have this in ftpaccess:
upload /afs/cell.dom.ain/ftproot /incoming yes ftp ftp 0600 nodirs
Users who attempt to upload get the error (paraphrasing)
fchown not owner
This is a classic afs error.
In wu-ftpd's ftpd.c (around line 2072) ftpd regains root, does fchown,
then gives up root again. This isn't enuf in afs -- it needs
an afs privilege. A limitation of afs is that to do chown,
your afs token must have a very strong admin privilege;
no ftpd is going to be allowed to have that.
For anonymous ftp uploads, tho, I don't care about ownership,
& it's ok that these files inherit the afs nobody uid & the
default directory gid, since disposition of the files is taken
care of by out of band communication. So I commented out this
fchown operation in ftpd.c (about line 2072):
delay_signaling(); /* we can't allow any signals while euid==0: kinch */
(void) seteuid((uid_t) 0);
if ((fchown(fdout, uid, gid)) < 0) {
(void) seteuid(oldid);
enable_signaling(); /* we can allow signals once again: kinch */
perror_reply(550, "fchown");
return;
}
(void) seteuid(oldid);
enable_signaling(); /* we can allow signals once again: kinch */
This change gets me what I want: files are (uid,gid)=(afs nobody, default),
the users can upload without errors, & the fchown step is skipped.
What I want is a general solution that would get in the distribution
so I wouldn't have to go back & tweak this every time the software
changes.
Maybe what could be done is to wrap fchown in another function that
would test for /afs usage & not bail out when fchown failed on
an afs file system. Testing for whether your working directory
is in afs is hard, & maybe my usage conditions aren't general enuf.
fchown only seems to be called once & only in ftpd.c.
From
[email protected] Wed Oct 29 12:07:05 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA15870;
Wed, 29 Oct 1997 11:59:20 -0600 (CST)
Received: from perdita.zdv.Uni-Mainz.de (perdita.zdv.Uni-Mainz.DE [134.93.8.147])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA06609
for <
[email protected]>; Wed, 29 Oct 1997 11:52:40 -0600 (CST)
Received: (from schoepf@localhost)
by perdita.zdv.Uni-Mainz.de (8.8.4/8.8.5) id SAA22846;
Wed, 29 Oct 1997 18:52:26 +0100 (MET)
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 18:52:26 +0100 (MET)
Reply-To:
[email protected]
Sender:
[email protected]
From: Rainer Schoepf <
[email protected]>
To:
[email protected]
Cc:
[email protected],
[email protected],
[email protected]
Subject: Re: AFS & anon ftp/incoming
In-Reply-To: <
[email protected]>
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: VM 6.31 under Emacs 19.34.1
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Michael Helm writes:
> This works fine for classic read-only ftp but it's a problem for
> any upload directories. We found we could finagle privileges
> around so uploads should work securely for a separate afs volume --
> that is, an unprivileged user could write in /incoming --
> but ftpd uploads would fail because of a "fchown" call.
>
> Suppose you have this in ftpaccess:
>
> upload /afs/cell.dom.ain/ftproot /incoming yes ftp ftp 0600 nodirs
>
> Users who attempt to upload get the error (paraphrasing)
> fchown not owner
I got around it by writing
upload /afs/cell.dom.ain/ftproot /incoming yes nodirs
If you do this, wu-ftpd doesn't do the fchown. This is OK, as file
ownership and group/world permission bits are essentially irrelevant
in AFS.
--
Rainer Sch�pf
Zentrum f�r Datenverarbeitung A point of view can be a dangerous
der Universit�t Mainz luxury when substituted for insight
Anselm-Franz-von-Bentzel-Weg 12 and understanding.
D-55099 Mainz
Germany Herbert Marshall McLuhan:
<
[email protected]> The Gutenberg Galaxy
From
[email protected] Wed Oct 29 13:03:43 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA08616;
Wed, 29 Oct 1997 12:55:01 -0600 (CST)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA23561
for <
[email protected]>; Wed, 29 Oct 1997 12:50:24 -0600 (CST)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id UAA24477;
Wed, 29 Oct 1997 20:49:03 GMT
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 20:49:03 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To: Brad Waite <
[email protected]>
Cc: wu-ftpd <
[email protected]>
Subject: Re: Different classes of guests
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Wed, 29 Oct 1997, Brad Waite wrote:
> Does anyone else have a need for separating different guest users? For
> instance, some guests I want to limit to the daytime, other guests to
> the night, and they don't come from known IPs. Or, different guests
> should have different upload perms, etc. Anyone else feel the same way?
Yes, I think that wuold be nice.
*
t
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
Tom: So far, der winter kommt, ich schaff mir glaub ich noch ein paar
Tom: Zyxel traffos an...
Roli: Aber genug davon nehmen. Wenn die Dinger kapput gehen werden sie
Roli: nicht mehr warm.
From
[email protected] Wed Oct 29 13:40:09 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA08701;
Wed, 29 Oct 1997 13:33:06 -0600 (CST)
Received: from basil.acr.net.au (basil.acr.net.au [203.22.236.98])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA17078
for <
[email protected]>; Wed, 29 Oct 1997 13:31:34 -0600 (CST)
Received: from geoffp200mmxdev.acr.net.au (be2511s116.acr.net.au [203.22.236.116]) by basil.acr.net.au (8.7.3/8.7.3) with ESMTP id GAA05003; Thu, 30 Oct 1997 06:30:10 +1100 (EST)
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 06:29:34 +1100
Reply-To:
[email protected]
Sender:
[email protected]
From: "Geoff Terry" <
[email protected]>
To: <
[email protected]>, <
[email protected]>
Subject: Re: "DIR" doesn't give uid/gid's in English
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-MSMail-Priority: Normal
X-Priority: 3
X-Mailer: Microsoft Internet Mail 4.70.1161
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
You need copies of the /etc/passwd & etc/group in the ftp chrooted fs tree.
Geofft
----------
> From: Stefano Ruberti <
[email protected]>
> To:
[email protected]
> Cc:
[email protected]
> Subject: RE: "DIR" doesn't give uid/gid's in English
> Date: Thursday, October 30, 1997 4:33 AM
>
> Hi David,
>
> I have the same problem. Have you solved?
>
> If yes. I can send me a solution?
>
> ciao.
>
>
> _sr_
>
> On 10-Oct-97 David G. Mills scrisse:
> -> Hey, all...
> ->
> -> Running wu-ftpd 2.4.2 beta 14 on Solaris 2.5.1, using /usr/bin/ls, I
get no
> -> entries for uid name and gid name from the ~ftp/etc/passwd and
> -> ~ftp/etc/group files (just the numeric values, not the names). The
> -> permissions on the related files are:
> ->
> -> ~ftp
> -> etc/ root:other dr-xr-xr-x
> -> group root:other -r--r--r--
> -> passwd root:other -r--r--r--
> ->
> -> I've read the "A How-To Guide for wu-ftpd on Solaris 2.5.x"
> -> (
http://www.teleport.com/~minerva/wu-ftpd/wuftpd.shtml) and I *think*
I've
> -> checked the "obvious" things...
> ->
> -> I'd appreciate suggestions on things to check out, etc.
> ->
> -> Thanks!
> ->
> -> david
> -> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> -> David G. Mills / Systems Admin
> ->
> -> ISG (IPAC Systems Group) / Caltech
> ->
> ->
[email protected]
> ->
> -> 626-397-7241
>
> ---
> ---------------------------------------------------------------------
> Stefano Ruberti University of Pisa
> SERRA Centro di Servizi per la Rete di Ateneo
>
[email protected] Tel: +39(50)24066 Fax: +39(50)43441
> 29-Oct-97 18:33:48
> ---------------------------------------------------------------------
>
From
[email protected] Wed Oct 29 14:06:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA16779;
Wed, 29 Oct 1997 13:58:42 -0600 (CST)
Received: from att.com (cagw1.att.com [192.128.52.89])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA25009
for <
[email protected]>; Wed, 29 Oct 1997 13:56:04 -0600 (CST)
Received: by cagw1.att.com; Wed Oct 29 14:50 EST 1997
Received: from lynxhub.lz.att.com ([135.25.204.10])
by caig1.att.att.com (AT&T/GW-1.0) with SMTP id OAA05379
for <
[email protected]>; Wed, 29 Oct 1997 14:47:19 -0500 (EST)
Received: by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA11708; Wed, 29 Oct 1997 14:53:35 -0500
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 14:53:34 -0500 (EST)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected] (ftp archive)
Subject: Can't build data connection
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Folks,
I have some user who have seen the 425 error Can't build data
connection which comes from the connect call in dataconn. Is this a
symptom of network problems. Lost packets, sequencing problems etc.
or does this point to something else.
Any help would be appreciated.
Doug
--
Doug Courtney
[email protected]
(732)576-5572
From
[email protected] Wed Oct 29 14:18:14 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA10617;
Wed, 29 Oct 1997 14:11:09 -0600 (CST)
Received: from post-ofc01.srv.cis.pitt.edu (
[email protected] [136.142.185.25])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA06126
for <
[email protected]>; Wed, 29 Oct 1997 14:05:52 -0600 (CST)
Received: from localhost (root@localhost)
by post-ofc01.srv.cis.pitt.edu (8.8.7/8.8.7/cispo-7.0.1.2)
ID <
[email protected]> for
[email protected];
Wed, 29 Oct 1997 15:05:49 -0500 (EST)
Received: via switchmail; Wed, 29 Oct 1997 15:05:49 -0500 (EST)
Received: from peach.cis.pitt.edu via qmail
ID </afs/pitt.edu/service/mailqs/q7/QF.8oJtPaq8XfwT02u1M0>;
Wed, 29 Oct 1997 15:04:55 -0500 (EST)
Received: from peach.cis.pitt.edu via qmail
ID </afs/pitt.edu/usr0/mopar/.Outgoing/QF.woJtPYq8XfwT002X80>;
Wed, 29 Oct 1997 15:04:52 -0500 (EST)
Received: from Messages.8.5.N.CUILIB.3.45.SNAP.NOT.LINKED.peach.cis.pitt.edu.sun4m.54
via MS.5.6.peach.cis.pitt.edu.sun4_51;
Wed, 29 Oct 1997 15:04:52 -0500 (EST)
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 15:04:52 -0500 (EST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Jerome Marella <
[email protected]>
To:
[email protected]
Subject: restricting real users
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Does anyone know an easy way to do the following:
upload * /var/tmp no
This doesn't work since the root-dir does not glob. I would like to only
restict certain directories to real users, not all of them. There
doesn't seem to be an easy way of doing this, unless I missed something.
Thanks,
Jerome
--
Jerome A. Marella University of Pittsburgh - CIS Systems & Networks
600 Epsilon Drive, Pittsburgh, PA 15238
[email protected] (412) 624-9139 Fax (412) 624-6436
http://www.pitt.edu/~mopar
From
[email protected] Wed Oct 29 14:36:33 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA13945;
Wed, 29 Oct 1997 14:29:38 -0600 (CST)
Received: from gatekeep.ti.com (gatekeep.ti.com [192.94.94.61])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA22310
for <
[email protected]>; Wed, 29 Oct 1997 14:25:35 -0600 (CST)
Received: from dadd.ti.com. ([156.117.180.253]) by gatekeep.ti.com (8.8.7) with ESMTP id OAA01304 for <
[email protected]>; Wed, 29 Oct 1997 14:26:46 -0600 (CST)
Received: from pavis.dadd.ti.com by dadd.ti.com. (8.8.4/)
id OAA08408; Wed, 29 Oct 1997 14:25:03 -0600 (CST)
Received: by pavis.dadd.ti.com id <
[email protected]>; Wed, 29 Oct 1997 14:25:02 -0600
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 97 14:25:01 CST
Reply-To:
[email protected] (Bob Luckin)
Sender:
[email protected]
From: Bob Luckin <
[email protected]>
To:
[email protected]
Subject: Re: Can't build data connection
X-Mimi-Options: HEADERS TI2
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Doug said :-
> I have some user who have seen the 425 error Can't build data
> connection which comes from the connect call in dataconn. Is this a
> symptom of network problems. Lost packets, sequencing problems etc.
