Re: FTP oddness, over SSH session.
On 13 Apr 2012 at 23:51, Frank Staals wrote: John McDonnell gorgar...@ymail.com writes: All in all, creating an entry in Site Manager makes more sense if it's something you connect to from your own hardware. From someone else's machine, the quick connect is quite handy though. Don't forget to clear out the entry from the dropdown list then. Because I think FileZilla will remember your password as well. Worst ``feature'' ever if you ask me Regards, -- - Frank Indeed it does, and yes I do (clear that list out) but thanks for the reminder, and of course it's useful info for others too. Regards. Dave. -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 12 Apr 2012 at 11:28, Frank Bonnet wrote: Dave B d...@g8kbv.demon.co.uk writes: Hi, ordinarily perhaps yes, if I could only figure out how to set it up on the FreeBSD box. As always, the Manuals though no doubt correct and complete as a reference, are no good to people who don't already know How To do it. There is not much to set up. Just make sure you have sshd running. You can then just sftp (or any other client that supports sftp) to connect to port 22, or whatever port sshd is listening on. Regards, -- - Frank why not ftp over TLS ? like proftpd or pure-ftpd can do ? Hi. Because as yet, I have not figured out how to get ProFTP or PureFTP installed and WORKING without bricking the machine. There is no step by step how to (that I've yet found) with also guidance as to how to work arround the inevitable issues that occur. The man pages are just command references, not an instruction book on how to use them. Sorry. Hence, I'm using the native OS's inbuilt FTP facility. Even that took me 3 days to get going in the first instance. (file Access rights issues and poor, even if correct, documentation.) Regards. Dave Baxter. -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 12 Apr 2012 at 9:32, Frank Staals wrote: Dave B d...@g8kbv.demon.co.uk writes: Hi, ordinarily perhaps yes, if I could only figure out how to set it up on the FreeBSD box. As always, the Manuals though no doubt correct and complete as a reference, are no good to people who don't already know How To do it. There is not much to set up. Just make sure you have sshd running. You can then just sftp (or any other client that supports sftp) to connect to port 22, or whatever port sshd is listening on. Regards, -- - Frank Hi Frank. Thanks for that suggestion. It works well! Issue resolved for now :-) FYI, you have to create an entry in FileZilla's Site Manager, for it to invoke SFTP, the Quickconnect feature just uses plain vanilla FTP. Best Regards. Dave Baxter. -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 12 Apr 2012 at 12:40, Da Rock wrote: On 04/11/12 21:51, Dave B wrote: FreeBSD FBSD.67MK181QZ 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Wed Apr 14 22:55:09 BST 2010 root@FBSD.67MK181QZ:/usr/obj/usr/src/sys/PPSGENERIC i386 Hi. I have a small FreeBSD 8.0 system (above, yes I know, not current, but it works.) That is mainly used for timekeeping with an attached PPS equipped GPS. No problems with that. It also has a small web server (Hiawatha) FTP server and SSH portal, for my own use. The FTP server is the built-in OS based ftpd implementation, and works well for all that I need. Anyway... I found a while ago, that I can tunnel connections into my home LAN via a SSH session to my FreeBSD box, from outside the LAN using PuTTY (on Windows XP) from wherever I am. It's been a useful dodge for me to do that so as to VNC to other boxes that are there. The needed SSH working port, is not the usual suspect, it's way up high, well away from script kiddies etc. I just found however, that though I can reliably send a file to the FTP server and it get's saved just fine, that's not true when connecting this way using a SSH tunnel. Over the SSH session, (using Passive Mode, with all needed ports forwarded, plus the FTP daemon's data port usage restricted to the same range as those tunneled.) Though the FTP process appears to work OK, with no errors, the file sent to and deposited on the server ends up as name only, and zero bytes in length. Oddly, I can successfully create a new folder on the FTP server over the SSH session using the FTP client, and that works just fine. The FTP client I'm using, is the same FileZilla both times. (V3.1.0.1 I may go look for any updates, just in case.) Downloading works fine regardless of how I connect, it's just uploading that's screwey. I suspect (as usual) it's a rights issue, but even if I su - root after the initial SSH login, it changes nothing. I'd check the ports you are forwarding over ssh. Two ports are required for ftp and it sounds like one is blocking for some reason- the control channel seems to be working fine though :) As I suspect too, but as yet, I've not figured it out. I can as above download files just fine, so the data channel can be established for that, and I am using Passive Mode, so it *Should* be only my end (the client) that initiates a connection for the data channel. Also, two versions of FileZilla *Appear* to succeed uploading a file, no errors regarding being unable to setup a data channel, just that when you look on the FreeBSD box later, the file is zero bytes in size. Regards. Dave Baxter. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: FTP oddness, over SSH session.
From: owner-freebsd-questi...@freebsd.org [mailto:owner-freebsd- questi...@freebsd.org] On Behalf Of Dave B FYI, you have to create an entry in FileZilla's Site Manager, for it to invoke SFTP, the Quickconnect feature just uses plain vanilla FTP. Best Regards. Dave Baxter. You can use the Quickconnect feature with SFTP. If you are running on standard port 22, you can simply put 22 in the port box. For non-standard ports, you can prepend sftp:// to the host name and it will connect via SFTP instead of FTP. Apologies to Dave as he'll be getting this twice as I somehow forgot to include questions@ when replying. Thought this might come in handy for others who want to SFTP into a box with FileZilla, so resending to the list this time. All in all, creating an entry in Site Manager makes more sense if it's something you connect to from your own hardware. From someone else's machine, the quick connect is quite handy though. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 13 Apr 2012 at 9:21, John McDonnell wrote: From: owner-freebsd-questi...@freebsd.org [mailto:owner-freebsd- questi...@freebsd.org] On Behalf Of Dave B FYI, you have to create an entry in FileZilla's Site Manager, for it to invoke SFTP, the Quickconnect feature just uses plain vanilla FTP. Best Regards. Dave Baxter. You can use the Quickconnect feature with SFTP. If you are running on standard port 22, you can simply put 22 in the port box. For non-standard ports, you can prepend sftp:// to the host name and it will connect via SFTP instead of FTP. Cheers, I'll try that next time I'm on the outside of my home LAN, it seems to work from the inside, as it would of course... At present, there a suitably configured link in the site manager. Thanks again. Dave. -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
John McDonnell gorgar...@ymail.com writes: All in all, creating an entry in Site Manager makes more sense if it's something you connect to from your own hardware. From someone else's machine, the quick connect is quite handy though. Don't forget to clear out the entry from the dropdown list then. Because I think FileZilla will remember your password as well. Worst ``feature'' ever if you ask me Regards, -- - Frank ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 11 Apr 2012 at 14:54, Mike Clarke wrote: On Wednesday 11 April 2012, Dave B wrote: I just found however, that though I can reliably send a file to the FTP server and it get's saved just fine, that's not true when connecting this way using a SSH tunnel. Would it not be simpler just to use sftp directly rather than tunnelling ftp through ssh? -- Mike Clarke Hi, ordinarily perhaps yes, if I could only figure out how to set it up on the FreeBSD box. As always, the Manuals though no doubt correct and complete as a reference, are no good to people who don't already know How To do it. Originally, the FTP was purely for other machines at home to periodicaly dump data for some pages of the small website it also hosts. There was (is) no need for SFTP for that, as all the machines are in the same room at home. Thanks for the reply. Dave B. -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
Dave B d...@g8kbv.demon.co.uk writes: Hi, ordinarily perhaps yes, if I could only figure out how to set it up on the FreeBSD box. As always, the Manuals though no doubt correct and complete as a reference, are no good to people who don't already know How To do it. There is not much to set up. Just make sure you have sshd running. You can then just sftp (or any other client that supports sftp) to connect to port 22, or whatever port sshd is listening on. Regards, -- - Frank ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
why not ftp over TLS ? like proftpd or pure-ftpd can do ? Envoyé de mon iPhone. Le 12 avr. 2012 à 09:32, Frank Staals fr...@fstaals.net a écrit : Dave B d...@g8kbv.demon.co.uk writes: Hi, ordinarily perhaps yes, if I could only figure out how to set it up on the FreeBSD box. As always, the Manuals though no doubt correct and complete as a reference, are no good to people who don't already know How To do it. There is not much to set up. Just make sure you have sshd running. You can then just sftp (or any other client that supports sftp) to connect to port 22, or whatever port sshd is listening on. Regards, -- - Frank ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 12/04/2012 10:28, Frank Bonnet wrote:
why not ftp over TLS ? like proftpd or pure-ftpd can do ?
Because it is pretty much impossible to firewall securely. Either you
don't encrypt the control channel or you have to give any firewalls
between you and your destination keys to be able to decrypt the traffic
(in which case you might just as well not bother encrypting it at all)
or you have to open up a whole load of ports to accept incoming traffic
('you' being typically the FTP server admin for PASV mode FTP;
otherwise, you'ld need to do similarly on the client for active mode
FTP.) FTP is fundamentally broken and simply encasing it in a layer of
encryption only exacerbates the fundamental flaws.
The FTP protocol is an archaic remnant of some mythical golden age of
the internet when you could generally trust anyone else with access to
the net[*]. Given what the past 40 years or so have shown us about the
realities of global networking, it is high time that it was obsoleted
and the world switched to some of the many better alternatives that have
since been developed.
* HTTP -- obviously works fine for download. It can support upload
too: there's a little-used PUT command, or you can use such things
as WEBDAV. Easy to run over TLS by using HTTPS.
* RSYNC -- has an anonymous mode which works fine for generic
downloads. For authenticated access defaults to ssh(1) for all
traffic.
* SFTP or SCP -- for those who are unwilling or unable to
contemplate using anything other than an FTP client, SFTP will
pose as one, while still properly securing all your traffic. SCP
is (IMHO) a nicer interface for general day-to-day copying stuff
between machines though.
Cheers,
Matthew
[*] Believe it or not, at one time it was generally accepted that mail
servers should be configured as open relays. This was so that if your
own mailserver was playing up, you could easily borrow a neighbours
server to send messages. Then spam was invented.