> or does this point to something else.
>
> Any help would be appreciated.
Presumably this doesn't happen to all users. You don't say what your
OS is, or what the user's client is...
I think this can happen with a server running on Solaris 2 if the client
program is trying to use passive connections (eg. some Web browsers), and
~ftp/dev/tcp (and possibly the other devices in that directory) is/are not
open to the world to write.
Check the FAQ, available from Kent Landfield's resource site at
http://www.landfield.com/wu-ftpd/
along with other useful how-to's etc...
Cheers, Bob
--
Bob Luckin
[email protected] "I say ETA FTP ? Me tempt fate, ya ? - Si !"
[
http://www.dhc.net/~luckin/palindromes.html]
From
[email protected] Wed Oct 29 14:56:31 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA31775;
Wed, 29 Oct 1997 14:48:16 -0600 (CST)
Received: from broccoli.graphics.cornell.edu (BROCCOLI.GRAPHICS.CORNELL.EDU [128.84.247.53])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id OAA14458
for <
[email protected]>; Wed, 29 Oct 1997 14:42:12 -0600 (CST)
Received: from graphics.cornell.edu (LOCALHOST) by broccoli.graphics.cornell.edu with ESMTP
(1.37.109.16/16.2) id AA268057642; Wed, 29 Oct 1997 15:40:42 -0500
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 15:40:42 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Mitch Collinsworth <
[email protected]>
To: Rainer Schoepf <
[email protected]>
Cc:
[email protected],
[email protected],
[email protected]
Subject: Re: AFS & anon ftp/incoming
In-Reply-To: Your message of "Wed, 29 Oct 1997 18:52:26 +0100."
<
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: exmh version 2.0zeta 7/24/97
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I have a different problem entirely. Essentially a denial of
service attack.
My experimentation showed that the minimum afs permissions needed
on the incoming directory are "system:anyuser li" (when running
with unauthenticated ftpd). I wanted just "i", but with out "l"
uploading wouldn't work. I then have "system"authuser rld" so that
our users can pick up the uploaded files and delete them. That
seemed ok at the time and it worked fine for a period of years.
Recently however, the warez crowd has begun uploading all manner
of junk to the incoming directory. It doesn't seem to matter that
they can't get any of it back from the server. It's not obvious
to me that they have even figured that out. Each time I've
re-enabled the directory more junk has appeared (Has anyone
actually ever succeeded in locating a functional neuron in a warez
user's head?) I tried reporting several of them to their admins,
hoping that at least a few would get a lecture or an account
yanked (or worse) and might perhaps put the word out on the street
not to mess with us, but that doesn't seem to have helped. I've
had to shut off the incoming directory altogether, and now when
someone needs to use it they'll have to ask me to enable it. Does
anyone know how to initiate communication with a distributed
intelligence vaccuum?
-Mitch
--
"Families can't trust Disney"
From
[email protected] Wed Oct 29 14:59:03 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA22636;
Wed, 29 Oct 1997 14:49:20 -0600 (CST)
Received: from att.com (kcgw1.att.com [192.128.133.151])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id OAA30182
for <
[email protected]>; Wed, 29 Oct 1997 14:45:55 -0600 (CST)
Received: by kcgw1.att.com; Wed Oct 29 14:42 CST 1997
Received: from lynxhub.lz.att.com ([135.25.204.10])
by kcig1.att.att.com (AT&T/GW-1.0) with SMTP id OAA13912
for <
[email protected]>; Wed, 29 Oct 1997 14:35:04 -0600 (CST)
Received: by lynxhub.lz.att.com (5.x/EMS-1.2 sol2)
id AA15041; Wed, 29 Oct 1997 15:43:00 -0500
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 15:42:59 -0500 (EST)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected]
To:
[email protected]
Cc:
[email protected]
Subject: Re: Can't build data connection
In-Reply-To: <
[email protected]> from "Bob Luckin" at Oct 29, 97 02:25:01 pm
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Bob kicked me in the pants as I should have been.
I am running an SGI server with 6.2. The users have seen the 425
Can't build data connection
error across many clients. MAC, Dos, Cute, WS_FTP. So I don't think
its a client problem. Again. Thanks for any help
Doug
--
Doug Courtney
[email protected]
(732)576-5572
From
[email protected] Wed Oct 29 15:28:35 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA29865;
Wed, 29 Oct 1997 15:14:14 -0600 (CST)
Received: from swiss.direct.ca (swiss.direct.ca [199.60.229.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA24494
for <
[email protected]>; Wed, 29 Oct 1997 15:10:05 -0600 (CST)
Received: from spoier by swiss.direct.ca with local (Exim 1.70 #1)
id 0xQfNM-0003j5-00; Wed, 29 Oct 1997 13:10:04 -0800
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 13:10:04 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: Skye Merlin Poier <
[email protected]>
To:
[email protected]
Subject: Solaris crashing...
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary=3z4jIqBvZU5G06lT
X-Sender: Skye Merlin Poier <
[email protected]>
X-Mailer: Mutt 0.81
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
--3z4jIqBvZU5G06lT
Content-Type: text/plain; charset=us-ascii
Hello!
Having a bizarre problem with wu-ftpd under Solaris 2.5.1 - I modified the
pathnames.h to suit my needs and did a 'build sol' and copied the binaries
into the directory I wanted. I then modified inetd.conf to invoke it as
follows:
ftptest stream tcp nowait root /ftp/corpftpd/bin/in.ftpd in.ftpd -l -d -a
where ftptest is port 1234.
I can connect fine, transfer files, but as soon as I close the session the
server reboots! Testing with the exact same configuration, binaries, inetd
config on a Solaris 2.6 box, works fine, no crash.
I initially had the problem with wu-ftpd 2.4.2-beta15 so I grabbed and
compiled 2.4, exact same behaviour.
Help!! Anyone else seen this?
I've attached my ftpaccess config file, if that helps any.
Skye
--
Skye Poier: Network Operations, Canada Internet Direct -
[email protected]
1050 - 555 W Hastings St, Vancouver, B.C., V6B 4N6 - (604) 602-1800
--3z4jIqBvZU5G06lT
Content-Type: text/plain; charset=us-ascii
Content-Disposition: attachment; filename=ftpaccess
loginfails 2
class local real,guest,anonymous *.direct.ca
class remote real,guest,anonymous *
limit local 75 Any /www/inetsite/ftpd/msgs/msg.toomany
limit remote 75 Any /www/inetsite/ftpd/msgs/msg.toomany
noretrieve passwd core /bin/ls /usr/lib/libdl.so.1 /usr/lib/ld.so.1
#readme README* login
#readme README* cwd=*
#message /welcome.msg login
#message .message cwd=*
#compress yes local remote
#tar yes local remote
# allow use of private file for SITE GROUP and SITE GPASS?
#private yes
# passwd-check <none|trivial|rfc822> [<enforce|warn>]
passwd-check rfc822 warn
log commands real,guest,anonymous
log transfers real,guest,anonymous inbound,outbound
shutdown /ftpshutmsg
# all the following default to "yes" for everybody
chmod yes real,guest
delete yes real,guest
overwrite yes real,guest
rename yes real,guest
umask yes real,guest
delete no anonymous # delete permission?
overwrite no anonymous # overwrite permission?
rename no anonymous # rename permission?
chmod no anonymous # chmod permission?
umask no anonymous # umask permission?
# specify the upload directory information
#upload /www/inetsite/ftp * no
# directory aliases... [note, the ":" is not required]
#alias inc: /incoming
# cdpath
#cdpath /incoming
#cdpath /pub
#cdpath /
# path-filter...
#path-filter anonymous /www/inetsite/ftpd/msgs/pathmsg ^[-A-Za-z0-9_\.]*$ ^\. ^-
#path-filter guest /www/inetsite/ftpd/msgs/pathmsg ^[-A-Za-z0-9_\.]*$ ^\. ^-
# specify which group of users will be treated as "guests".
guestgroup nobody
email
[email protected]
--3z4jIqBvZU5G06lT--
From
[email protected] Wed Oct 29 15:41:25 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA00683;
Wed, 29 Oct 1997 15:33:34 -0600 (CST)
Received: from warlock.qualcomm.com (warlock.qualcomm.com [129.46.52.129])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA09529
for <
[email protected]>; Wed, 29 Oct 1997 15:31:54 -0600 (CST)
Received: from surf.qualcomm.com (surf.qualcomm.com [129.46.4.47]) by warlock.qualcomm.com (8.8.5/1.4/8.7.2/1.13) with ESMTP id NAA14580 for <
[email protected]>; Wed, 29 Oct 1997 13:29:54 -0800 (PST)
Received: from surf.qualcomm.com (localhost [127.0.0.1]) by surf.qualcomm.com (8.8.5/1.4/8.7.2/1.13) with SMTP id NAA29025; Wed, 29 Oct 1997 13:30:38 -0800 (PST)
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 13:30:38 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: "Tianyu Li D'Amore" <
[email protected]>
To:
[email protected]
Cc:
[email protected],
[email protected],
[email protected]
Subject: Re: AFS & anon ftp/incoming
In-Reply-To: Your message of "Wed, 29 Oct 1997 09:35:23 PST."
<
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: exmh version 1.6.9 8/22/96
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
You can also mount a regular UFS on top of afs so /afs/whatever/ftp/incoming
would be a regular UFS partition configured to accept ftp uploads.
Tina
> /afs & anonymous ftp /incoming (uploads) have problems working
> together. I've found a work-around but want to find something
> that could be included in the wu-ftpd distribution.
>
> We want to run anonymous ftp with an "/incoming" directory for
> uploads. We are running solaris 2.5.1 & wu-2.4.2-academ[BETA-15].
> We are also running afs (3.4a2). What we want to do is take
> advantage of the security & file management that afs offers
> (don't laff -- it does have some advantages). We also want to
> extend the least number of privileges possible to the ftp server
> itself -- that includes, for afs aficionados, not granting any
> afs tokens to the ftpd daemons if possible.
>
> This works fine for classic read-only ftp but it's a problem for
> any upload directories. We found we could finagle privileges
> around so uploads should work securely for a separate afs volume --
> that is, an unprivileged user could write in /incoming --
> but ftpd uploads would fail because of a "fchown" call.
>
> Suppose you have this in ftpaccess:
>
> upload /afs/cell.dom.ain/ftproot /incoming yes ftp ftp 0600 nodirs
>
> Users who attempt to upload get the error (paraphrasing)
> fchown not owner
>
> This is a classic afs error.
>
> In wu-ftpd's ftpd.c (around line 2072) ftpd regains root, does fchown,
> then gives up root again. This isn't enuf in afs -- it needs
> an afs privilege. A limitation of afs is that to do chown,
> your afs token must have a very strong admin privilege;
> no ftpd is going to be allowed to have that.
>
> For anonymous ftp uploads, tho, I don't care about ownership,
> & it's ok that these files inherit the afs nobody uid & the
> default directory gid, since disposition of the files is taken
> care of by out of band communication. So I commented out this
> fchown operation in ftpd.c (about line 2072):
>
> delay_signaling(); /* we can't allow any signals while euid==0: kinch */
> (void) seteuid((uid_t) 0);
> if ((fchown(fdout, uid, gid)) < 0) {
> (void) seteuid(oldid);
> enable_signaling(); /* we can allow signals once again: kinch */
> perror_reply(550, "fchown");
> return;
> }
> (void) seteuid(oldid);
> enable_signaling(); /* we can allow signals once again: kinch */
>
> This change gets me what I want: files are (uid,gid)=(afs nobody, default),
> the users can upload without errors, & the fchown step is skipped.
>
> What I want is a general solution that would get in the distribution
> so I wouldn't have to go back & tweak this every time the software
> changes.
>
> Maybe what could be done is to wrap fchown in another function that
> would test for /afs usage & not bail out when fchown failed on
> an afs file system. Testing for whether your working directory
> is in afs is hard, & maybe my usage conditions aren't general enuf.
> fchown only seems to be called once & only in ftpd.c.
>
>
From
[email protected] Wed Oct 29 15:42:13 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA26440;
Wed, 29 Oct 1997 15:32:36 -0600 (CST)
Received: from differential.com ([204.152.97.192])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA00575
for <
[email protected]>; Wed, 29 Oct 1997 15:29:48 -0600 (CST)
Received: (from jevans@localhost) by differential.com (8.8.0/8.6.9) id NAA18247; Wed, 29 Oct 1997 13:29:06 -0800 (PST)
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 13:29:06 -0800 (PST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Dave Jevans <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: restricting real users
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>Does anyone know an easy way to do the following:
>upload * /var/tmp no
>This doesn't work since the root-dir does not glob. I would like to only
Jerome,
We encountered this issue when building FileDrive.
We modified the upload rules so that it takes user name
instead of root-dir of the user accounts. That way,
globbing works. I do not know if anyone has
done something similar for the freeware wu-ftpd.
DJ
---
David Jevans
http://www.differential.com
Email:
[email protected] Phone: (408) 864-0603
Secure FTP and Extranet data management.
www.filedrive.com
From
[email protected] Wed Oct 29 16:09:13 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA01457;
Wed, 29 Oct 1997 15:57:55 -0600 (CST)
Received: from warlock.qualcomm.com (warlock.qualcomm.com [129.46.52.129])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id PAA02981
for <
[email protected]>; Wed, 29 Oct 1997 15:52:35 -0600 (CST)
Received: from surf.qualcomm.com (surf.qualcomm.com [129.46.4.47]) by warlock.qualcomm.com (8.8.5/1.4/8.7.2/1.13) with ESMTP id NAA18210 for <
[email protected]>; Wed, 29 Oct 1997 13:50:41 -0800 (PST)
Received: from surf.qualcomm.com (localhost [127.0.0.1]) by surf.qualcomm.com (8.8.5/1.4/8.7.2/1.13) with SMTP id NAA29471; Wed, 29 Oct 1997 13:51:34 -0800 (PST)
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 13:51:34 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: "Tianyu Li D'Amore" <
[email protected]>
To: Rainer Schoepf <
[email protected]>
Cc:
[email protected],
[email protected],
[email protected],
[email protected]
Subject: Re: AFS & anon ftp/incoming
In-Reply-To: Your message of "Wed, 29 Oct 1997 18:52:26 +0100."
<
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: exmh version 1.6.9 8/22/96
X-MIME-Autoconverted: from quoted-printable to 8bit by wugate.wustl.edu id PAA26165
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Just want to point out that although AFS ignore UNIX directory permissions
and use it's ACL instead, it does honor the File permission/ownership and
there's no ACL for files in AFS.
Tina
> Michael Helm writes:
>
> > This works fine for classic read-only ftp but it's a problem for
> > any upload directories. We found we could finagle privileges
> > around so uploads should work securely for a separate afs volume --
> > that is, an unprivileged user could write in /incoming --
> > but ftpd uploads would fail because of a "fchown" call.
> >
> > Suppose you have this in ftpaccess:
> >
> > upload /afs/cell.dom.ain/ftproot /incoming yes ftp ftp 0600 nodirs
> >
> > Users who attempt to upload get the error (paraphrasing)
> > fchown not owner
>
> I got around it by writing
>
> upload /afs/cell.dom.ain/ftproot /incoming yes nodirs
>
> If you do this, wu-ftpd doesn't do the fchown. This is OK, as file
> ownership and group/world permission bits are essentially irrelevant
> in AFS.
>
> --
> Rainer Sch�pf
> Zentrum f�r Datenverarbeitung A point of view can be a dangerous
> der Universit�t Mainz luxury when substituted for insight
> Anselm-Franz-von-Bentzel-Weg 12 and understanding.
> D-55099 Mainz
> Germany Herbert Marshall McLuhan:
> <
[email protected]> The Gutenberg Galaxy
>
From
[email protected] Wed Oct 29 16:16:10 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA00268;
Wed, 29 Oct 1997 16:04:07 -0600 (CST)
Received: from dinosaur.privsys.gip.net (dinosaur.gip.net [204.59.155.63])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA30295
for <
[email protected]>; Wed, 29 Oct 1997 16:02:53 -0600 (CST)
Received: by dinosaur.privsys.gip.net (SMI-8.6/SMI-SVR4)
id RAA20224; Wed, 29 Oct 1997 17:05:24 -0500
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 17:05:24 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Ming Lu)
To:
[email protected]
Subject: compilation problem with solaris2.6
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi all:
I got following errors when I tried to compile wu-ftpd-2.4 under solaris 2.6:
Making ftpd.
gcc -g -DDEBUG -I.. -I../support -L../support -c ftpd.c -o ftpd.o
ftpd.c:143: conflicting types for `realpath'
/usr/local/lib/gcc-lib/sparc-sun-solaris2/2.7.2.3/include/stdlib.h:186: previous declaration of `realpath'
make: *** [ftpd.o] Error 1
Making ftpcount.
gcc -g -DDEBUG -I.. -I../support -L../support -o ftpcount ftpcount.c vers.o -lsupport -lsocket -lnsl -lgen
gcc: vers.o: No such file or directory
make: *** [ftpcount] Error 1
Making ftpshut.
gcc -g -DDEBUG -I.. -I../support -L../support -o ftpshut ftpshut.c vers.o -lsupport -lsocket -lnsl -lgen
gcc: vers.o: No such file or directory
make: *** [ftpshut] Error 1
Any ideas?
Thanks in advance.
_ming
From
[email protected] Wed Oct 29 16:52:18 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA00987;
Wed, 29 Oct 1997 16:41:44 -0600 (CST)
Received: from gate.wilshire.com (gate.wilshire.com [207.137.36.4])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA03570
for <
[email protected]>; Wed, 29 Oct 1997 16:38:32 -0600 (CST)
Received: from wilshire.com ([129.111.72.21]) by gate.wilshire.com
(Netscape Mail Server v2.02) with ESMTP id AAA14477;
Wed, 29 Oct 1997 14:40:54 -0800
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 14:42:25 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: "Thomas Kwong" <
[email protected]>
To:
[email protected]
Cc:
[email protected],
[email protected]
Subject: Re: "DIR" doesn't give uid/gid's in English
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.03 [en] (WinNT; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I have files but still sees only numbers while listing...
WU-FTP Version wu-2.4(1) on Solaris x86 2.5.1.
t
Geoff Terry wrote:
> You need copies of the /etc/passwd & etc/group in the ftp chrooted fs tree.
>
> Geofft
>
> ----------
> > From: Stefano Ruberti <
[email protected]>
> > To:
[email protected]
> > Cc:
[email protected]
> > Subject: RE: "DIR" doesn't give uid/gid's in English
> > Date: Thursday, October 30, 1997 4:33 AM
> >
> > Hi David,
> >
> > I have the same problem. Have you solved?
> >
> > If yes. I can send me a solution?
> >
> > ciao.
> >
> >
> > _sr_
> >
> > On 10-Oct-97 David G. Mills scrisse:
> > -> Hey, all...
> > ->
> > -> Running wu-ftpd 2.4.2 beta 14 on Solaris 2.5.1, using /usr/bin/ls, I
> get no
> > -> entries for uid name and gid name from the ~ftp/etc/passwd and
> > -> ~ftp/etc/group files (just the numeric values, not the names). The
> > -> permissions on the related files are:
> > ->
> > -> ~ftp
> > -> etc/ root:other dr-xr-xr-x
> > -> group root:other -r--r--r--
> > -> passwd root:other -r--r--r--
> > ->
> > -> I've read the "A How-To Guide for wu-ftpd on Solaris 2.5.x"
> > -> (
http://www.teleport.com/~minerva/wu-ftpd/wuftpd.shtml) and I *think*
> I've
> > -> checked the "obvious" things...
> > ->
> > -> I'd appreciate suggestions on things to check out, etc.
> > ->
> > -> Thanks!
> > ->
> > -> david
> > -> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > -> David G. Mills / Systems Admin
> > ->
> > -> ISG (IPAC Systems Group) / Caltech
> > ->
> > ->
[email protected]
> > ->
> > -> 626-397-7241
--
Tom Kwong
Internet:
http://www.wilshire.com Wilshire Associates, Inc.
Intranet:
http://phoenix/tomkwong Tom Kwong Intranet Home Page.
ICQ UIN: 3773535 Just for fun...
From
[email protected] Wed Oct 29 17:24:23 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA06964;
Wed, 29 Oct 1997 17:12:53 -0600 (CST)
Received: from darwin ([204.158.62.7])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA24005
for <
[email protected]>; Wed, 29 Oct 1997 17:09:56 -0600 (CST)
Received: from haldane. by darwin (SMI-8.6/SMI-SVR4)
id RAA23589; Wed, 29 Oct 1997 17:08:51 -0600
Received: by haldane. (SMI-8.6/SMI-SVR4)
id RAA02890; Wed, 29 Oct 1997 17:07:07 -0600
Message-Id: <199710292307.RAA02890@haldane.>
Date: Wed, 29 Oct 1997 17:07:07 -0600
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Gerry W. Vest)
To:
[email protected],
[email protected]
Cc:
[email protected],
[email protected]
Subject: Re: "DIR" doesn't give uid/gid's in English
X-Sun-Charset: US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
The NOTES file for beta 15 of WU-FTPD 2.4 indicates there is a bug
with the libraries for Solaris 2.5.1 interacting with NFS (BugID
1248041).
The recommended solution is to copy version 2.5 libraries over to the
~/ftp directory tree. It solved our problem.
>
> I have files but still sees only numbers while listing...
> WU-FTP Version wu-2.4(1) on Solaris x86 2.5.1.
>
> t
>
> Geoff Terry wrote:
>
> > You need copies of the /etc/passwd & etc/group in the ftp chrooted fs tree.
> >
> > Geofft
> >
> > ----------
> > > From: Stefano Ruberti <
[email protected]>
> > > To:
[email protected]
> > > Cc:
[email protected]
> > > Subject: RE: "DIR" doesn't give uid/gid's in English
> > > Date: Thursday, October 30, 1997 4:33 AM
> > >
> > > Hi David,
> > >
> > > I have the same problem. Have you solved?
> > >
> > > If yes. I can send me a solution?
> > >
> > > ciao.
> > >
> > >
> > > _sr_
> > >
> > > On 10-Oct-97 David G. Mills scrisse:
> > > -> Hey, all...
> > > ->
> > > -> Running wu-ftpd 2.4.2 beta 14 on Solaris 2.5.1, using /usr/bin/ls, I
> > get no
> > > -> entries for uid name and gid name from the ~ftp/etc/passwd and
> > > -> ~ftp/etc/group files (just the numeric values, not the names). The
> > > -> permissions on the related files are:
> > > ->
> > > -> ~ftp
> > > -> etc/ root:other dr-xr-xr-x
> > > -> group root:other -r--r--r--
> > > -> passwd root:other -r--r--r--
> > > ->
> > > -> I've read the "A How-To Guide for wu-ftpd on Solaris 2.5.x"
> > > -> (
http://www.teleport.com/~minerva/wu-ftpd/wuftpd.shtml) and I *think*
> > I've
> > > -> checked the "obvious" things...
> > > ->
> > > -> I'd appreciate suggestions on things to check out, etc.
> > > ->
> > > -> Thanks!
> > > ->
> > > -> david
> > > -> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > > -> David G. Mills / Systems Admin
> > > ->
> > > -> ISG (IPAC Systems Group) / Caltech
> > > ->
> > > ->
[email protected]
> > > ->
> > > -> 626-397-7241
>
> --
> Tom Kwong
> Internet:
http://www.wilshire.com Wilshire Associates, Inc.
> Intranet:
http://phoenix/tomkwong Tom Kwong Intranet Home Page.
> ICQ UIN: 3773535 Just for fun...