--
Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard
Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
JID: matt...@infracaninophile.co.uk Kent, CT11 9PW
signature.asc
Description: OpenPGP digital signature
Re: FTP oddness, over SSH session.
On Wednesday 11 April 2012, Dave B wrote: I just found however, that though I can reliably send a file to the FTP server and it get's saved just fine, that's not true when connecting this way using a SSH tunnel. Would it not be simpler just to use sftp directly rather than tunnelling ftp through ssh? -- Mike Clarke ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 04/11/12 21:51, Dave B wrote: FreeBSD FBSD.67MK181QZ 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Wed Apr 14 22:55:09 BST 2010 root@FBSD.67MK181QZ:/usr/obj/usr/src/sys/PPSGENERIC i386 Hi. I have a small FreeBSD 8.0 system (above, yes I know, not current, but it works.) That is mainly used for timekeeping with an attached PPS equipped GPS. No problems with that. It also has a small web server (Hiawatha) FTP server and SSH portal, for my own use. The FTP server is the built-in OS based ftpd implementation, and works well for all that I need. Anyway... I found a while ago, that I can tunnel connections into my home LAN via a SSH session to my FreeBSD box, from outside the LAN using PuTTY (on Windows XP) from wherever I am. It's been a useful dodge for me to do that so as to VNC to other boxes that are there. The needed SSH working port, is not the usual suspect, it's way up high, well away from script kiddies etc. I just found however, that though I can reliably send a file to the FTP server and it get's saved just fine, that's not true when connecting this way using a SSH tunnel. Over the SSH session, (using Passive Mode, with all needed ports forwarded, plus the FTP daemon's data port usage restricted to the same range as those tunneled.) Though the FTP process appears to work OK, with no errors, the file sent to and deposited on the server ends up as name only, and zero bytes in length. Oddly, I can successfully create a new folder on the FTP server over the SSH session using the FTP client, and that works just fine. The FTP client I'm using, is the same FileZilla both times. (V3.1.0.1 I may go look for any updates, just in case.) Downloading works fine regardless of how I connect, it's just uploading that's screwey. I suspect (as usual) it's a rights issue, but even if I su - root after the initial SSH login, it changes nothing. I'd check the ports you are forwarding over ssh. Two ports are required for ftp and it sounds like one is blocking for some reason- the control channel seems to be working fine though :) The FTP user is a different name from who I'm logged in as by SSH, is that the issue?But what confuses me, is that it works from this same PC, if it's on the home LAN, using the same FTP user credentials. I'm obviously lacking in my understanding of something, but what? I may not get to see any replies for a day or three, as I've got to head off across country for work later, and it's not yet known if tonight's hotel even has WiFi, or if there is decent mobile coverage where I'm going. (Out in the Wiltshire sticks. UK, and I'm stuck with Orange.) Thanks in advance. Dave B -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP server for install link broken?
On Fri, 27 Jan 2012, Kaya Saman wrote: am currently trying to install FreeBSD 9 on my Lenovo X220 and noticed that the link on this page in the FreeBSD Handbook is broken: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-pre.html See the header at the top of that page. There is a new chapter for installing 9.0 and later. The equivalent section is http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/bsdinstall-pre.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP server for install link broken?
On 01/27/2012 04:16 PM, Warren Block wrote: On Fri, 27 Jan 2012, Kaya Saman wrote: am currently trying to install FreeBSD 9 on my Lenovo X220 and noticed that the link on this page in the FreeBSD Handbook is broken: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-pre.html See the header at the top of that page. There is a new chapter for installing 9.0 and later. The equivalent section is http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/bsdinstall-pre.html Oh ok. Anyway as I'm familiar with BSD 8.x I did the install without reading!! My issue was really to find the .img file for USB booting. All done now but can't seem to get Fedora 16's GRUB to boot BSD 9.0 I guess it's time to consult the documentation after all; even though Google'ing provided results that didn't yield answers as the Linux GRUB can't find the partition/slice combo??? Tried chainloading but that didn't work either probably as no boot-loader got loaded into the PBR by default. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP server for install link broken?
On Fri, 27 Jan 2012, Kaya Saman wrote: On 01/27/2012 04:16 PM, Warren Block wrote: On Fri, 27 Jan 2012, Kaya Saman wrote: am currently trying to install FreeBSD 9 on my Lenovo X220 and noticed that the link on this page in the FreeBSD Handbook is broken: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-pre.html See the header at the top of that page. There is a new chapter for installing 9.0 and later. The equivalent section is http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/bsdinstall-pre.html Oh ok. Anyway as I'm familiar with BSD 8.x I did the install without reading!! My issue was really to find the .img file for USB booting. All done now but can't seem to get Fedora 16's GRUB to boot BSD 9.0 I guess it's time to consult the documentation after all; even though Google'ing provided results that didn't yield answers as the Linux GRUB can't find the partition/slice combo??? The default install of FreeBSD 9 uses GPT, so there are no slices or FreeBSD (bsdlabel) partitions. Instead of ad0s1a, it would just be ada0p2. Don't know what Linux calls these partitions, though. Tried chainloading but that didn't work either probably as no boot-loader got loaded into the PBR by default. If you want multiboot on a GPT drive, grub2 seems to be the solution. (But I haven't tested it.) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP server for install link broken?
On 01/27/2012 07:22 PM, Warren Block wrote: On Fri, 27 Jan 2012, Kaya Saman wrote: On 01/27/2012 04:16 PM, Warren Block wrote: On Fri, 27 Jan 2012, Kaya Saman wrote: am currently trying to install FreeBSD 9 on my Lenovo X220 and noticed that the link on this page in the FreeBSD Handbook is broken: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-pre.html See the header at the top of that page. There is a new chapter for installing 9.0 and later. The equivalent section is http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/bsdinstall-pre.html Oh ok. Anyway as I'm familiar with BSD 8.x I did the install without reading!! My issue was really to find the .img file for USB booting. All done now but can't seem to get Fedora 16's GRUB to boot BSD 9.0 I guess it's time to consult the documentation after all; even though Google'ing provided results that didn't yield answers as the Linux GRUB can't find the partition/slice combo??? The default install of FreeBSD 9 uses GPT, so there are no slices or FreeBSD (bsdlabel) partitions. Instead of ad0s1a, it would just be ada0p2. Don't know what Linux calls these partitions, though. Tried chainloading but that didn't work either probably as no boot-loader got loaded into the PBR by default. If you want multiboot on a GPT drive, grub2 seems to be the solution. (But I haven't tested it Thanks Warren for the assistance! I will create a new Subject for my multiboot issue :-) Am just currently trying to get my 'old' Fedora instance from an old HD up and running by booting off USB drive meaning have to re-build initrd.img with USB modules in it. So updating that in order to get the kernel headers since the old kernel is no longer supported. Best regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp installation
On 12 Jun 2011 at 4:32, Bill Tillman wrote: From: Daniel Feenberg feenb...@nber.org Subject: Re: ftp installation On Sat, 11 Jun 2011, Robert Simmons wrote: On Sat, Jun 11, 2011 at 6:52 PM, Daniel Feenberg feenb...@nber.org wrote: I have tried many of the ftp sites enumerated in sysinstall, with both 7.4-RELEASE and 8.2-RELEASE, and in all cases the installation proceeds for a few seconds and then hangs, with the last message on the console always being: DEBUG: Generating /etc/fstab file. ... Is there something off about the sysinstall ftp dialog? I don't see a way to monitor what is happening. Your firewall may be interfering with the connection. You may want to read the handbook section on FTP installs (the grey box at the bottom of the page): http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-me dia.html Well, our router has never interfered with ftp transfers done from the command line, but switching to the firewall-friendly mode in sysinstall does fix the problem. Thank you Daniel Feenberg NBER If I recall correctly I had to open up my firewall completely to get the ftp installations to work. I use a FreeBSD diskless router running IPFW+NATD and the log files are set to max out at 5 so I can't see which port is trying to be used which gets blocked. So just for the 10 minutes or so to do an FTP install I just open the firewall wide and allow any to any. Once the install is complete I close the firewall again. That's why Passive (or PASV) mode is included in FTP. It only ever makes outgoing connections from a client. 99.9% of all routers/firewalls will honour that mode with no probems, unless it's been specifically blocked by an admin type somewhere. In the F'BSD install/update settings/dialogs etc, always select the option to use FTP from behind a firewall or router, or Firewall Friendly mode. That will invoke Passive mode transfers. It's the one thing I can do reliably with FreeBSD, no need to mess with router/firewall permissions etc. That only needs doing if you want to run a server that is reachable from outside your LAN. That in turn, opens a whole oil drum load (i.e. a big can of worms!) of potential security issues Take care. DaveB PS: Worth looking at, for a good, if lenghty explanation. http://slacksite.com/other/ftp.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp installation
From: Daniel Feenberg feenb...@nber.org To: Robert Simmons rsimmo...@gmail.com Cc: freebsd-questions@freebsd.org Sent: Sat, June 11, 2011 8:50:48 PM Subject: Re: ftp installation On Sat, 11 Jun 2011, Robert Simmons wrote: On Sat, Jun 11, 2011 at 6:52 PM, Daniel Feenberg feenb...@nber.org wrote: I have tried many of the ftp sites enumerated in sysinstall, with both 7.4-RELEASE and 8.2-RELEASE, and in all cases the installation proceeds for a few seconds and then hangs, with the last message on the console always being: DEBUG: Generating /etc/fstab file. ... Is there something off about the sysinstall ftp dialog? I don't see a way to monitor what is happening. Your firewall may be interfering with the connection. You may want to read the handbook section on FTP installs (the grey box at the bottom of the page): http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-media.html Well, our router has never interfered with ftp transfers done from the command line, but switching to the firewall-friendly mode in sysinstall does fix the problem. Thank you Daniel Feenberg NBER If I recall correctly I had to open up my firewall completely to get the ftp installations to work. I use a FreeBSD diskless router running IPFW+NATD and the log files are set to max out at 5 so I can't see which port is trying to be used which gets blocked. So just for the 10 minutes or so to do an FTP install I just open the firewall wide and allow any to any. Once the install is complete I close the firewall again. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp installation