>
>
>
Gerry Vest
System Administrator
Southwest Foundation for Biomedical Research
From
[email protected] Wed Oct 29 17:41:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA08605;
Wed, 29 Oct 1997 17:31:34 -0600 (CST)
Received: from swiss.direct.ca (swiss.direct.ca [199.60.229.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA11824
for <
[email protected]>; Wed, 29 Oct 1997 17:28:28 -0600 (CST)
Received: from spoier by swiss.direct.ca with local (Exim 1.70 #1)
id 0xQhXG-000689-00; Wed, 29 Oct 1997 15:28:26 -0800
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 15:28:26 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: Skye Merlin Poier <
[email protected]>
To:
[email protected]
Subject: Re: Solaris crashing...
In-Reply-To: <
[email protected]>; from Skye Merlin Poier on Wed, Oct 29, 1997 at 01:10:04PM -0800
References: <
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Sender: Skye Merlin Poier <
[email protected]>
X-Mailer: Mutt 0.81
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Just a followup to my last message... I'm compiling with gcc 2.7.2.1, I've
tried compiling it on a different machine, and I've tried running the same
ftp configuration on a different 2.5.1 machine, with the same results.
Panics the server as soon as I close the ftp connection.
Skye
--
Skye Poier: Network Operations, Canada Internet Direct -
[email protected]
1050 - 555 W Hastings St, Vancouver, B.C., V6B 4N6 - (604) 602-1800
From
[email protected] Wed Oct 29 18:00:22 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA10171;
Wed, 29 Oct 1997 17:50:42 -0600 (CST)
Received: from gate.wilshire.com (gate.wilshire.com [207.137.36.4])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA05429
for <
[email protected]>; Wed, 29 Oct 1997 17:45:27 -0600 (CST)
Received: from wilshire.com ([129.111.72.21]) by gate.wilshire.com
(Netscape Mail Server v2.02) with ESMTP id AAA18548;
Wed, 29 Oct 1997 15:47:48 -0800
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 15:49:20 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: "Thomas Kwong" <
[email protected]>
To:
[email protected]
Cc:
[email protected],
[email protected],
[email protected]
Subject: Re: "DIR" doesn't give uid/gid's in English
References: <199710292307.RAA02890@haldane.>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.03 [en] (WinNT; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Thanks for the pointer. I found that I was missing libmp.so.1. It's working fine
now :-)
t
Gerry W. Vest wrote:
> The NOTES file for beta 15 of WU-FTPD 2.4 indicates there is a bug
> with the libraries for Solaris 2.5.1 interacting with NFS (BugID
> 1248041).
>
> The recommended solution is to copy version 2.5 libraries over to the
> ~/ftp directory tree. It solved our problem.
>
> >
> > I have files but still sees only numbers while listing...
> > WU-FTP Version wu-2.4(1) on Solaris x86 2.5.1.
> >
> > t
> >
> > Geoff Terry wrote:
> >
> > > You need copies of the /etc/passwd & etc/group in the ftp chrooted fs tree.
> > >
> > > Geofft
> > >
> > > ----------
> > > > From: Stefano Ruberti <
[email protected]>
> > > > To:
[email protected]
> > > > Cc:
[email protected]
> > > > Subject: RE: "DIR" doesn't give uid/gid's in English
> > > > Date: Thursday, October 30, 1997 4:33 AM
> > > >
> > > > Hi David,
> > > >
> > > > I have the same problem. Have you solved?
> > > >
> > > > If yes. I can send me a solution?
> > > >
> > > > ciao.
> > > >
> > > >
> > > > _sr_
> > > >
> > > > On 10-Oct-97 David G. Mills scrisse:
> > > > -> Hey, all...
> > > > ->
> > > > -> Running wu-ftpd 2.4.2 beta 14 on Solaris 2.5.1, using /usr/bin/ls, I
> > > get no
> > > > -> entries for uid name and gid name from the ~ftp/etc/passwd and
> > > > -> ~ftp/etc/group files (just the numeric values, not the names). The
> > > > -> permissions on the related files are:
> > > > ->
> > > > -> ~ftp
> > > > -> etc/ root:other dr-xr-xr-x
> > > > -> group root:other -r--r--r--
> > > > -> passwd root:other -r--r--r--
> > > > ->
> > > > -> I've read the "A How-To Guide for wu-ftpd on Solaris 2.5.x"
> > > > -> (
http://www.teleport.com/~minerva/wu-ftpd/wuftpd.shtml) and I *think*
> > > I've
> > > > -> checked the "obvious" things...
> > > > ->
> > > > -> I'd appreciate suggestions on things to check out, etc.
> > > > ->
> > > > -> Thanks!
> > > > ->
> > > > -> david
> > > > -> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > > > -> David G. Mills / Systems Admin
> > > > ->
> > > > -> ISG (IPAC Systems Group) / Caltech
> > > > ->
> > > > ->
[email protected]
> > > > ->
> > > > -> 626-397-7241
> >
> > --
> > Tom Kwong
> > Internet:
http://www.wilshire.com Wilshire Associates, Inc.
> > Intranet:
http://phoenix/tomkwong Tom Kwong Intranet Home Page.
> > ICQ UIN: 3773535 Just for fun...
> >
> >
> >
>
> Gerry Vest
> System Administrator
> Southwest Foundation for Biomedical Research
--
Tom Kwong
Internet:
http://www.wilshire.com Wilshire Associates, Inc.
Intranet:
http://phoenix/tomkwong Tom Kwong Intranet Home Page.
ICQ UIN: 3773535 Just for fun...
From
[email protected] Wed Oct 29 18:13:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA15360;
Wed, 29 Oct 1997 18:02:59 -0600 (CST)
Received: from fionn.es.net (fionn.es.net [198.128.1.30])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA06017
for <
[email protected]>; Wed, 29 Oct 1997 18:02:26 -0600 (CST)
Received: from fionn.es.net (localhost [127.0.0.1])
by fionn.es.net (LBNLMWH11/LBNLMWH09/ESOCF2) with ESMTP id QAA03845;
Wed, 29 Oct 1997 16:02:11 -0800 (PST)
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 16:02:10 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Helm <
[email protected]>
To: Mitch Collinsworth <
[email protected]>
Cc:
[email protected],
[email protected]
Subject: Re: AFS & anon ftp/incoming
In-Reply-To: Your message of "Wed, 29 Oct 1997 15:40:42 EST."
<
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Mitch Collinsworth writes:
> user's head?) I tried reporting several of them to their admins,
> hoping that at least a few would get a lecture or an account
> yanked (or worse) and might perhaps put the word out on the street
> not to mess with us, but that doesn't seem to have helped.
It seems to have helped for us; but perhaps it's only a momentary
pause. I complained about every access to the upload directory that
wasn't related to our business; this wouldn't be practical for
everyone.
From
[email protected] Wed Oct 29 18:24:44 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA17397;
Wed, 29 Oct 1997 18:15:29 -0600 (CST)
Received: from lin-omts.airport.sakhalin.ru (root@[193.124.51.116])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA31012
for <
[email protected]>; Wed, 29 Oct 1997 18:09:57 -0600 (CST)
Received: from yura.airport.sakhalin.ru ([193.124.51.111]) by lin-omts.airport.sakhalin.ru (8.8.7/8.6.9) with SMTP id LAA06270 for <
[email protected]>; Thu, 30 Oct 1997 11:15:50 +1100
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 10:10:23 +1100
Reply-To:
[email protected]
Sender:
[email protected]
From: Yura <
[email protected]>
To:
[email protected]
Subject: question
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Sender:
[email protected]
X-Mailer: Windows Eudora Light Version 1.5.4 (32)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I have wu-ftpd-2.4 on my Linux-2.0.9.I want to have symbolic link into
/home/ftp. For.ex ln -s /usr/local /home/ftp/locfiles.When i do it and login
like anonymous and try to view content of linked directory ,i see"550
locfiles :No such file or directory",
When i logon like real user i may to view content of linked directory.
And second question.On my computer i have sendmail,and users who have post
account may to login like ftp users ,and may to read root directory.what i
have to do.
Best regards!
Yury V. Skobkarev
From
[email protected] Wed Oct 29 18:43:59 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA29116;
Wed, 29 Oct 1997 18:34:26 -0600 (CST)
Received: from calliope1.fm.intel.com (calliope1.fm.intel.com [132.233.247.10])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA11757
for <
[email protected]>; Wed, 29 Oct 1997 18:31:07 -0600 (CST)
Received: from pcocd2.intel.com (pcocd2.intel.com [132.233.108.99])
by calliope1.fm.intel.com (8.8.6/8.8.5) with ESMTP id QAA22774;
Wed, 29 Oct 1997 16:29:57 -0800 (PST)
Received: from fri009 (fri009.fm.intel.com [132.233.112.48])
by pcocd2.intel.com (8.8.5/8.8.5) with SMTP id QAA22777;
Wed, 29 Oct 1997 16:29:56 -0800 (PST)
Received: by fri009 (AIX 3.2/UCB 5.64/FMDT-RS6000)
id AA173934; Wed, 29 Oct 1997 16:29:56 -0800
Message-Id: <9710300029.AA173934@fri009>
Date: Wed, 29 Oct 1997 16:29:56 -0800 (PST)
Reply-To:
[email protected]
Sender:
[email protected]
From: "James T. Roberts - MD6 ~" <
[email protected]>
To:
[email protected] (Tianyu Li D'Amore)
Cc:
[email protected],
[email protected],
[email protected],
[email protected],
[email protected]
Subject: Re: AFS & anon ftp/incoming
In-Reply-To: <
[email protected]> from Tianyu Li D'Amore at "Oct 29, 97 01:51:34 pm"
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4ME+ PL31 (25)]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> Just want to point out that although AFS ignore UNIX directory permissions
> and use it's ACL instead, it does honor the File permission/ownership and
> there's no ACL for files in AFS.
>
> Tina
AFS treats the owner r/w bits as public r/w bits and ignores the rest.
In other words, a UNIX "chmod u+w" effectively becomes a "chmod a+w" on an AFS
file, assuming system:anyuser write. Refer to page 2-4.15 of the TransArc
User Training Course Notes.
========================================================================
James Taylor Roberts
[email protected]
CARPE JESUS | Fight chicken abortion!
SEIZE THE WAY | Boycott eggs!
The opinions expressed herein are not necessarily Intel's. Actually if
they had any opinions whatsoever on egg-eating, I'd be surprised....
========================================================================
From
[email protected] Wed Oct 29 21:38:23 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id VAA14248;
Wed, 29 Oct 1997 21:30:56 -0600 (CST)
Received: from differential.com ([204.152.97.192])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id VAA22983
for <
[email protected]>; Wed, 29 Oct 1997 21:28:22 -0600 (CST)
Received: (from jevans@localhost) by differential.com (8.8.0/8.6.9) id TAA20054; Wed, 29 Oct 1997 19:27:57 -0800 (PST)
Message-Id: <
[email protected]>
Date: Wed, 29 Oct 1997 19:27:57 -0800 (PST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Dave Jevans <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: question
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Yury
>I have wu-ftpd-2.4 on my Linux-2.0.9.I want to have symbolic link into
>/home/ftp. For.ex ln -s /usr/local /home/ftp/locfiles.When i do it and login
>like anonymous and try to view content of linked directory ,i see"550
>locfiles :No such file or directory",
This is because your anonymous ftp users are "chrooted" into the
/home/ftp directory. This means taht the operating system
will not allow them to access files outside of /home/ftp.
If you put a symbolic link to an external file, such as /usr/local,
then when the wu-ftpd tries to follow that symlink, it is not
permitted by the operating system, and you see the 550 error.
Normal users will be able to see the symlink, because wu-ftpd
does not chroot them into their home directories.
You will have to copy the files from /usr/local into your
/home/ftp/locfiles/ directory for anonymous users to see them.
This chrooting is done as a security precaution for anonymous users.