On Sat, Jun 11, 2011 at 6:52 PM, Daniel Feenberg feenb...@nber.org wrote: I have tried many of the ftp sites enumerated in sysinstall, with both 7.4-RELEASE and 8.2-RELEASE, and in all cases the installation proceeds for a few seconds and then hangs, with the last message on the console always being: DEBUG: Generating /etc/fstab file. This happens with several different systems. I believe it is not any hardware problem, since I was able to install 7.4 from NFS. (I have unrelated problems with 8.2). If I ftp to any of the mentioned FreeBSD ftp servers under manual control, I have no trouble downloading ISO files. The ftp sites tried include ftp[34567].freebsd.org and ftp10.us.freebsd.org. We have no firewall or proxy regulating outbound connections. Is there something off about the sysinstall ftp dialog? I don't see a way to monitor what is happening. Your firewall may be interfering with the connection. You may want to read the handbook section on FTP installs (the grey box at the bottom of the page): http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-media.html You can determine if you are having a firewall problem specific to FTP by using an HTTP proxy install (if it works, you need to change your firewall rules). A convenient list of free and open http proxies is available here: http://www.xroxy.com/proxylist.htm Just narrow the list down to http proxies that are near you (US, I assume) then arrange them in order of ascending latency (there is a drop down menu for this). The top few should work great for you. I have found that going a step further will ensure using the fastest proxy. Just install netselect from the ports collection: http://www.freebsd.org/cgi/url.cgi?ports/net/netselect/pkg-descr http://apenwarr.ca/netselect/ then feed the top 10 proxies from xroxy to netselect and use the one it selects as fastest. All of this can be scripted using wget to scrape the data from xroxy when you need it, since free and open proxies disappear faster than fart in a fan factory. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp installation
On Sat, 11 Jun 2011, Robert Simmons wrote: On Sat, Jun 11, 2011 at 6:52 PM, Daniel Feenberg feenb...@nber.org wrote: I have tried many of the ftp sites enumerated in sysinstall, with both 7.4-RELEASE and 8.2-RELEASE, and in all cases the installation proceeds for a few seconds and then hangs, with the last message on the console always being: DEBUG: Generating /etc/fstab file. ... Is there something off about the sysinstall ftp dialog? I don't see a way to monitor what is happening. Your firewall may be interfering with the connection. You may want to read the handbook section on FTP installs (the grey box at the bottom of the page): http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-media.html Well, our router has never interfered with ftp transfers done from the command line, but switching to the firewall-friendly mode in sysinstall does fix the problem. Thank you Daniel Feenberg NBER___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP server link aggregation
On 12/15/2010 3:11 PM, Matthew Law wrote: I have a single FreeBSD box acting as an FTP server for multiple FreeBSD and Linux clients on the same /24 subnet (all gigabit ethernet). It is currently connected by just one of it's two gig ethernet ports. I also have two cisco switches with an etherchannel between them (using 2 x gig ports on each switch). I would like to connect the remaining NIC on my FreeBSD box to the other switch and enable 802.3ad on those switch ports to aggregate traffic between them. This is in the hope that it can better serve multiple FTP clients. Is my thinking correct? Other than the network interface changes which are documented here: http://www.freebsd.org/doc/handbook/network-aggregation.html are there any further tweaks I could make to improve things? -the server is a 'standard install' and does not use ZFS. It has an adaptec 5408 RAID card with 4 x SATA II drives and, IIRC, 128K stripe size and plenty of RAM. Is there a way of testing this other than initiating large file transfers to this server from multiple hosts? A simple ping from multiple sources to your server will do. LACP will associate each SRCMAC and DSTMAC pair to one physical interface. Creating traffic with many different SRCMAC and DSTMAC pairs will use both physical interfaces. But, I do vaguely remember that if_lagg was not able to perform at 2 * 1Gbps level. Use systat -ifstat to check what's happening and please, post your performance findings to the list! HTH, Nikos ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP like web app
On 10/18/10 21:45, Andrea Venturoli wrote: Hello. Sorry if this is a bit OT, but I'm looking for an app that should: _ replace an ftp server; _ have a web interface; _ run on FreeBSD; _ let one of my users upload some file and send a link to someone else; _ let that someone else download that file without seeing others' stuff; _ possibily notify the uploader when someone else downloads that file. Any hint? Thanks to anyone who replied. In the end I installed SynaMan (http://web.synametrics.com/SynaMan.htm). We are still evaluating it, but it looks like it does 95% of what we need. bye Thanks av. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP like web app
On 10/18/2010 10:17 PM, Jerry Bell wrote: There is a nice web app called OWL that does essentially this (plus a bunch more): http://sourceforge.net/projects/owl/ It needs php, mysql and apache to run, but it does work well on FreeBSD. We use http://sourceforge.net/projects/ajax-explorer/ for our clients. It's very nice and has the same requirements as above, can do without mysql though DISCLAIMER: This e-mail is for the intended recipient(s) only. Access, disclosure, copying, distribution or reliance on any of it by anyone else is prohibited. If you have received it by mistake please let us know by reply and then delete it from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP like web app
An ftpd (most any) with proper directory perms and a web browser meet most of your requirements. Heck, an httpd, like thttpd will address many of your issues - but perms may get more tricky unless you use a full featured httpd such as Apache. - Original Message - From: owner-freebsd-questi...@freebsd.org owner-freebsd-questi...@freebsd.org To: freebsd-questions@freebsd.org freebsd-questions@freebsd.org Sent: Mon Oct 18 14:45:17 2010 Subject: FTP like web app Hello. Sorry if this is a bit OT, but I'm looking for an app that should: _ replace an ftp server; _ have a web interface; _ run on FreeBSD; _ let one of my users upload some file and send a link to someone else; _ let that someone else download that file without seeing others' stuff; _ possibily notify the uploader when someone else downloads that file. Any hint? bye Thanks av. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org font size=1 div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in' /div This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system. /font ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP like web app
On Oct 18, 2010, at 12:45 PM, Andrea Venturoli wrote: Sorry if this is a bit OT, but I'm looking for an app that should: _ replace an ftp server; _ have a web interface; _ run on FreeBSD; _ let one of my users upload some file and send a link to someone else; _ let that someone else download that file without seeing others' stuff; _ possibily notify the uploader when someone else downloads that file. Sounds like you want Apache + WebDAV. For download notifications, you can have something scanning the Apache logs Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP like web app
On 10/18/10 22:04, Chuck Swiger wrote: On Oct 18, 2010, at 12:45 PM, Andrea Venturoli wrote: Sorry if this is a bit OT, but I'm looking for an app that should: _ replace an ftp server; _ have a web interface; _ run on FreeBSD; _ let one of my users upload some file and send a link to someone else; _ let that someone else download that file without seeing others' stuff; _ possibily notify the uploader when someone else downloads that file. Sounds like you want Apache + WebDAV. For download notifications, you can have something scanning the Apache logs Regards, Thanks. You mean WebDAV on the internal side or external? Right now my users simply upload through Samba and one of the requirement is that external users (downloaders) should not need anything more than a browser... bye av. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP like web app
On Oct 18, 2010, at 1:16 PM, Andrea Venturoli wrote: You mean WebDAV on the internal side or external? Right now my users simply upload through Samba and one of the requirement is that external users (downloaders) should not need anything more than a browser... Both-- you can setup WebDAV to act as a web-based fileserver and various platforms (MacOS X, newer Windows flavors) will even mount it similar to Samba/CIFS filesystems. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP like web app
There is a nice web app called OWL that does essentially this (plus a bunch more): http://sourceforge.net/projects/owl/ It needs php, mysql and apache to run, but it does work well on FreeBSD. Regards, Jerry On 10/18/2010 4:04 PM, Chuck Swiger wrote: On Oct 18, 2010, at 12:45 PM, Andrea Venturoli wrote: Sorry if this is a bit OT, but I'm looking for an app that should: _ replace an ftp server; _ have a web interface; _ run on FreeBSD; _ let one of my users upload some file and send a link to someone else; _ let that someone else download that file without seeing others' stuff; _ possibily notify the uploader when someone else downloads that file. Sounds like you want Apache + WebDAV. For download notifications, you can have something scanning the Apache logs Regards, ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp login failing after upgrade to 8.1
Date: Tue, 10 Aug 2010 14:23:22 -0700 From: Chris Maness ch...@chrismaness.com To: Mark Tinguely marktingu...@gmail.com Cc: freebsd-questions@freebsd.org Subject: Re: ftp login failing after upgrade to 8.1 On Tue, Aug 10, 2010 at 2:19 PM, Mark Tinguely marktingu...@gmail.com wro= te: Chris Maness wrote: On Tue, Aug 10, 2010 at 2:07 PM, Mark Tinguely marktingu...@gmail.com wrote: Chris Maness wrote: I just upgraded to FreeBSD 8.1 and my regular user name seems to be disallowed for ftp. =A0I checked and my name or group does not seem to show up in ftpusers. =A0Any suggestions as to what might have happened= ? Thanks, Chris Maness ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Do you use a shell that is no longer in /etc/shells? --Mark. Yes, I use bash. =A0Should I add bash to the shells file? Thanks, Chris Maness yes, the full path to bash. And /etc/shells is overwritten during upgrade= s. It is logging in now, but getting some strange connection refused when I try a file transfer or list the contents of a directory. symptomatic of a firewall problem. Issue the command PASV at the ftp prompt and then try things. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp login failing after upgrade to 8.1