DJ
---
David Jevans
http://www.differential.com
Email:
[email protected] Phone: (408) 864-0603
Secure FTP and Extranet data management.
www.filedrive.com
From
[email protected] Thu Oct 30 01:05:17 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id AAA04347;
Thu, 30 Oct 1997 00:58:23 -0600 (CST)
Received: from malmo.trab.se (malmo.trab.se [131.115.48.10])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id AAA05158
for <
[email protected]>; Thu, 30 Oct 1997 00:57:21 -0600 (CST)
Received: from linkoping.trab.se (helios.linkoping.trab.se [131.115.46.4]) by malmo.trab.se (8.7.5/TRAB-primary-2) with ESMTP id HAA05648; Thu, 30 Oct 1997 07:56:46 +0100 (MET)
Received: from helios.linkoping.trab.se (helios.linkoping.trab.se [131.115.46.4]) by linkoping.trab.se (8.8.3/TRAB-secondary-1) with SMTP id HAA27777; Thu, 30 Oct 1997 07:56:46 +0100 (MET)
Message-Id: <Roam.SIMC.2.0.6.878194606.10916.ath@helios>
Date: Thu, 30 Oct 1997 07:56:46 +0100 (MET)
Reply-To: Anders Thulin <
[email protected]>
Sender:
[email protected]
From: Anders Thulin <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: Solaris crashing...
In-Reply-To: "Your message with ID" <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; CHARSET=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Skye Poier writes:
> Having a bizarre problem with wu-ftpd under Solaris 2.5.1 - [...]
> I can connect fine, transfer files, but as soon as I close the session the
> server reboots!
I have seen a similar problem on Solaris 2.4, but ... it seemed related
to uploaded data. As soon as I uploaded a particular file, the system
crashed during the upload. It could not be repeated on another 2.4 system
with slightly different setup (memory, other net configuration, etc.)
At first I thought it was a weird memory overrun problem, but Purify never
complained on that other system, so I never found it. (Couldn't test the
first system -- a heavily used production system.)
Haven't seen the problem since, so I have no idea what it could have been,
or if it is still there. We have applied patches, so it might have been a
Solaris bug.
Check that you have all recommended network and kernel patches installed.
Anders Thulin
[email protected] 013-23 55 32
Telia Engineering AB, Teknikringen 6, S-583 30 Linkoping, Sweden
From
[email protected] Thu Oct 30 08:25:39 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id IAA01325;
Thu, 30 Oct 1997 08:08:21 -0600 (CST)
Received: from spin.ch (
[email protected] [194.209.46.3])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id IAA09758
for <
[email protected]>; Thu, 30 Oct 1997 08:03:27 -0600 (CST)
Received: from localhost (tpo2@localhost)
by spin.ch (8.8.5/8.8.5) with SMTP id QAA30470;
Thu, 30 Oct 1997 16:02:13 GMT
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 16:02:13 +0000 (GMT)
Reply-To:
[email protected]
Sender:
[email protected]
From: "T's Mailing Lists" <
[email protected]>
To: "James O'Byrne" <
[email protected]>
Cc:
[email protected]
Subject: Re: I made a change...Home dir
In-Reply-To: <
[email protected]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Bizzare - on my machine (Linux) a user without homedir (i.e.
nonsens-homedir like /this/is/no/homedir) doesn't get an access at all...
*
t
On Tue, 28 Oct 1997, James O'Byrne wrote:
> I noticed when logging in, a user who had no home dir, was given access
> to the /. This was unacceptable, so I made some changes to the source.
>
> Sysadmins now have the choice of detering users sans home dir from
> logging in with the -h (I just picked that as it was unused) option in
> inetd.conf
>
> the program operates normally without the -h.
>
> I had not seen anything in your faq or patch readme files concerning
> this.
--------------------------------------------------------------------------------
Tomas Pospisek's mailing-lists mailbox
www.SPIN.ch - Internet Services in Graubuenden/Switzerland
--------------------------------------------------------------------------------
Tom: So far, der winter kommt, ich schaff mir glaub ich noch ein paar
Tom: Zyxel traffos an...
Roli: Aber genug davon nehmen. Wenn die Dinger kapput gehen werden sie
Roli: nicht mehr warm.
From
[email protected] Thu Oct 30 10:17:11 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA13607;
Thu, 30 Oct 1997 10:08:36 -0600 (CST)
Received: from ns.cvzoom.net (ns.cvzoom.net [208.226.154.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA08380
for <
[email protected]>; Thu, 30 Oct 1997 10:05:41 -0600 (CST)
Received: from cvzoom.net ([208.226.154.4])
by ns.cvzoom.net (8.8.7/8.8.7) with ESMTP id LAA08406
for <
[email protected]>; Thu, 30 Oct 1997 11:04:23 -0500 (EST)
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 11:09:29 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael J Farina <
[email protected]>
To:
[email protected]
Subject: /dev/zero
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.03 [en] (WinNT; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I am using Solaris 2.6 and I am having problems with /dev/zero please
help!
From
[email protected] Thu Oct 30 10:30:54 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA16489;
Thu, 30 Oct 1997 10:22:36 -0600 (CST)
Received: from nms.rz.uni-kiel.de (nms100.rz.uni-kiel.de [134.245.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA17478
for <
[email protected]>; Thu, 30 Oct 1997 10:14:29 -0600 (CST)
Received: from marvin.bwl.uni-kiel.de by nms.rz.uni-kiel.de
with Local-SMTP (PP) id <
[email protected]>;
Thu, 30 Oct 1997 17:19:31 +0100
Received: by marvin.bwl.uni-kiel.de (AIX 3.2/UCB 5.64/4.03) id AA37574;
Thu, 30 Oct 1997 16:54:01 +0100
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 16:54:01 +0100 (NFT)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Josef Siemes)
To:
[email protected]
Cc:
[email protected] (wu-ftp Mailinglist)
Subject: Re: /dev/zero
In-Reply-To: <
[email protected]> from "Michael J Farina" at Oct 30, 97 11:09:29 am
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>
> I am using Solaris 2.6 and I am having problems with /dev/zero please
> help!
Which problems do you have? If you don't tell them, we can't answer them.
You should also have a look at
http://www.landfield.com/wu-ftpd/, and especially for Solaris
http://www.teleport.com/~minerva/wu-ftpd/wuftpd.shtml for all the libraries
and devices needed for solaris.
Josef Siemes,
[email protected]
From
[email protected] Thu Oct 30 10:45:37 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA23464;
Thu, 30 Oct 1997 10:38:31 -0600 (CST)
Received: from ns.cvzoom.net ([208.226.154.5])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id KAA18994
for <
[email protected]>; Thu, 30 Oct 1997 10:29:56 -0600 (CST)
Received: from cvzoom.net ([208.226.154.4])
by ns.cvzoom.net (8.8.7/8.8.7) with ESMTP id LAA08464;
Thu, 30 Oct 1997 11:28:42 -0500 (EST)
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 11:33:49 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael J Farina <
[email protected]>
To: Josef Siemes <
[email protected]>
Cc: wu-ftp Mailinglist <
[email protected]>
Subject: Re: /dev/zero
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.03 [en] (WinNT; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
ld.so.1: /bin/ls: /dev/zero: open failed: No shuch file or dir
killed
And /dev is on a seperate partision so how doI get it in the right place?
Josef Siemes wrote:
> >
> > I am using Solaris 2.6 and I am having problems with /dev/zero please
> > help!
>
> Which problems do you have? If you don't tell them, we can't answer them.
>
> You should also have a look at
>
http://www.landfield.com/wu-ftpd/, and especially for Solaris
>
http://www.teleport.com/~minerva/wu-ftpd/wuftpd.shtml for all the libraries
> and devices needed for solaris.
>
> Josef Siemes,
>
[email protected]
From
[email protected] Thu Oct 30 10:54:50 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA13882;
Thu, 30 Oct 1997 10:46:15 -0600 (CST)
Received: from nms.rz.uni-kiel.de (nms100.rz.uni-kiel.de [134.245.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id KAA26386
for <
[email protected]>; Thu, 30 Oct 1997 10:34:01 -0600 (CST)
Received: from marvin.bwl.uni-kiel.de by nms.rz.uni-kiel.de
with Local-SMTP (PP) id <
[email protected]>;
Thu, 30 Oct 1997 17:39:10 +0100
Received: by marvin.bwl.uni-kiel.de (AIX 3.2/UCB 5.64/4.03) id AA26726;
Thu, 30 Oct 1997 17:13:41 +0100
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 17:13:41 +0100 (NFT)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Josef Siemes)
To:
[email protected] (Michael J Farina)
Cc:
[email protected] (wu-ftp Mailinglist)
Subject: Re: /dev/zero
In-Reply-To: <
[email protected]> from "Michael J Farina" at Oct 30, 97 11:33:49 am
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>
> ld.so.1: /bin/ls: /dev/zero: open failed: No shuch file or dir
> killed
>
> And /dev is on a seperate partision so how doI get it in the right place?
You need to set up /dev and perhaps also /usr/lib in your chrooted tree.
As I said, look at the FAQs, it's there in detail. Here are the URLs again:
> > You should also have a look at
> >
http://www.landfield.com/wu-ftpd/, and especially for Solaris
> >
http://www.teleport.com/~minerva/wu-ftpd/wuftpd.shtml for all the libraries
> > and devices needed for solaris.
Josef Siemes,
[email protected]
From
[email protected] Thu Oct 30 13:03:01 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id MAA00693;
Thu, 30 Oct 1997 12:50:12 -0600 (CST)
Received: from fionn.es.net (fionn.es.net [198.128.1.30])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id MAA03364
for <
[email protected]>; Thu, 30 Oct 1997 12:45:29 -0600 (CST)
Received: from fionn.es.net (localhost [127.0.0.1])
by fionn.es.net (LBNLMWH11/LBNLMWH09/ESOCF2) with ESMTP id KAA23282
for <
[email protected]>; Thu, 30 Oct 1997 10:45:13 -0800 (PST)
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 10:45:12 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Helm <
[email protected]>
To:
[email protected]
Subject: identd & wu-2.4.2-academ[BETA-15](1)
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Solaris 2.5.1 server ; wu-2.4.2-academ[BETA-15](1)
Trying to use identd (%u macro). Always get "[unknown]".
tcpd (tcp wrappers) can pick up the occasional ident entry.
What do I need to do to get wu-ftpd to do an ident query,
or is this broken? Looking at some source, extensions.c
line 279:
/* KH : cookie %u for RFC931 name */
case 'u':
if (authenticated) strncpy(outptr, authuser, 24);
else strcpy(outptr,"[unknown]");
*(outptr + 24) = '\0';
break;
I guess it doesn't do anything like an ident query? Or only
under some circumstances? Any ideas?
[You needn't tell me about the utility or security of identd;
I know all about it, but need it anyway]
Thanks, ==mwh
From
[email protected] Thu Oct 30 13:24:10 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA21679;
Thu, 30 Oct 1997 13:14:13 -0600 (CST)
Received: from relay4.smtp.psi.net (relay4.smtp.psi.net [38.9.52.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id NAA15157
for <
[email protected]>; Thu, 30 Oct 1997 13:09:10 -0600 (CST)
Received: from eagledes.com by relay4.smtp.psi.net (8.8.3/SMI-5.4-PSI)
id OAA21104; Thu, 30 Oct 1997 14:08:45 -0500 (EST)
Received: from solaris1.eagledes.com (testnet) by eagledes.com (4.1/Eagledes-4.1)
id AA09190; Thu, 30 Oct 97 11:08:33 PST
Received: by solaris1.eagledes.com (SMI-8.6/SMI-SVR4)
id LAA25789; Thu, 30 Oct 1997 11:08:32 -0800
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 11:08:32 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Michael Raymond)
To:
[email protected]
Subject: unsubscribe
X-Sun-Charset: US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
From
[email protected] Thu Oct 30 14:13:55 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA28394;
Thu, 30 Oct 1997 13:59:05 -0600 (CST)
Received: from Manassas1.TDS-GN.LMCO.COM (manassas1.tds-gn.lmco.com [128.126.170.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id NAA07396
for <
[email protected]>; Thu, 30 Oct 1997 13:53:51 -0600 (CST)
Received: from nicom.com (sharpei.tds-gn.lmco.com) by Manassas1.TDS-GN.LMCO.COM (4.1/mls/4.1)
id AA20655; Thu, 30 Oct 97 14:47:52 EST
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 14:53:08 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Zbigniew Nitecki <
[email protected]>
To:
[email protected]
Subject: tcpwrapper twist and post ftpd scripts
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="------------C455B4804404FA3FCD1363AC"
X-Sender:
[email protected]
X-Info: LMCO.COM is the new name for Reston.UnisysGSG.COM
All current Reston.UnisysGSG addresses are affected.
Lockheed Martin employees can check new user addresses at:
http://d197x.is.lmsc.lockheed.com/find-a-name/find-a-name.html
X-Mailer: Mozilla 4.03 [en] (X11; I; SunOS 5.5.1 sun4u)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
--------------C455B4804404FA3FCD1363AC
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
I've figured out how to use tcpwrapper and twist, but I need to know how
to pass
the username that logged into the ftpd name to the post-ftpd script?
We recieve transactions via ftp into various user accounts. I'd like to
spawn the
transaction processor after the ftp session is complete, but I need to
know which
transaction processor to start, this is determined by what user logged
in.
Is there a way to pass the user name from the ftpd to the follow up
shell script?
-Zbigniew
--
Email:
[email protected]
--------------C455B4804404FA3FCD1363AC
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<HTML>
I've figured out how to use tcpwrapper and twist, but I need to know how
to pass
<BR>the username that logged into the ftpd name to the post-ftpd script?
<P>We recieve transactions via ftp into various user accounts. I'd
like to spawn the
<BR>transaction processor after the ftp session is complete, but I need
to know which
<BR>transaction processor to start, this is determined by what user logged
in.
<P>Is there a way to pass the user name from the ftpd to the follow up
shell script?
<P>-Zbigniew
<PRE>--
Email:
[email protected]</PRE>
</HTML>
--------------C455B4804404FA3FCD1363AC--
From
[email protected] Thu Oct 30 16:24:36 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA17788;
Thu, 30 Oct 1997 16:12:21 -0600 (CST)
Received: from alpha.xerox.com (alpha.Xerox.COM [13.1.64.93])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA06550
for <
[email protected]>; Thu, 30 Oct 1997 16:09:02 -0600 (CST)
Received: from lynx.parc.xerox.com ([13.2.12.13]) by alpha.xerox.com with SMTP id <60858(5)>; Thu, 30 Oct 1997 14:08:26 PST
Received: from parc.xerox.com ([13.2.12.73]) by lynx.parc.xerox.com
(Netscape Mail Server v2.02) with ESMTP id AAA24165;
Thu, 30 Oct 1997 14:08:24 -0800
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 14:08:19 PST
Reply-To:
[email protected]
Sender:
[email protected]
From: "Michael Ryan" <
[email protected]>
To:
[email protected]
Cc: michael ryan <
[email protected]>, "latta, ken" <
[email protected]>
Subject: /bin/ls works for SOME but not ALL anonymous users
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.02 [en] (WinNT; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
this is NOT the typical /bin/ls problem. i have had the /bin/ls problem
in the past. have it configured so it works. box Solaris 2.5.1,
WU-FTPD 2.4.
Problem? SOME anonymous users cannot make LIST work! error message is
425 Can't build data connection: Connection timed out. however, MANY
anonymous users can get listings -- i know because we're getting a lot
of downloads and i've tried.
% chroot ~ftp /bin/ls works. truss shows only libc_psr.so.1 missing.
Examples? i can get a listing using FTP from my SUN workstation and
from
http://www.unipress.com/cgi-bin/WWWeblint. on the other hand,
logging into my SIRIUS.COM account or using my local Web Proxy, i cannot
get a listing.
this appears to be some FTP protocol error. how can i find out what's
happening?
thank you
//michael
--
:: michael ryan ,
[email protected]
:: xerox office of the net , 3400 hillview avenue , palo alto , 94304
:: 650 813 7620 , *923 7620
From
[email protected] Thu Oct 30 16:31:21 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA15729;
Thu, 30 Oct 1997 16:24:19 -0600 (CST)
Received: from nms.rz.uni-kiel.de (nms100.rz.uni-kiel.de [134.245.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA07085
for <
[email protected]>; Thu, 30 Oct 1997 16:19:37 -0600 (CST)
Received: from marvin.bwl.uni-kiel.de by nms.rz.uni-kiel.de
with Local-SMTP (PP) id <
[email protected]>;
Thu, 30 Oct 1997 23:24:49 +0100
Received: by marvin.bwl.uni-kiel.de (AIX 3.2/UCB 5.64/4.03) id AA22069;
Thu, 30 Oct 1997 22:59:19 +0100
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 22:59:19 +0100 (NFT)
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Josef Siemes)
To:
[email protected]
Cc:
[email protected] (wu-ftp Mailinglist)
Subject: Re: /bin/ls works for SOME but not ALL anonymous users
In-Reply-To: <
[email protected]> from "Michael Ryan" at Oct 30, 97 02:08:19 pm
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: ELM [version 2.4 PL24]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>
> this is NOT the typical /bin/ls problem. i have had the /bin/ls problem
> in the past. have it configured so it works. box Solaris 2.5.1,
> WU-FTPD 2.4.
>
> Problem? SOME anonymous users cannot make LIST work! error message is
> 425 Can't build data connection: Connection timed out. however, MANY
> anonymous users can get listings -- i know because we're getting a lot
> of downloads and i've tried.
Seems you have something in /dev missing, so your server can't do 'PASV'.
WU-FTPD Faq, Q. 9.13 I'd say.
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
Josef Siemes,
[email protected]
From
[email protected] Thu Oct 30 16:44:40 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA08435;
Thu, 30 Oct 1997 16:37:02 -0600 (CST)
Received: from alpha.xerox.com (alpha.Xerox.COM [13.1.64.93])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA05749
for <
[email protected]>; Thu, 30 Oct 1997 16:36:32 -0600 (CST)
Received: from lynx.parc.xerox.com ([13.2.12.13]) by alpha.xerox.com with SMTP id <60963(5)>; Thu, 30 Oct 1997 14:35:59 PST
Received: from parc.xerox.com ([13.2.12.73]) by lynx.parc.xerox.com
(Netscape Mail Server v2.02) with ESMTP id AAA24305
for <
[email protected]>; Thu, 30 Oct 1997 14:35:58 -0800
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 14:35:54 PST
Reply-To:
[email protected]
Sender:
[email protected]
From: "Michael Ryan" <
[email protected]>
To:
[email protected]
Subject: Re: /bin/ls works for SOME but not ALL anonymous users
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 4.02 [en] (WinNT; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
yow. thanks to dave jevans for making the fix obvious. yes, it was the
PASSIVE MODE problem.
setting ~ftp/dev/tcp to mode 666 solved it. mode 666 is not part of the
Solaris man ftpd but it is part of the FAQ -- which i missed.
thanks
//michael
--
:: michael ryan ,
[email protected]
:: xerox office of the net , 3400 hillview avenue , palo alto , 94304
:: 650 813 7620 , *923 7620
From
[email protected] Thu Oct 30 16:50:34 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA12783;
Thu, 30 Oct 1997 16:43:17 -0600 (CST)
Received: from fionn.es.net (fionn.es.net [198.128.1.30])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA21650
for <
[email protected]>; Thu, 30 Oct 1997 16:38:17 -0600 (CST)
Received: from fionn.es.net (localhost [127.0.0.1])
by fionn.es.net (LBNLMWH11/LBNLMWH09/ESOCF2) with ESMTP id OAA26602;
Thu, 30 Oct 1997 14:37:44 -0800 (PST)
Message-Id: <
[email protected]>
Date: Thu, 30 Oct 1997 14:37:44 -0800
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Helm <
[email protected]>
To: Koos van den Hout _U nix and we all_ <
[email protected]>
Cc:
[email protected]
Subject: Re: identd & wu-2.4.2-academ[BETA-15](1)
In-Reply-To: Your message of "Thu, 30 Oct 1997 23:20:21 +0100."
<
[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Koos van den Hout _U nix and we all_ writes:
> RFC931 lookups need to be enabled in one of the other source files...
> > I guess it doesn't do anything like an ident query? Or only
> > under some circumstances? Any ideas?
Yes! Changing to this works:
foo% more authenticate.h
/* When of the supported authentication methods the ftp server will attempt
* to use. Define as 1 to enable, 0 to disable. */
#define USE_A_RFC931 1 /* Use RFC931-style authentication */
Thanks for the pointer, ==mwh
From
[email protected] Fri Oct 31 03:44:52 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id DAA30986;
Fri, 31 Oct 1997 03:37:32 -0600 (CST)
Received: from faui40.informatik.uni-erlangen.de (
[email protected] [131.188.2.40])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id DAA32376
for <
[email protected]>; Fri, 31 Oct 1997 03:34:53 -0600 (CST)
Received: from faui46e.informatik.uni-erlangen.de (
[email protected] [131.188.2.89])
by faui40.informatik.uni-erlangen.de (8.8.7/8.1.4-FAU) with ESMTP id KAA26610; Fri, 31 Oct 1997 10:34:50 +0100 (MET)
Received: (from ehmeier@localhost)
by faui46e.informatik.uni-erlangen.de (8.8.7/8.0.30-FAU) id KAA02694; Fri, 31 Oct 1997 10:34:49 +0100 (MET)
Message-Id: <
[email protected]>
Date: Fri, 31 Oct 1997 10:34:49 +0100 (MET)
Reply-To:
[email protected]
Sender:
[email protected]
From: Erich Meier <
[email protected]>
To:
[email protected]
Cc:
[email protected],
[email protected]
Subject: Re: identd & wu-2.4.2-academ[BETA-15](1)
In-Reply-To: <
[email protected]> from Michael Helm at "Oct 30, 97 02:37:44 pm"
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Mailer: ELM [version 2.4ME+ PL35 (25)]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> Koos van den Hout _U nix and we all_ writes:
> > RFC931 lookups need to be enabled in one of the other source files...
>
> > > I guess it doesn't do anything like an ident query? Or only
> > > under some circumstances? Any ideas?
>
> Yes! Changing to this works:
>
> foo% more authenticate.h
> /* When of the supported authentication methods the ftp server will attempt
> * to use. Define as 1 to enable, 0 to disable. */
>
> #define USE_A_RFC931 1 /* Use RFC931-style authentication */
>
> Thanks for the pointer, ==mwh
This should really go into the config.h file. Nobody (including myself ;-) will
find it in src/authenticate.h.
My 2 Pfennig,
Erich
--
Erich Meier
[email protected]
http://www4.informatik.uni-erlangen.de/~meier
"A good lock does not help when the door is missing." - Wietse Venema
From
[email protected] Fri Oct 31 11:22:44 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id LAA31116;
Fri, 31 Oct 1997 11:15:07 -0600 (CST)
Received: from vixa.voyager.net (vixa.voyager.net [198.109.136.2])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id LAA07606
for <
[email protected]>; Fri, 31 Oct 1997 11:06:33 -0600 (CST)
Received: from vixkc.Voyager.net (kelly.voyager.net [198.109.190.100])
by vixa.voyager.net (8.8.7/8.8.7) with SMTP id MAA12503
for <
[email protected]>; Fri, 31 Oct 1997 12:05:20 -0500 (EST)
Message-Id: <
[email protected]>
Date: Fri, 31 Oct 1997 12:04:55 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From: Kelly Climer <
[email protected]>
To:
[email protected]
Subject: Problem with secure ftp being slow
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 3.0GoldC-KIT (Win95; I)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
I setup wu-ftpd on a Sparc 5 running Solaris 2.5.1. It works fine for a
root login but not for "joe" user.
Joe user is forced into a secure area like an anonymous user so that
they can't pillage the machine. The problem is that the "ls" command
takes 2 to 4 minutes to respond. Upload and download work fine and if
you ftp as root it works great.