I just upgraded to FreeBSD 8.1 and my regular user name seems to be disallowed for ftp. I checked and my name or group does not seem to show up in ftpusers. Any suggestions as to what might have happened? Thanks, Chris Maness ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp login failing after upgrade to 8.1
On Tue, Aug 10, 2010 at 2:07 PM, Mark Tinguely marktingu...@gmail.com wrote: Chris Maness wrote: I just upgraded to FreeBSD 8.1 and my regular user name seems to be disallowed for ftp. I checked and my name or group does not seem to show up in ftpusers. Any suggestions as to what might have happened? Thanks, Chris Maness ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Do you use a shell that is no longer in /etc/shells? --Mark. Yes, I use bash. Should I add bash to the shells file? Thanks, Chris Maness ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp login failing after upgrade to 8.1
On 10/08/2010 22:01:40, Chris Maness wrote: I just upgraded to FreeBSD 8.1 and my regular user name seems to be disallowed for ftp. I checked and my name or group does not seem to show up in ftpusers. Any suggestions as to what might have happened? /etc/ftpusers is actually the list of accounts that should be *denied* access via FTP. You don't want your UID in there if you want to use FTP. Make sure the login shell for your account is mentioned in /etc/shells. Failing that, curse FTP as an archaic and inherently insecure protocol completely unsuitable for today's internet, and switch to using sftp(8) instead -- which has the look and feel of FTP, but which runs tunnelled over SSH. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW signature.asc Description: OpenPGP digital signature
Re: ftp login failing after upgrade to 8.1
On Tue, Aug 10, 2010 at 2:07 PM, Mark Tinguely marktingu...@gmail.com wrote: Chris Maness wrote: I just upgraded to FreeBSD 8.1 and my regular user name seems to be disallowed for ftp. I checked and my name or group does not seem to show up in ftpusers. Any suggestions as to what might have happened? Thanks, Chris Maness ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Do you use a shell that is no longer in /etc/shells? --Mark. Ok, I have it working now. The man page for ftpd should make that a little clearer than it does. There is another issue after logging in. The login works just fine, but when it tries to establish a connection for transfer or list the contents of a directory, I get a connection refused error. Regards, Chris Maness ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp login failing after upgrade to 8.1
On Tue, Aug 10, 2010 at 2:19 PM, Mark Tinguely marktingu...@gmail.com wrote: Chris Maness wrote: On Tue, Aug 10, 2010 at 2:07 PM, Mark Tinguely marktingu...@gmail.com wrote: Chris Maness wrote: I just upgraded to FreeBSD 8.1 and my regular user name seems to be disallowed for ftp. I checked and my name or group does not seem to show up in ftpusers. Any suggestions as to what might have happened? Thanks, Chris Maness ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Do you use a shell that is no longer in /etc/shells? --Mark. Yes, I use bash. Should I add bash to the shells file? Thanks, Chris Maness yes, the full path to bash. And /etc/shells is overwritten during upgrades. It is logging in now, but getting some strange connection refused when I try a file transfer or list the contents of a directory. Regards, Chris Maness ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp passive mode
gahn ipfr...@yahoo.com writes: I am behind firewall and only pass ftp sessions are allowed. With that, most ftp sessions of portupgrade would not be able to connect to remote FreeBSD sites. Could I reconfigure the my FreeBSD 7.3 in a way so that it would only start ftp sessions in PASV mode? That should already be the default; FETCH_ARGS should be set to -ApRr in /etc/ports/Mk/bsd.port.mk (the 'p' option is what means passive mode). It certainly works for me, and has for many years. You can test by setting FTP_PASSIVE_MODE (to anything *except* no) in the environment. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp passive mode
In message 111263.90106...@web52308.mail.re2.yahoo.com, gahn (ipfr...@yahoo.com) wrote: I am behind firewall and only pass ftp sessions are allowed. With that, most ftp sessions of portupgrade would not be able to connect to remote FreeBSD sites. Could I reconfigure the my FreeBSD 7.3 in a way so that it would only start ftp sessions in PASV mode? The on-line handbook in section 4.5.2 'Installing Ports' says: The ports system uses fetch(1) to download the files, which honors various environment variables, including FTP_PASSIVE_MODE, FTP_PROXY, and FTP_PASSWORD. So try setting FTP_PASSIVE_MODE in your environment. man ports and man fetch may also be worth a read. Cheers, Nick. -- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp passive mode
Lowell Gilbert freebsd-questions-lo...@be-well.ilk.org writes: gahn ipfr...@yahoo.com writes: I am behind firewall and only pass ftp sessions are allowed. With that, most ftp sessions of portupgrade would not be able to connect to remote FreeBSD sites. Could I reconfigure the my FreeBSD 7.3 in a way so that it would only start ftp sessions in PASV mode? That should already be the default; FETCH_ARGS should be set to -ApRr in /etc/ports/Mk/bsd.port.mk (the 'p' option is what means passive mode). It certainly works for me, and has for many years. You can test by setting FTP_PASSIVE_MODE (to anything *except* no) in the environment. And I notice that should already be set as well; it's part of the default class setting in /etc/login.conf. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp giving url but i want the IP address
On 04/05/10 10:08, Walter wrote: I want to parse ftp error messages in auth.log and use the ip address in inserting a block into ipfw. It works, except when ftpd spits out the host-specific url rather than the ip. Adding -h to the ftpd command in inet.conf didn't help. Can someone tell me how to do this, or point me to code (C) to convert it? Thanks. I'm off-list so please reply directly. Walter Would it be possible to wrapper everything in a script that uses a single ping (ping -c 1) to pull the resulting IP address from the output? For example: ping -c 1 google.com PING google.com (74.125.47.103): 56 data bytes 64 bytes from 74.125.47.103: icmp_seq=0 ttl=53 time=111.391 ms --- google.com ping statistics --- 1 packets transmitted, 1 packets received, 0.0% packet loss round-trip min/avg/max/stddev = 111.391/111.391/111.391/0.000 ms seeing how that's the standard output for ping, couldn't you use grep and a regex to grab the IP either from the parenthesis or that first line? Of course there might be an easier way and/or better tool than ping to do this. CCing the list to get a discussion going as I imagine such a script could have other uses. -- Yours In Christ, PIT Emails are not formal business letters, whatever businesses may want. Original content copyright under the OWL http://owl.apotheon.org Please do not CC me. If I'm posting to a list it is because I am subscribed. signature.asc Description: OpenPGP digital signature
Re: ftp giving url but i want the IP address
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Walter wrote: I want to parse ftp error messages in auth.log and use the ip address in inserting a block into ipfw. It works, except when ftpd spits out the host-specific url rather than the ip. Adding -h to the ftpd command in inet.conf didn't help. Can someone tell me how to do this, or point me to code (C) to convert it? Thanks. I'm off-list so please reply directly. Walter ___ Hi Walter, Did you send a HUP signal to inetd so it rereads the config file? kill -HUP `cat /var/run/inetd.pid` Hope that helps, Greg - -- Greg Larkin http://www.FreeBSD.org/ - The Power To Serve http://www.sourcehosting.net/ - Ready. Set. Code. http://twitter.com/sourcehosting/ - Follow me, follow you -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iD8DBQFLugXR0sRouByUApARAv00AJ9Ci0rwzG4cMBTQr9d50Lk4T6iXwwCgrtoJ p8rszot7YctmhKv0B2QpraE= =E9/c -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp giving url but i want the IP address
Greg Larkin wrote: Hi Walter, Did you send a HUP signal to inetd so it rereads the config file? kill -HUP `cat /var/run/inetd.pid` Hope that helps, Greg I actually rebooted (after a boo-boo). So, Yes, inetd was restarted. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp giving url but i want the IP address
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Walter wrote: Greg Larkin wrote: Hi Walter, Did you send a HUP signal to inetd so it rereads the config file? kill -HUP `cat /var/run/inetd.pid` Hope that helps, Greg I actually rebooted (after a boo-boo). So, Yes, inetd was restarted. Ok, just wanted to make sure. After quickly reviewing the ftpd code, I didn't see a way to disable hostname lookups. Instead of standard ftpd, give lukemftpd a try. I tested it briefly, and failures are reported like so: : FTP LOGIN FAILED FROM 192.168.xxx.yyy Finally, instead of writing your own parsing script, sshguard monitors your FTP logs, SSH logs and other services that you want to protect with pf auto-blocking: http://www.freshports.org/security/sshguard/ Hope that helps, Greg - -- Greg Larkin http://www.FreeBSD.org/ - The Power To Serve http://www.sourcehosting.net/ - Ready. Set. Code. http://twitter.com/sourcehosting/ - Follow me, follow you -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iD8DBQFLuiKI0sRouByUApARAsr8AJ9ga+GSfIYzIU0+v6tDx9OIIHzkhQCdH5bY Sv/zbtezw0kL/EYGmWmbmFk= =6RL/ -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp giving url but i want the IP address
On 4/5/10 10:08 AM -0500, Walter wrote: Walter, I do some similar sounding things for my gateway just to keep the logs from filling up with attack drivel. But it's not quite the same problem as your question, so I don't do what I'm about to recommend - it's more complex, involving several formats, IPv4 and IPv6. If, by host-specific url you mean the name associated with the IP address, you should be able to get the IP address by using the host command. host xxx does the trick. Thanks. But another user has suggested a ready-built package, which I'll look into before coding it to work in my program. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp giving url but i want the IP address
Greg Larkin wrote: Instead of standard ftpd, give lukemftpd a try. I tested it briefly, and failures are reported like so: : FTP LOGIN FAILED FROM 192.168.xxx.yyy Finally, instead of writing your own parsing script, sshguard monitors your FTP logs, SSH logs and other services that you want to protect with pf auto-blocking: http://www.freshports.org/security/sshguard/ Hope that helps, Greg sshguard sounds like what I'm building! Their's isn't as simple as mine is, but that's natural for a mature product. I'll give it a look and maybe pick it up. Thanks! Walter ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp giving url but i want the IP address
On Mon, 05 Apr 2010 13:10:37 -0500 Walter walte...@earthlink.net wrote: On 4/5/10 10:08 AM -0500, Walter wrote: If, by host-specific url you mean the name associated with the IP address, you should be able to get the IP address by using the host command. host xxx does the trick. FWIW dig is a little cleaner for scripts $ dig +short freebsd.org 69.147.83.40 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP troubles with Roundcube vacation plugin