I copied all of the lib's recommended in the Solaris doc.
After that didn't work I got GNU ls and loaded that in the ~ftp/bin
directory and that didn't help.
I have been using truss to trace that commands and it looks like on of
the reads just before the output is going to sleep.
Any ideas?
Thanks,
Kelly Climer
Network Operations Manager
Voyager Information Networks
From
[email protected] Fri Oct 31 15:29:32 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA20386;
Fri, 31 Oct 1997 15:22:10 -0600 (CST)
Received: from MIT.EDU (SOUTH-STATION-ANNEX.MIT.EDU [18.72.1.2])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id PAA20212
for <
[email protected]>; Fri, 31 Oct 1997 15:15:56 -0600 (CST)
Received: from STARKILLER.MIT.EDU by MIT.EDU with SMTP
id AA01774; Fri, 31 Oct 97 16:15:44 EST
Received: by starkiller.MIT.EDU (SMI-8.6/4.7) id QAA08819; Fri, 31 Oct 1997 16:15:42 -0500
Message-Id: <
[email protected]>
Date: Fri, 31 Oct 1997 16:15:42 EST
Reply-To:
[email protected]
Sender:
[email protected]
From: Kev <
[email protected]>
To:
[email protected] (Stan Barber)
Cc: Kev <
[email protected]>,
[email protected],
[email protected],
[email protected]
Subject: Re: [ACADEM-SW-SUPPORT #508] #2 in the reply() and lreply() bogon saga
X-Sender:
[email protected]
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
> > Since I'm rewriting these functions anyway for doing the GSSAPI authentication
> > stuff, what I've planned on doing is simply ripping the existing code out
> > and replacing it with two functions, reply() and lreply(), that call out to
> > a single function, vreply(), which builds the numeric string, does encryption
> > if necessary, does the debugging syslog, and returns. If you desire (which
> > I presume you will), I can submit a patch which does the proper replacement
> > as soon as I get to the point where it's been tested and proven to have
> > some reasonable pretext of working without bugs :)
>
> Great!
I've been lame, but here, finally, is the promised patch, in unified
format (if you request another format, I can be convinced to deal).
Cursory testing has been performed; lreply(), reply(), and autospout
support all seem to work as expected.
------ Patch begins ------
--- new/wu-ftpd-2.4.2-beta-15/src/ftpd.c Fri Sep 12 11:42:46 1997
+++ reply/wu-ftpd/src/ftpd.c Fri Oct 31 16:09:39 1997
@@ -2685,145 +2685,112 @@
/* NOTREACHED */
}
+#define USE_REPLY_NOTFMT (1<<30) /* fmt is not a printf fmt (KLUDGE) */
+#define USE_REPLY_LONG (1<<31) /* this is a long reply; use a - */
+
void
-#if defined (HAVE_VPRINTF)
-/* VARARGS2 */
#ifdef __STDC__
-reply(int n, char *fmt, ...)
+vreply(long flags, int n, char *fmt, va_list ap)
#else
-reply(n, fmt, va_alist)
+vreply(flags, n, fmt, ap)
+ long flags;
int n;
char * fmt;
- va_dcl
+ va_list ap;
#endif
{
- VA_LOCAL_DECL
-
- VA_START(fmt);
+ char buf[BUFSIZ];
- if (autospout != NULL) {
- char *ptr = autospout;
+ flags &= USE_REPLY_NOTFMT | USE_REPLY_LONG;
- printf("%d-", n);
- while (*ptr) {
- if (*ptr == '\n') {
- fputs("\r\n", stdout);
- if (*(++ptr))
- printf("%03d-", n);
- } else {
- putc(*ptr++,stdout);
- }
- }
- if (*(--ptr) != '\n')
- printf("\r\n");
- if (autospout_free) {
- (void) free(autospout);
- autospout_free = 0;
- }
- autospout = 0;
- }
- printf("%d ", n);
- vprintf(fmt, ap);
- printf("\r\n");
- (void) fflush(stdout);
+ if (n) /* if numeric is 0, don't output one; use n==0 in place of printf's */
+ sprintf(buf, "%d%c", n, flags & USE_REPLY_LONG ? '-' : ' ');
- if (debug) {
- char buf[BUFSIZ];
- (void) vsprintf(buf, fmt, ap);
+ /* This is somewhat of a kludge for autospout. I personally think that
+ * autospout should be done differently, but that's not my department. -Kev
+ */
+ if (flags & USE_REPLY_NOTFMT)
+ sprintf(buf + (n ? 4 : 0), "%s", fmt);
+ else
+ vsprintf(buf + (n ? 4 : 0), fmt, ap);
- syslog(LOG_DEBUG, "<--- %d ", n);
- syslog(LOG_DEBUG, "%s", buf);
- }
+ if (debug) /* debugging output :) */
+ syslog(LOG_DEBUG, "<--- %s", buf);
- VA_END;
+ /* Yes, you want the debugging output before the client output; wrapping
+ * stuff goes here, you see, and you want to log the cleartext and send
+ * the wrapped text to the client.
+ */
+
+ printf("%s\r\n", buf); /* and send it to the client */
+ fflush(stdout);
}
void
-/* VARARGS2 */
#ifdef __STDC__
-lreply(int n, char *fmt,...)
+reply(int n, char *fmt, ...)
#else
-lreply(n, fmt, va_alist)
+reply(n, fmt, va_alist)
int n;
char * fmt;
va_dcl
#endif
{
- VA_LOCAL_DECL
+ VA_LOCAL_DECL
- VA_START(fmt);
+ if (autospout != NULL) { /* deal with the autospout stuff... */
+ char *p, *ptr = autospout;
- if (!dolreplies)
- return;
- printf("%d-", n);
- vprintf(fmt, ap);
- printf("\r\n");
- (void) fflush(stdout);
+ while (*ptr) {
+ if ((p = strchr(ptr, '\n')) != NULL) /* step through line by line */
+ *p = '\0';
- if (debug) {
- char buf[BUFSIZ];
- (void) vsprintf(buf, fmt, ap);
+ /* send a line...(note that this overrides dolreplies!) */
+ vreply(USE_REPLY_LONG | USE_REPLY_NOTFMT, n, ptr, 0);
- syslog(LOG_DEBUG, "<--- %d- ", n);
- syslog(LOG_DEBUG, "%s",buf);
+ if (p)
+ ptr = p + 1; /* set to the next line... (\0 is handled in the while) */
+ else
+ break; /* oh, we're done; drop out of the loop */
}
- VA_END;
-}
+ if (autospout_free) { /* free autospout if necessary */
+ (void) free(autospout);
+ autospout_free = 0;
+ }
+ autospout = 0; /* clear the autospout */
+ }
-#else
-/* VARARGS2 */
-void
-reply(int n, char *fmt, int p0, int p1, int p2, int p3, int p4, int p5)
-{
- if (autospout != NULL) {
- char *ptr = autospout;
+ VA_START(fmt);
- printf("%d-", n);
- while (*ptr) {
- if (*ptr == '\n') {
- printf("\r\n");
- if (*(++ptr))
- printf("%d-", n);
- } else {
- putc(*ptr++,stdout);
- }
- }
- if (*(--ptr) != '\n')
- printf("\r\n");
- if (autospout_free) {
- (void) free(autospout);
- autospout_free = 0;
- }
- autospout = 0;
- }
- printf("%d ", n);
- printf(fmt, p0, p1, p2, p3, p4, p5);
- printf("\r\n");
- (void) fflush(stdout);
- if (debug) {
- syslog(LOG_DEBUG, "<--- %d ", n);
- syslog(LOG_DEBUG, fmt, p0, p1, p2, p3, p4, p5);
- }
+ /* send the reply */
+ vreply(0, n, fmt, ap);
+
+ VA_END;
}
void
-/* VARARGS2 */
-void
-lreply(int n, char *fmt, int p0, int p1, int p2, int p3, int p4, int p5)
+#ifdef __STDC__
+lreply(int n, char *fmt, ...)
+#else
+lreply(n, fmt, va_alist)
+ int n;
+ char * fmt;
+ va_dcl
+#endif
{
- if (!dolreplies)
- return;
- printf("%d-", n);
- printf(fmt, p0, p1, p2, p3, p4, p5);
- printf("\r\n");
- (void) fflush(stdout);
- if (debug) {
- syslog(LOG_DEBUG, "<--- %d- ", n);
- syslog(LOG_DEBUG, fmt, p0, p1, p2, p3, p4, p5);
- }
+ VA_LOCAL_DECL
+
+ if (!dolreplies) /* prohibited from doing long replies? */
+ return;
+
+ VA_START(fmt);
+
+ /* send the reply */
+ vreply(USE_REPLY_LONG, n, fmt, ap);
+
+ VA_END;
}
-#endif
void
#ifdef __STDC__
--
Kevin L. Mitchell
[email protected]
-----------------------------------------------------------------------------
MIT Kerberos Development Team Work: (617) 253-9483
http://web.mit.edu/klmitch/www/ PGP keys available upon request
From
[email protected] Fri Oct 31 17:05:46 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id QAA03232;
Fri, 31 Oct 1997 16:58:25 -0600 (CST)
Received: from glass.i3tele.com (glass.i3tele.com [204.178.210.23])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id QAA05267
for <
[email protected]>; Fri, 31 Oct 1997 16:57:13 -0600 (CST)
Received: by glass.i3tele.com with Internet Mail Service (5.0.1458.49)
id <V5KJ7S15>; Fri, 31 Oct 1997 17:56:40 -0500
Message-Id: <
[email protected]>
Date: Fri, 31 Oct 1997 17:56:31 -0500
Reply-To: <
[email protected]>
Sender:
[email protected]
From: Mark Rogov <
[email protected]>
To:
[email protected]
Subject: Virtual Ftp under Solaris and posibly SunOS
MIME-Version: 1.0
Content-Type: text/plain
X-Priority: 3
X-Mailer: Internet Mail Service (5.0.1458.49)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hello!
I set up ftp for Solaris and SunOS using FAQs and Documentation for
wuftd,
however, I still have a question about virtual ftp access.
Lets consider Solaris 2.5.2. I have ftpaccess file and passwd configured
so user directory would be chrooted after login. Works fine.
But every single acct has to have the following structure:
--------------------
/.
/.. -- this dir is getting chrooted
/bin
- ls
/dev
- tcp
- zero
/usr/lib
- ld.so
- libc.so.1.9
- libdl.so.1.0 | this one, I think, is not nessesary, but it is
not a point now.
/pub
- whatever customer has in there
---------------------
/bin, /dev, /usr are owned by root (755 permissions)
I'd like to move /bin, /dev, /usr/lib to a permanent location (one place
instead of every ftp acct dir), so everyone would be able to use them,
yet /pub (or in this case /..) would get chrooted.
Is that possible? If yes, how?
Thnk you.
--
Mark Rogov
I-3 Telecom, Inc.
Tel: 212-691-9300
Fax: 212-691-9846
[email protected]
http://www.i3tele.com/~mark
From
[email protected] Fri Oct 31 17:17:18 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA31467;
Fri, 31 Oct 1997 17:10:10 -0600 (CST)
Received: from dinosaur.privsys.gip.net (dinosaur.gip.net [204.59.155.63])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA08602
for <
[email protected]>; Fri, 31 Oct 1997 17:05:47 -0600 (CST)
Received: from dinosaur by dinosaur.privsys.gip.net (SMI-8.6/SMI-SVR4)
id SAA29010; Fri, 31 Oct 1997 18:08:15 -0500
Message-Id: <Pine.GSO.3.96.971031174849.28646A-100000@dinosaur>
Date: Fri, 31 Oct 1997 18:08:15 -0500 (EST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Ming Lu <
[email protected]>
To:
[email protected]
Subject: How could I set up a guestonly account with wu-ftpd?
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Sender: mlu@dinosaur
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Hi all:
I would know How I could set up a guestonly account with wu-ftpd.. Is
there any example on the internet.
Thanis in advance.
_ming
From
[email protected] Fri Oct 31 17:17:45 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA04743;
Fri, 31 Oct 1997 17:11:03 -0600 (CST)
Received: from dinosaur.privsys.gip.net (dinosaur.gip.net [204.59.155.63])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA27222
for <
[email protected]>; Fri, 31 Oct 1997 17:09:14 -0600 (CST)
Received: by dinosaur.privsys.gip.net (SMI-8.6/SMI-SVR4)
id SAA29059; Fri, 31 Oct 1997 18:11:47 -0500
Message-Id: <
[email protected]>
Date: Fri, 31 Oct 1997 18:11:47 -0500
Reply-To:
[email protected]
Sender:
[email protected]
From:
[email protected] (Ming Lu)
To:
[email protected]
Subject: test
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
test
From
[email protected] Fri Oct 31 17:42:23 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id RAA20567;
Fri, 31 Oct 1997 17:35:32 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id RAA26730
for <
[email protected]>; Fri, 31 Oct 1997 17:29:03 -0600 (CST)
Received: from ns1.fni.com (ns1.fni.com [204.181.104.1])
by ns1.fni.com (8.8.7/8.8.7) with SMTP id RAA25089;
Fri, 31 Oct 1997 17:29:08 -0600
Message-Id: <
[email protected]>
Date: Fri, 31 Oct 1997 17:29:08 -0600 (CST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Michael Brennen <
[email protected]>
To: Ming Lu <
[email protected]>
Cc:
[email protected]
Subject: Re: How could I set up a guestonly account with wu-ftpd?
In-Reply-To: <Pine.GSO.3.96.971031174849.28646A-100000@dinosaur>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
On Fri, 31 Oct 1997, Ming Lu wrote:
> I would know How I could set up a guestonly account with wu-ftpd.. Is
> there any example on the internet.
This is the location for the latest wu-ftpd. You can't see the
directory contents, but get the file anyway. It's there.
ftp://ftp.academ.com/pub/wu-ftpd/private/wu-ftpd-2.4.2-beta-15.tar.Z
wu-ftpd FAQ:
http://www.cetis.hvu.nl/~koos/wu-ftpd-faq.html
OR
send mail to
[email protected]
with a subject line: send faq
guest howto:
ftp://ftp.fni.com/pub/wu-ftpd/guest-howto
OR
send mail to "
[email protected]"
(immediate autoresponder; subject does not matter)
wu-ftpd Resource Center:
http://www.landfield.com/wu-ftpd/
wu-ftpd list archive:
http://www.landfield.com/wu-ftpd/mail-archive/
There are additional security references in the above docs.
From
[email protected] Fri Oct 31 18:39:28 1997
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id SAA32187;
Fri, 31 Oct 1997 18:32:45 -0600 (CST)
Received: from differential.com (differential.com [204.152.97.192])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id SAA06469
for <
[email protected]>; Fri, 31 Oct 1997 18:28:44 -0600 (CST)
Received: (from jevans@localhost) by differential.com (8.8.0/8.6.9) id QAA07795; Fri, 31 Oct 1997 16:28:16 -0800 (PST)
Message-Id: <
[email protected]>
Date: Fri, 31 Oct 1997 16:28:16 -0800 (PST)
Reply-To:
[email protected]
Sender:
[email protected]
From: Dave Jevans <
[email protected]>
To:
[email protected]
Cc:
[email protected]
Subject: Re: Virtual Ftp under Solaris and posibly SunOS
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
>Lets consider Solaris 2.5.2. I have ftpaccess file and passwd configured
>so user directory would be chrooted after login. Works fine.
>But every single acct has to have the following structure:
>[description of /bin/dev/usr/lib/]
>I'd like to move /bin, /dev, /usr/lib to a permanent location (one place
Mark,
This is not possible with wu-ftpd on Solaris.
This can be done with FileDrive EX ftpd (a commercial server
based on wu-ftpd), because it supports "virtual chroot".
This locks users into their home dirs, but does not require
a copy of the O/S directories.
Check it out at
http://www.filedrive.com
DJ
---
David Jevans
http://www.differential.com
Email:
[email protected] Phone: (408) 864-0603
Secure FTP and Extranet data management.
www.filedrive.com
From
[email protected] Fri Oct 31 19:58:11 1997
Received: from relay3.UU.NET by relay3.UU.NET with ESMTP
(peer crosschecked as: root@localhost)
id QQdnsh22186; Fri, 31 Oct 1997 20:57:35 -0500 (EST)
Received: from wugate.wustl.edu by relay3.UU.NET with ESMTP
(peer crosschecked as: wugate.wustl.edu [128.252.120.1])
id QQdnsh22182; Fri, 31 Oct 1997 20:57:34 -0500 (EST)
Received: from host (wugate.wustl.edu [128.252.120.1])
by wugate.wustl.edu (8.8.5/8.8.5) with SMTP id TAA01970;
Fri, 31 Oct 1997 19:49:57 -0600 (CST)
Received: from uswgco3.uswc.uswest.com (uswgco3.uswest.com [206.196.133.82])
by wugate.wustl.edu (8.8.5/8.8.5) with ESMTP id TAA11856
for <
[email protected]>; Fri, 31 Oct 1997 19:47:51 -0600 (CST)
Received: from egate.mnet.uswest.com (egate-co1.mnet.uswest.com [151.119.130.8])
by uswgco3.uswc.uswest.com (8.8.5/8.8.5) with ESMTP id SAA16093
for <
[email protected]>; Fri, 31 Oct 1997 18:47:14 -0700 (MST)
Received: from easthub.mnet.uswest.com (easthub.mnet.uswest.com [151.117.26.86]) by egate.mnet.uswest.com (8.7.1/8.7.1) with SMTP id SAA08770 for <
[email protected]>; Fri, 31 Oct 1997 18:47:15 -0700 (MST)
Received: from netmail2.mnet.uswest.com (netmail2.mnet.uswest.com [151.119.114.11]) by easthub.mnet.uswest.com (8.6.11/8.6.11) with ESMTP id TAA16023 for <
[email protected]>; Fri, 31 Oct 1997 19:54:07 -0600
Received: from pcs-chekov ([151.116.59.56]) by netmail2.mnet.uswest.com
(Netscape Mail Server v2.02) with SMTP id AAA420
for <
[email protected]>; Fri, 31 Oct 1997 18:47:09 -0700
Message-Id: <
[email protected]>
Date: Fri, 31 Oct 1997 18:50:42 -0700
Reply-To:
[email protected]
Sender:
[email protected]
From: Brad Waite <
[email protected]>
To: wu-ftpd <
[email protected]>
Subject: Re: Different classes of guests
References: <
[email protected]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender:
[email protected]
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 sun4m)
X-Listprocessor-Version: 8.0 -- ListProcessor(tm) by CREN
Okay, folks. Slapped something together that give a bit more
flexibility in setting up guest access. I've added a naming function to
the guestgroup keyword in ftpacess, as well as a new 'guestuser'
keyword. The entries would look something like this:
guestgroup gumbies user nobody
guestgroup gumps root bin sys
guestuser gimps fred barney
And the corresponding class line would be:
class local1 real,gumps,anonymous localhost
class local2 gimps,gumbies localhost
You'll notice that the 'guest' variable is still set, and everything
else functions as usual - this just add the capability of refining the
classes. I'm working on incorporating the guestgroup names into the
rest of the code, but it's a bigger project.
-Brad Waite
---- Cut here ----
(sorry about the cheesy diff - don't have diffutils handy. And don't
count on the new version's line numbers to be correct - I've done some
other hacking.)
*** ftpd-orig.c Fri Oct 31 18:00:29 1997
--- ftpd.c Fri Oct 31 18:02:38 1997
***************
*** 247,252 ****
--- 247,253 ----
int anonymous = 1;
int guest;
+ char guestname[256]; /* guest group name */
int type;
int form;
int stru; /* avoid C keyword */
****************
*** 1252,1258 ***
/* if user is a member of any of the guestgroups, cause a
chroot() */
/* after they log in
successfully */
if (use_accessfile) /* see above. _H*/
! guest = acl_guestgroup(pw);
}
if (access_ok(530) < 1) {
reply(530, "User %s access denied.", name);
--- 1260,1266 ----
/* if user is a member of any of the guestgroups, cause a
chroot() */
/* after they log in
successfully */
if (use_accessfile) /* see above. _H*/
! guest = (acl_guestuser(pw) || acl_guestgroup(pw));
}
if (access_ok(530) < 1) {
reply(530, "User %s access denied.", name);
*** access-orig.c Fri Oct 31 18:07:54 1997
--- access.c Fri Oct 31 17:18:58 1997
***************
*** 60,68 ****
#include <fcntl.h>
#endif
extern char remotehost[],
remoteaddr[],
! *aclbuf;
extern int nameserved,
anonymous,
guest,
--- 60,68 ----
#include <fcntl.h>
#endif
extern char remotehost[],
remoteaddr[],
! *aclbuf, guestname[];
extern int nameserved,
anonymous,
guest,
***************
*** 262,277 ****
int which;
char **member;
! /* guestgroup <group> [<group> ...] */
while (getaclentry("guestgroup", &entry)) {
! for (which = 0; (which < MAXARGS) && ARG[which]; which++) {
if (!(grp = getgrnam(ARG[which])))
continue;
! if (pw->pw_gid == grp->gr_gid)
! return (1);
for (member = grp->gr_mem; *member; member++) {
! if (!strcmp(*member, pw->pw_name))
! return (1);
}
}
}
--- 268,287 ----
int which;
char **member;
! /* guestgroup <groupname> <group> [<group> ...] */
while (getaclentry("guestgroup", &entry)) {
! for (which = 1; (which < MAXARGS) && ARG[which]; which++) {
if (!(grp = getgrnam(ARG[which])))
continue;
! if (pw->pw_gid == grp->gr_gid){
! strcpy(guestname,ARG0);
! return (1);
! }
for (member = grp->gr_mem; *member; member++) {
! if (!strcmp(*member,
pw->pw_name)){
! strcpy(guestname,ARG0);
! return (1);
! }
}
}
}
***************
*** 452,462 ****
strcpy(classbuf, ARG0);
for (which = 2; (which < MAXARGS) && ARG[which]; which++) {
if (anonymous && strcasestr(ARG1, "anonymous") &&
hostmatch(ARG[which]))
return (1);
! if (guest && strcasestr(ARG1, "guest") &&
hostmatch(ARG[which]))
return (1);
if (!guest && !anonymous && strcasestr(ARG1, "real") &&
--- 462,472 ----
strcpy(classbuf, ARG0);
for (which = 2; (which < MAXARGS) && ARG[which]; which++) {
if (anonymous && strcasestr(ARG1, "anonymous") &&
hostmatch(ARG[which]))
! if (guest && strcasestr(ARG1, guestname) &&
hostmatch(ARG[which]))
return (1);
if (!guest && !anonymous && strcasestr(ARG1, "real") &&
***************
*** 910,913 ****
--- 910,945 ----
}
/* NOTREACHED */
+ }
+
/*************************************************************************/
+ /* FUNCTION :
acl_guestuser */
+ /* PURPOSE : If the real user is the same as one of the listed
users, */
+ /* return 1. Otherwise return
0. */
+ /* ARGUMENTS : pw, a pointer to the passwd struct for the
user */
+
/*************************************************************************/
+
+ int
+ #ifdef __STDC__
+ acl_guestuser(struct passwd *pw)
+ #else
+ acl_guestuser(pw)
+ struct passwd *pw;
+ #endif
+ {
+ struct aclmember *entry = NULL;
+ int which;
+ char user1[265];
+ char user2[265];
+
+ /* guestuser <groupname> <user> [<user> ...] */
+ while (getaclentry("guestuser", &entry)) {
+ for (which = 1; (which < MAXARGS) && ARG[which];
which++) {
+
+ if (!strcmp(pw->pw_name, ARG[which])){
+ strcpy(guestname,ARG0);
+ return (1);
+ }
+ }
+ }
+ return (0);
}
return (1);