On Tue, Feb 16, 2010 at 02:44:27PM +0100, Frank Bonnet typed: Hello I'm in trouble with vacation plugin which perform an FTP session at localhost , for an obscure PAM/FreeBSD reason the FTP session is not always working ... I don't see why a vacation plugin for RoundCube (I've used several) would need to start an FTP session to localhost. That's just stupid. I recommend using dovecot-sieve and an appropriate plugin for that. Ruben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP troubles with Roundcube vacation plugin
On Tue, Feb 16, 2010 at 02:44:27PM +0100, Frank Bonnet wrote: I'm in trouble with vacation plugin which perform an FTP session at localhost , for an obscure PAM/FreeBSD reason the FTP session is not always working ... Sometimes it works well [snip] then suddenly it stops working Feb 16 13:23:19 mail ftpd[46782]: connection from localhost (127.0.0.1) Feb 16 13:23:19 mail ftpd[46782]: pam_acct_mgmt: new authentication token required Feb 16 13:23:19 mail ftpd[46782]: FTP LOGIN FAILED FROM localhost It is hard to debug this certainly without knowing your ftpd's PAM configuration (/etc/pam.d/ftpd), but assuming you have the default FreeBSD setup, then it is likely the password has expired. This would explain the behaviour if changing the password makes it work again. The expiry time is in /etc/master.passwd (it's the 5th or 6th field; I forget which; see passwd(5)), and the expiry time set when you change your password is controlled by your login class (see login.conf(5)) Cheers, -- Please help Imogen May keep talking - www.imogenmay.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP using .netrc
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 01/02/2010 10:11, Fbsd1 wrote: machine ftp.FreeBSD.org login anonymous password f...@home.com macdef init prompt off cd /pub/FreeBSD/releases/i386/8.0-RELEASE epsv4 off mget ERRATA.HTM ERRATA.TXT HARDWARE.HTM HARDWARE.TXT README.HTM mget README.TXT RELNOTES.HTM RELNOTES.TXT cdrom.inf docbook.css $ getdir base catpages dict doc games info kernels manpages ports proflibs src quit macdef getdir ! mkdir $i mget $i/* Question is how can I make FTP resume the download at the place it timed out. IE not start at the beginning and re-download all the same files all ready received. ftp -vR ftp.FreeBSD.org just starts downloading from the beginning again. Change your 'mget' commands into 'mreget' Or just use wget in mirror-mode... Cheers, Matthew - -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW -BEGIN PGP SIGNATURE- Version: GnuPG/MacGPG2 v2.0.14 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAktmrGcACgkQ8Mjk52CukIzm9ACghwg5MhvKCSqAca621AKg6It/ iD4An3/4spV6EeaCkizbTyKKRFZRNKeC =dHOF -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP using .netrc
On Mon, Feb 1, 2010 at 11:11 AM, Fbsd1 fb...@a1poweruser.com wrote: Goal is to download the install source directory tree so I can use it as an target for local ftp sysinstall. The problem is that the FreeBSD ftp server keeps timing out before everything is downloaded. This is the error message ftp gives me. 421 Service not available, remote server timed out. Connection closed This is the command line command used to launch the ftp session ftp -v ftp.FreeBSD.org It defaults to using /root/.netrc which is shown below machine ftp.FreeBSD.org login anonymous password f...@home.com macdef init prompt off cd /pub/FreeBSD/releases/i386/8.0-RELEASE epsv4 off mget ERRATA.HTM ERRATA.TXT HARDWARE.HTM HARDWARE.TXT README.HTM mget README.TXT RELNOTES.HTM RELNOTES.TXT cdrom.inf docbook.css $ getdir base catpages dict doc games info kernels manpages ports proflibs src quit macdef getdir ! mkdir $i mget $i/* Question is how can I make FTP resume the download at the place it timed out. IE not start at the beginning and re-download all the same files all ready received. ftp -vR ftp.FreeBSD.org just starts downloading from the beginning again. That .netrc looks familiar ;) I never had that issue, but I always used a ftp mirror site listed in the handbook, instead of one of the busiest ftp sites in the world .;) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP server navigation problem
On Mon, 10 Aug 2009 16:36:36 -0400, Tsu-Fan Cheng tfch...@gmail.com wrote: Hi, I use freebsd7.2 and can't access my friend's FTP server (crystal FTP server) from command line. I can't run any command in the ftp server, it only responds Entering Extended passive mode and hang. But when I ftp from windows command prompt, it actually works. So what's the matter with my BSD communication? thanks!! Refer to man ftp. Passive FTP is mentioned as follows: EXTENDED PASSIVE MODE AND FIREWALLS Some firewall configurations do not allow ftp to use extended passive mode. If you find that even a simple ls appears to hang after printing a message such as this: 229 Entering Extended Passive Mode (|||58551|) then you will need to disable extended passive mode with epsv4 off. See the above section The .netrc File for an example of how to make this automatic. Above it states: epsv4 Toggle the use of the extended EPSV and EPRT commands on IPv4 connections; first try EPSV / EPRT, and then PASV / PORT. This is enabled by default. If an extended command fails then this option will be temporarily disabled for the dura- tion of the current connection, or until epsv4 is executed again. You can use this setting either via .netrc or as an interactive command. -- Polytropon From Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP Server for individual client spaces
On Friday 10 July 2009 16:10:24 RS Wood wrote: I run a small engineering company* that exchanges large files (CAD, etc.) with clients, and I want to keep the docs off my email server by setting up a stand alone FTP server where each client can upload and download its relevant files. As such, my own users/employees should be able to reach every client’s FTP space but each client should only be able to reach his own. As my users finish a doc, they place it in that client’s FTP directory and the client can log in and get it. As such, I don’t want any form of unauthenticated FTP. [snip] Is the solution ftpchroot? If so, it’s not clear how I can chroot each potential client into his own directory, as my understanding is that all chrooted users wind up at the same place (like /var/ftp/pub). Or is the solution that each client gets access to his own home directory; if so, how do I ensure my staff has access to each client’s home directory? I haven't tried this, but man ftpd.conf suggests something along the lines of: chroot chroot /some/path/%u where the second chroot is the ftp class, and %u will be expanded to the username. Make sure all your external users are in ftp class chroot (by putting their usernames in /etc/ftpchroot), and make /some/path group-owned and group-readable by a group all your staff are in (the group ownership of a directory automatically propagates to new directories created below it). Let us know how it goes! Jonathan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP Server for individual client spaces
RS Wood wrote: I run a small engineering company* that exchanges large files (CAD, etc.) with clients, and I want to keep the docs off my email server by setting up a stand alone FTP server where each client can upload and download its relevant files. As such, my own users/employees should be able to reach every client’s FTP space but each client should only be able to reach his own. As my users finish a doc, they place it in that client’s FTP directory and the client can log in and get it. As such, I don’t want any form of unauthenticated FTP. I’ve tried different combinations of group names and directory permissions without success, but chrooting users doesn’t seem to solve my problem either, and my two favorite BSD books – Tiemann et. al. (Unleashed) and Lucas (Absolute) take the same approach the man pages do, in my opinion, which guides you either into an all anonymous system, or a system suitable for organizations such as software distributors in which clients/users authenticate but then all access the same directory (/pub for example). I could use some help conceptualizing this. Is the solution ftpchroot? It works for us, for the users who still need FTP access: # cp /sbin/nologin /sbin/ftp-only # echo /sbin/ftp-only /etc/shells # adduser homedir == /ftp/username shell == /sbin/ftp-only I then: # cd /ftp/username # rm -r .* # echo username /etc/ftpchroot Now, you can create staff accounts in the same way, but set their home directory as /ftp. They'll be able to traverse the entire FTP tree from there. Just ensure that the /ftp directory structure is owned by a group that your staff accounts are in, and that all of the sub directories are modded with appropriate permissions. If so, it’s not clear how I can chroot each potential client into his own directory, as my understanding is that all chrooted users wind up at the same place (like /var/ftp/pub). Or is the solution that each client gets access to his own home directory; Yes, each to their own home dir. if so, how do I ensure my staff has access to each client’s home directory? I'm assuming that your staff will be using FTP as well. Simply assign their home directory to the root FTP directory. Lastly, I’ve also been reading up on PureFTP, which seems to have some advanced configuration potential (including LDAP authentication, something else that interests me) but it’s not clear that using an alternative product is indicated here. This seems like something other organizations must have dealt with, so I must be missing something fundamental. Can someone point me in the right direction? Finally, I’m aware FTP has inherent security liabilities as passwords cross the net in clear text, but I’m not convinced casual users on Windows boxes will be able to manage fun stuff like SSH connections or alternative software, like SCP. Provide them a link to a client software that uses SFTP. I use WinSCP (portable), which defaults to SFTP, and provides the server, username and password fields as soon as it is launched. Hope I didn't miss anything ;) Steve smime.p7s Description: S/MIME Cryptographic Signature
Re: FTP Server for individual client spaces
In the last episode (Jul 10), Steve Bertrand said: RS Wood wrote: Finally, I'm aware FTP has inherent security liabilities as passwords cross the net in clear text, but I'm not convinced casual users on Windows boxes will be able to manage fun stuff like SSH connections or alternative software, like SCP. Provide them a link to a client software that uses SFTP. I use WinSCP (portable), which defaults to SFTP, and provides the server, username and password fields as soon as it is launched. WinSCP is good. Other nice free SFTP clients are FileZilla (has Windows, OS X and Unix versions) and muCommander (Java so it will run on anything). http://www.winscp.net/ http://www.filezilla-project.org/ http://www.mucommander.com/ -- Dan Nelson dnel...@allantgroup.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP Server for individual client spaces
On Fri, Jul 10, 2009 at 03:10:24PM +0100, RS Wood typed: I run a small engineering company* that exchanges large files (CAD, etc.) with clients, and I want to keep the docs off my email server by setting up a stand alone FTP server where each client can upload and download its relevant files. As such, my own users/employees should be able to reach every client???s FTP space but each client should only be able to reach his own. As my users finish a doc, they place it in that client???s FTP directory and the client can log in and get it. As such, I don???t want any form of unauthenticated FTP. Do your employees need access through the same ftp server? You could serve them any other way (e.g. internally export the entire ftp tree as an NFS or CIFS share). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP
On Tue, Jul 07, 2009 at 11:06:12AM -0500, Kevin Kinsey typed: Jos Chrispijn wrote: Ruben de Groot wrote: On Tue, Jul 07, 2009 at 11:27:53AM +0200, Jos Chrispijn typed: - use truss on the server process Thanks for your reply; can you explain what you mean with this? Jos Chrispijn He's assuming you have control of the FTP server ... I wasn't assuming. It's what he said. Ruben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP
On Tue, Jul 07, 2009 at 11:27:53AM +0200, Jos Chrispijn typed: FreeBSD 6.4-STABLE I do an upload to this server (plain ftp, not thru a php script) and every time the upload gets stuck at approx. 1,2 Gb. There is no shortage on capacity on that slice and I don't get a log report on ftp failure. Could you tell me what I can do to, at least, get an idea why these uploads get stuck? Thanks Standard debugging? - increase logging level on the ftp daemon - sniff network traffic - use truss on the server process Ruben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP
Ruben de Groot wrote: On Tue, Jul 07, 2009 at 11:27:53AM +0200, Jos Chrispijn typed: - use truss on the server process Thanks for your reply; can you explain what you mean with this? Jos Chrispijn ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP
Jos Chrispijn wrote: Ruben de Groot wrote: On Tue, Jul 07, 2009 at 11:27:53AM +0200, Jos Chrispijn typed: - use truss on the server process Thanks for your reply; can you explain what you mean with this? Jos Chrispijn He's assuming you have control of the FTP server ... $ apropos truss truss(1) - trace system calls ... so you can use the above tool to see what's going on from the server's point of view. HTH, Kevin Kinsey -- Suaviter in modo, fortiter in re. Se non e vero, e ben trovato. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP
Kevin Kinsey wrote: He's assuming you have control of the FTP server ... $ apropos truss truss(1) - trace system calls ... so you can use the above tool to see what's going on from the server's point of view. Great suggestion, will do! Thanks. -- Jos Chrispijn ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp user issues
On Thu, 18 Jun 2009 11:45:43 -0700, Chris Maness ch...@chrismaness.com wrote: I just upgraded to 7.2, and I am no longer able to log in via ftp with my user name. Other accounts are ok on the server. I checked the ftpusers file and my name is not on the list. You can use ftp -v to get more information, and maybe tcpdump from that interface so see what's happening. -- Polytropon From Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp user issues
On 6/18/09, Chris Maness ch...@chrismaness.com wrote: I just upgraded to 7.2, and I am no longer able to log in via ftp with my user name. Other accounts are ok on the server. I checked the ftpusers file and my name is not on the list. Chris Maness http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-ftp.html ftpusers file is used to prevent logins. http://www.freebsd.org/cgi/man.cgi?query=ftpdapropos=0sektion=0manpath=FreeBSD+7.2-RELEASEformat=html is your user's shell (i.e: bash) in /etc/shells ? FreeBSD's stock ftpd requires the user's shell to be in /etc/shells in order to login. See http://www.freebsd.org/cgi/man.cgi?query=getusershellsektion=3apropos=0manpath=FreeBSD+7.2-RELEASE Documentation is great. RTFM ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp user issues
Documentation is great. RTFM I don't think a RTFM is justified as this connection is an esoteric one for some of us. Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp user issues
is your user's shell (i.e: bash) in /etc/shells ? This was the issue, thanks. I guess I missed that one in mergemaster. Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp with .... ?
On Thu, 02 Apr 2009 01:18:39 +0300, Joshua Gimer jgi...@gmail.com wrote: What user is your ftp daemon running as? ftpadmin.. have a look @ http://daemonforums.org/showthread.php?t=3050 that's where I curently am. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp with .... ?
On Wed, 01 Apr 2009 03:53:09 +0300, Joshua Gimer jgi...@gmail.com wrote: Are you sure that the suid bit will not provide the functionality that you require? It provides it, but only half of it. Did chmod g+s /mnt and chmod u+s /mnt but when I create a file with ftpadmin through a ftp the file has ftpadmin:wheel (Parent directory belongs to root:wheel). Maybe it cannot change to root ? That would be strainge, seing how samba can do it (then again samba has a module for this) I would make sure that the proper user owns the directory They are and then set its suid bit (chmod u+s /mnt/) Already did that. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp with .... ?
What user is your ftp daemon running as? On Wed, Apr 1, 2009 at 2:08 AM, Vasadi I. Claudiu Florin claudiu.vas...@gmail.com wrote: On Wed, 01 Apr 2009 03:53:09 +0300, Joshua Gimer jgi...@gmail.com wrote: Are you sure that the suid bit will not provide the functionality that you require? It provides it, but only half of it. Did chmod g+s /mnt and chmod u+s /mnt but when I create a file with ftpadmin through a ftp the file has ftpadmin:wheel (Parent directory belongs to root:wheel). Maybe it cannot change to root ? That would be strainge, seing how samba can do it (then again samba has a module for this) I would make sure that the proper user owns the directory They are and then set its suid bit (chmod u+s /mnt/) Already did that. -- Thx Joshua Gimer ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp with .... ?
Are you sure that the suid bit will not provide the functionality that you require? I would make sure that the proper user owns the directory and then set its suid bit (chmod u+s /mnt/) If I am missing something please let me know. On Tue, Mar 31, 2009 at 3:13 PM, Vasadi I. Claudiu Florin claudiu.vas...@gmail.com wrote: Hello guys, Here's the deal: I have a samba server on a FreeBSD 7.1-STABLE running with mod-acl (or whatever it's called). The folder it is connected to (let's call it share) has acl enabled. Thus all data written with samba (from my xp box) automagicly inharits permision of parent folder (root:wheel). Perfect till now. This is were the catch catches up. I also want ftp access to that folder (a master ftp account that only I will know) but also want it with acl features; I mean all files written by/through ftp will (or must) have inherited parent directory permisions, leaving samba full permisions over files/folder in that directory (as stated by acl). Here's the curent setup the share folder (actually /mnt) # file: /mnt/ # owner: root # group: wheel user::rwx user:smbadmin:rwx user:ftpadmin:rwx group::--- mask::rwx other::--- As you can see, the owner is root:wheel. The samba master acount is smbadmin with rwx privileges. Now, I wish to employ another username, also with rwx privileges, for a master ftp account (say ftpadmin), but all files writen by this user *will* eventually end up on disk as root:wheel, not ftpadmin:group. What I've done so far. Read a bit about chmod +s and by chmod g+s managed to ensure that whoever writes files to that folder, end up belonging to wheel group. Didn't manage on the other hand to employ the same thing for the user. Files are owned by ftpadmin Of course I could add these accounts into one big group, but then, were would all the fun be ? :) And also, I would have a terrible time when say another ftp user would be required to have some sort or acces but diferent from that group I previously mentioned (say r--). Now, from what I tinkered about I need some sort of control agent between the actual ftp and the disk (something similar to mod-acl of samba maybe?) or force the files that are to be written to disk to change theyre usr:group by some chmod-similar manner. Please point me in the right direction. A link, an ideea ... something. Am capable of doing it myself, no need for please do this for me..nono. So ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- Thx Joshua Gimer ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ftp server: create/delete user by web interface
Hello Sebastian Sorry for the delay but I was very bussy. Am Thu, Sep 04, 2008 at 09:31:03AM +0200 Sebastian Tymków schrieb: Have you tried cpanel or webmin ? I checked webmin but not very depth. Or maybe you're looking for solution like ftp server and accounts in database ? This is a possible way. Probably the combination ftp users in a database is ok. Which one is the best solution? I've three FreeBSD 7.0 server. Im looking for a combination where I can create/delete etc. ftp users as a non-root user (probably from a template). Regards, -- Martin Schweizer [EMAIL PROTECTED] PC-Service M. Schweizer GmbH; Bannholzstrasse 6; CH-8608 Bubikon Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch; public key : http://www.pc-service.ch/pgp/public_key.asc; fingerprint: EC21 CA4D 5C78 BC2D 73B7 10F9 C1AE 1691 D30F D239; ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp server: create/delete user by web interface
Hello, 2008/9/8 Martin Schweizer [EMAIL PROTECTED] Or maybe you're looking for solution like ftp server and accounts in database ? This is a possible way. Probably the combination ftp users in a database is ok. Which one is the best solution? I've three FreeBSD 7.0 server. Im looking for a combination where I can create/delete etc. ftp users as a non-root user (probably from a template). I haven't used such solution,but you can try pureftpd+sql backed or vsftpd with mysql backed. Best regards, Sebastian Tymków ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp server: create/delete user by web interface
Hello, Have you tried cpanel or webmin ? Or maybe you're looking for solution like ftp server and accounts in database ? Best regards, Sebastian Tymków 2008/9/4 Martin Schweizer [EMAIL PROTECTED] Hello I've three FreeBSD 7.0 server. Im looking for a combination where I can create/delete etc. ftp users as a non-root user (probably from a template). Do you have some hints which combinations works in such a constellation? Regards, -- Martin Schweizer [EMAIL PROTECTED] PC-Service M. Schweizer GmbH; Bannholzstrasse 6; CH-8608 Bubikon Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch; public key : http://www.pc-service.ch/pgp/public_key.asc; fingerprint: EC21 CA4D 5C78 BC2D 73B7 10F9 C1AE 1691 D30F D239; ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP build of FreeBSD release 7 amd64 hangs
Desmond Chapman wrote: It stops in docs and refuses to build. I'm behind a router. This error has occured six times in the past twelve hours. Any idea of what may be causing it? No, sorry. Could be anything. Kris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP server behind firewall?
On Thu, 17 Apr 2008 07:59:20 +0300, Manolis Kiagias [EMAIL PROTECTED] wrote: Running an FTP behind a home DSL router is perfectly possible. You will just have to open a range of ports on the router itself eg 25000-25050 and forward them to your ftp server internal IP address. Then set the FTP server to only use these ports for passive transfers. Thanks guys, I think I'll try this, as it's the easiest to allow VB clients to upload files. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP server behind firewall?
On Apr 17, 2008, at 12:59 , Manolis Kiagias wrote: Gilles wrote: On Wed, 16 Apr 2008 22:06:24 -0400, Jon Radel [EMAIL PROTECTED] wrote: What control do you have over the firewall? One of the cleaner solutions would be to run an ftp proxy on the firewall, such as that supplied with pf. See ftp-proxy(8) or http://www.openbsd.org/faq/pf/ftp.html Unfortunately, the router/NAT firewall can be neither replaced nor tweaked, since it's a modem/router provided by our ISP. Actually, we don't necessarily need an FTP. Whatever solution to send files is fine, provided I can add this feature in a VB Classic client application. Hi, May be you can consider using sshd + sftp on Server. (Single Port for just about everything, see below) PSCP or PSFTP (from same as PuTTY) allow send / receive file via command line, eg. you can issue exec from VB to send files. pscp [options] source [source...] [EMAIL PROTECTED]:target (PSFTP is prefer over PSCP, but PSCP is simple) http://www.putty.nl/download.html Also, bind sshd on high port will prevent too many port scan and the connection is consider to be more secure than ftp. IMHO, sftp is more easily managed than ftp in the long run (Both Server and Client). ps. I also use ssh to forward 3389, the M$ Terminal Server (even XP has one), no need for PC ANYWHERE. If you need to solve problem remotely, you don't need to open another port (PC ANYWHERE needs 2). J. Running an FTP behind a home DSL router is perfectly possible. You will just have to open a range of ports on the router itself eg 25000-25050 and forward them to your ftp server internal IP address. Then set the FTP server to only use these ports for passive transfers. For example, I am using ftp/proftpd and have this directive in the configuration file: PassivePorts 25000-25050 You will, of course, need to forward port 21 as well. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions- [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP server behind firewall?
On Thursday 17 April 2008 04:32:41 Gilles wrote: Actually, we don't necessarily need an FTP. Whatever solution to send files is fine, provided I can add this feature in a VB Classic client application. Depends a bit on the max filesize and number of files. You can do a HTTP POST request, using a simple upload script (numerous examples of those to be found on the web). Of course, the traffic for that is larger since it will be base64 encoded. On the plus side, you don't need local user accounts on the ftp server, while still having full control over where the files end up. This can get tedious if you have multiple small files, or filesizes in the order 100M. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP server behind firewall?
Gilles wrote: Hello We have FreeBSD server on our private LAN behind a NAT firewall on which I'd like to add an FTP server so that customers can send us stuff. Problem is, since customers might have a NAT firewall on their end, the client application must connect in passive mode... but this just moves the problem to our end, where the FTP server will open a random port for data... to which the client will fail connecting since our NAT firewall is keeping them out of our LAN :-/ Is there a way to keep our server in the private LAN and still provide a way for customers to upload data? Hard-code the socket number used by the FTP server for data? Use a different type of server? What control do you have over the firewall? One of the cleaner solutions would be to run an ftp proxy on the firewall, such as that supplied with pf. See ftp-proxy(8) or http://www.openbsd.org/faq/pf/ftp.html --Jon Radel smime.p7s Description: S/MIME Cryptographic Signature
Re: FTP server behind firewall?
On Wed, 16 Apr 2008 22:06:24 -0400, Jon Radel [EMAIL PROTECTED] wrote: What control do you have over the firewall? One of the cleaner solutions would be to run an ftp proxy on the firewall, such as that supplied with pf. See ftp-proxy(8) or http://www.openbsd.org/faq/pf/ftp.html Unfortunately, the router/NAT firewall can be neither replaced nor tweaked, since it's a modem/router provided by our ISP. Actually, we don't necessarily need an FTP. Whatever solution to send files is fine, provided I can add this feature in a VB Classic client application. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP server behind firewall?
Gilles wrote: On Wed, 16 Apr 2008 22:06:24 -0400, Jon Radel [EMAIL PROTECTED] wrote: What control do you have over the firewall? One of the cleaner solutions would be to run an ftp proxy on the firewall, such as that supplied with pf. See ftp-proxy(8) or http://www.openbsd.org/faq/pf/ftp.html Unfortunately, the router/NAT firewall can be neither replaced nor tweaked, since it's a modem/router provided by our ISP. Actually, we don't necessarily need an FTP. Whatever solution to send files is fine, provided I can add this feature in a VB Classic client application. Running an FTP behind a home DSL router is perfectly possible. You will just have to open a range of ports on the router itself eg 25000-25050 and forward them to your ftp server internal IP address. Then set the FTP server to only use these ports for passive transfers. For example, I am using ftp/proftpd and have this directive in the configuration file: PassivePorts 25000-25050 You will, of course, need to forward port 21 as well. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP installation problem.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Righard van Roy wrote: Hello, I was planning stepping over from Linux to BSD. I trying to install FreeBSD using the minimal boot cd over FTP. In the installation menu I select that I do not wish to use IPv6, and that I do wish to use DHCP. I sure I have selected the correct Network card. Although after this my DHCP settings have bin found correctly the installation program reports me that it cannot resolve the name of the server (I ve tried more than one) I did not find anything special on the second console nor scrolling up with scroll lock. My internet connection is working. Does anybody have a solution to my problem? Sounds like your DHCP server is not telling you the IP numbers of some usable DNS servers. Alternatively, you can just tell the installer not to use DHCP and fill in the IP, netmask, gateway, hostname and DNS server manually in the network settings screen. P.S. is there a way to go to a console during installation to tweak some settings like I used doing in Archlinux? Maybe then I can get the connection working by hand. Sure. Alt+F4 will take you to the 'emergency holographic shell' where you should[*] be able to edit the /etc/resolv.conf file used during installation. However, be aware that editing that file won't automatically affect the /etc/resolv.conf you get once everything is installed -- in fact, if you're using DHCP, that file will be overwritten at each reboot. Cheers, Matthew [*] Possibly with some difficulty, as you'll be in a memory file system with very limited contents. - -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.4 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHuBBk8Mjk52CukIwRCPo5AJ9f6qHi6DCS4oRI/+/aq6rLe6DacwCeLLWl 9+rmas/3swWmRBZVsW4Hzvg= =VBJC -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: FTP installation problem.
Date: Sun, 17 Feb 2008 12:02:36 +0200 From: [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Subject: FTP installation problem. Hello, I was planning stepping over from Linux to BSD. I trying to install FreeBSD using the minimal boot cd over FTP. In the installation menu I select that I do not wish to use IPv6, and that I do wish to use DHCP. I sure I have selected the correct Network card. Although after this my DHCP settings have bin found correctly the installation program reports me that it cannot resolve the name of the server (I ve tried more than one) I did not find anything special on the second console nor scrolling up with scroll lock. My internet connection is working. Does anybody have a solution to my problem? Thank you, Righard P.S. is there a way to go to a console during installation to tweak some settings like I used doing in Archlinux? Maybe then I can get the connection working by hand. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] I have had a similar problem. I believe it depends on the release you are installing- some newer ones aren't supported on older EOL mirrors I think. What release are you trying? _ New music from the Rogue Traders - listen now! http://ninemsn.com.au/share/redir/adTrack.asp?mode=clickclientID=832referral=hotmailtaglineOct07URL=http://music.ninemsn.com.au/roguetraders___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp setup - asap - giotissl
On Saturday 19 January 2008 06:28:15 am Giotis Eugen wrote: hello i am looking at http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/packages-using.ht ml im trying to setup my ftp server. I can not connect to my ftp via the ftp softwares. I tried with windows (FlashFXP and smartFXP) and via the Terminal of Linux CentOS5. # ftp -a *ftp2.FreeBSD.org* Connected to ftp2.FreeBSD.org. 220 ftp2.FreeBSD.org FTP server (Version 6.00LS) ready. --- ftp3... 331 Guest login ok, send your email address as password. 230- 230- This machine is in Vienna, VA, USA, hosted by Verio. 230- Questions? E-mail [EMAIL PROTECTED] 230- 230- 230 Guest login ok, access restrictions apply. Remote system type is UNIX. Using binary mode to transfer files. ftp cd /pub/FreeBSD/ports/packages/sysutils/ 250 CWD command successful. ftp get lsof-4.56.4.tgz - I recieve the following error: ftp get 1sof-4.56.4.tar.gz local: 1sof-4.56.4.tar.gz remote: 1sof-4.56.4.tar.gz 229 Entering Extended Passive Mode (|||54352|) 550 1sof-4.56.4.tar.gz: No such file or directory. local: lsof-4.56.4.tgz remote: lsof-4.56.4.tgz 200 PORT command successful. 150 Opening BINARY mode data connection for 'lsof-4.56.4.tgz' (92375 bytes). 100% |**| 92375 00:00 ETA 226 Transfer complete. 92375 bytes received in 5.60 seconds (16.11 KB/s) ftp exit # pkg_add *lsof-4.56.4.tgz** * Can anyone help me ? by your examples, im having difficulty understanding that the issue is. i dont see any output from connecting to *your* ftp server, and the associated errors. can you be more specific about what is not working? -- Jonathan Horne http://dfwlpiki.dfwlp.org freebsd08 [EMAIL PROTECTED] dfwlp.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp setup - giotissl - ASAP - SOS
On Thu, 2008-01-17 at 23:11 +0200, Giotis Eugen wrote: hello, I just bought a dedicated server (unmanaged server) Can you help me? I want to install the ftp. Can you help me step by step ? I can connect to my server via SSH and I have installed the cpanel/whm. http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-ftp.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP CRON Script
At 04:31 PM 10/10/2007, White Hat wrote: This is driving me crazy. I have a small script that I run from CRON. It is run as a regular user and not as ROOT, although I have tried it both ways. It uploads SPAM to the 'knujon.com' site'. I have created a ~/.netrc file that looks like this: machine knujon.com login user password secret macdef spam put $1 quit Now, if I run the following command from the command prompt, the script works fine. echo \$ spam spam.zip | ftp -n ftp://user:[EMAIL PROTECTED] The above should all be on one line, although it may be shown split into two right now. However, if this is put into a bash script, and run if from CRON, I receive a mail with this error message: 'spam' macro not found. I have no idea what I am doing wrong. I have the $HOME, $SHELL and $PATH variables set in CRON. try set -x and see what the output looks like. I'd guess you are not escaping the $ right in your script. -Derek -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp access but no log
How does the log look,,Did they just attempt or got access to it...? Thanks Hakan http://dominor.com On 10/1/07, Walter [EMAIL PROTECTED] wrote: Hi again, I just by chance noticed today that someone was accessing my ftp server. No big deal, except that I did not see any log of it via last which usually shows these things. I could see a record in /var/log/xferlog, however. Did someone break in? Should I worry? Thanks. Walter ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp daemon fails
On Tuesday 11 September 2007 18:51:44 tekkie140 wrote: hi - all of a sudden (it used to work) i can't start the ftpd daemon. # /usr/libexec/ftpd -l -R -p ftpd-id Sept 10 09:02:22 myhostname ftpd[1234]: getpeername (/usr/libexec/ftpd): Socket operation on non-socket # anyone know where i should look? /etc/hosts looks okay. getpeername means it doesn't have anything to connect with. It doesn't have anything to connect with, because you didn't specify -D option and as such it expects a socket from inetd. -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp woes
On Friday 22 June 2007, Beech Rintoul said: On Thursday 21 June 2007, RYAN M. vAN GINNEKEN said: Hello all i have been going crazy trying to sort out this ftp problem. I have a server machine that is connected directly to the net i have opened my ipf firewall to accept all connections. At first i thought i did not need ipnat rules becuase this host is not acting as a gateway just a standalone machine. I added these rules to ipnat just to be on the safe side even though i do not have a internal network. # This rule will handle all the traffic for the internal LAN: map xl0 192.168.0.0/16 - 0/32 proxy port 21 ftp/tcp # This rule handles the FTP traffic from the gateway: map xl0 0.0.0.0/0 - 0/32 proxy port 21 ftp/tcp # THE RULE THAT FORWARDS EVERTHING map xl0 192.168.0.0/16 - 0/32 map xl0 192.168.1.0/16 - 0/32 I tried the default ftpd and lukemftp now i have installed and configured proftpd I can login ok but when i try to do a cd or ls i always get this error ftp new.computerking.ca Connected to new.computerking.ca. 220 ProFTPD 1.3.1rc2 Server (ProFTPD Default Installation) [68.144.1.51] Name (new.computerking.ca:rmvg): computerking 331 Password required for computerking Password: 230 User computerking logged in Remote system type is UNIX. Using binary mode to transfer files. ftp ls ftp: connect: No route to host ftp cd (remote-directory) / 250 CWD command successful ftp ls ftp: connect: No route to host ftp dir ftp: connect: No route to host ftp You need both port 20 and port 21. This might help explain it to you: http://slacksite.com/other/ftp.html Beech -- --- Beech Rintoul - FreeBSD Developer - [EMAIL PROTECTED] /\ ASCII Ribbon Campaign | FreeBSD Since 4.x \ / - NO HTML/RTF in e-mail | http://www.freebsd.org X - NO Word docs in e-mail | Latest Release: / \ - http://www.FreeBSD.org/releases/6.2R/announce.html --- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp woes
On Thursday 21 June 2007, RYAN M. vAN GINNEKEN said: Hello all i have been going crazy trying to sort out this ftp problem. I have a server machine that is connected directly to the net i have opened my ipf firewall to accept all connections. At first i thought i did not need ipnat rules becuase this host is not acting as a gateway just a standalone machine. I added these rules to ipnat just to be on the safe side even though i do not have a internal network. # This rule will handle all the traffic for the internal LAN: map xl0 192.168.0.0/16 - 0/32 proxy port 21 ftp/tcp # This rule handles the FTP traffic from the gateway: map xl0 0.0.0.0/0 - 0/32 proxy port 21 ftp/tcp # THE RULE THAT FORWARDS EVERTHING map xl0 192.168.0.0/16 - 0/32 map xl0 192.168.1.0/16 - 0/32 I tried the default ftpd and lukemftp now i have installed and configured proftpd I can login ok but when i try to do a cd or ls i always get this error ftp new.computerking.ca Connected to new.computerking.ca. 220 ProFTPD 1.3.1rc2 Server (ProFTPD Default Installation) [68.144.1.51] Name (new.computerking.ca:rmvg): computerking 331 Password required for computerking Password: 230 User computerking logged in Remote system type is UNIX. Using binary mode to transfer files. ftp ls ftp: connect: No route to host ftp cd (remote-directory) / 250 CWD command successful ftp ls ftp: connect: No route to host ftp dir ftp: connect: No route to host ftp You need both port 20 and port 21. Beech -- --- Beech Rintoul - FreeBSD Developer - [EMAIL PROTECTED] /\ ASCII Ribbon Campaign | FreeBSD Since 4.x \ / - NO HTML/RTF in e-mail | http://www.freebsd.org X - NO Word docs in e-mail | Latest Release: / \ - http://www.FreeBSD.org/releases/6.2R/announce.html --- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp chroot directory structure
On Thursday 26 April 2007 9:12 pm, Ray wrote: Hello, I am setting up a new web server that must host data from an existing webserver. We've never had an organized folder structure for private data, (passwords, secure data, etc) and I'm trying to change that. there are currently a number of virtual sites all handled through apache virtualhosts. all (or at least most) users must have ftp access. my original thought was this: apache/priv_data/domain1 apache/pub_data/domain1 where apache/priv_data/domain1 contains a soft link to apache/pub_data/domain1 and the ftpchroot is apache/pri_data/domain1 this doesn't work like I wanted it to. I can't follow the link with an ftp client. after posting, I decided I'm going to do it this way, and hope the other developers didn't cheat too bad. I think this is the right way. Ray obviously the best solution would be apache/priv_data/domain1 which contains apache/data/domain1/pub_data with domain1 as the ftp root and pub_data as the http root, but I'm not the developer of all the sites, and I don't want to have to trouble shoot other peoples possibly incorrectly written sites (hard coded path structures) What can you suggest as my best solution? Thanks Ray ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP timestamp problem with ftpchroot
Joshua Prunier [EMAIL PROTECTED] writes: Hi, I've searched the FreeBSD support pages and googled with no solution to the problem I am having. When we FTP into our machine the timestamps for all the files seen are 4 hours later than if you ssh into the machine and look at those same files. The time is correct. I verified it with the date command, BIOS is also correct. I also know this is somehow caused by chroot. I have an /etc/ftpchroot file enabled to keep ftp users in their own directories. If I remove this file then the 4 hour time difference goes away and your able to see the proper times when viewing via FTP. Note that this system does not have anonymous ftp enabled. I'm also having the problem with both FreeBSD i386 6.1 6.2. Is this a bug? Maybe I'm just missing a setting or configuration somewhere. If anyone has run across this before and knows how to fix the problem I would greatly appreciate it. Should I just give up on the FreeBSD ftpd and install a 3rd party FTP server? I strongly suspect that your machine is set to a time zone four hours earlier than Universal. [like mine...] If so, it would be a guess that the problem is the lack of visibility of /etc/localtime within the chroot. You could probably link such a file into the chroot environment(s) and solve the problem that way. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: FTP timestamp problem with ftpchroot
Dear Josh Greenwich mean time -- I thought that might be related! * * * windows vista Ted Turner, CIO IVES Group, Manchaug MA, [EMAIL PROTECTED] My IVES Group Home Office 804 915 7559 rolls to mobile on n/a Mobile Phone 508 341 6973 IVES Group Data Center 508 476-3257 IVES Group E-Fax 508 519 0793 fax to principal's email IVES Group Paper Fax 508 476 3711 my personal E-Fax 208 246 7533 -Original Message- From: Lowell Gilbert [mailto:[EMAIL PROTECTED] Sent: Friday, April 13, 2007 10:44 AM To: Joshua Prunier Cc: [EMAIL PROTECTED]; techsupport Subject: Re: FTP timestamp problem with ftpchroot Joshua Prunier [EMAIL PROTECTED] writes: Hi, I've searched the FreeBSD support pages and googled with no solution to the problem I am having. When we FTP into our machine the timestamps for all the files seen are 4 hours later than if you ssh into the machine and look at those same files. The time is correct. I verified it with the date command, BIOS is also correct. I also know this is somehow caused by chroot. I have an /etc/ftpchroot file enabled to keep ftp users in their own directories. If I remove this file then the 4 hour time difference goes away and your able to see the proper times when viewing via FTP. Note that this system does not have anonymous ftp enabled. I'm also having the problem with both FreeBSD i386 6.1 6.2. Is this a bug? Maybe I'm just missing a setting or configuration somewhere. If anyone has run across this before and knows how to fix the problem I would greatly appreciate it. Should I just give up on the FreeBSD ftpd and install a 3rd party FTP server? I strongly suspect that your machine is set to a time zone four hours earlier than Universal. [like mine...] If so, it would be a guess that the problem is the lack of visibility of /etc/localtime within the chroot. You could probably link such a file into the chroot environment(s) and solve the problem that way. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp set up
On Tue, 6 Mar 2007 4:48:25 -0800 Vizion [EMAIL PROTECTED] wrote: I wonder if someone could point me to a reliable detailed resource for configuring an ftp server on freebsd 6.1 for both incoming and outgoing files (including anonymous ftp). I do not want anonymous uploaders to view existing file names in ftp/incoming or be able to download from incoming. I want the server as secure as is reasonably practicable. The notes in the freebsd handbook are not really comprehensive enough for me. You might want to read up on some of the FTP servers that are available in the ports system. Find one that meets your needs and then if you are still having problems or questions, either check on the FTP server's mailing list, if one is available, or post your question here. -- Gerard Friends, n: People who borrow your books and set wet glasses on them. People who know you well, but like you anyway. signature.asc Description: PGP signature
Re: ftp set up
Please wrap your lines around 72 characters. In response to Vizion [EMAIL PROTECTED]: I wonder if someone could point me to a reliable detailed resource for configuring an ftp server on freebsd 6.1 for both incoming and outgoing files (including anonymous ftp). I do not want anonymous uploaders to view existing file names in ftp/incoming or be able to download from incoming. I want the server as secure as is reasonably practicable. The notes in the freebsd handbook are not really comprehensive enough for me. Please don't do this. Please don't even try. Never try to use the word secure in the same sentence as ftp. They don't fit in the same sentence. Set up ssh, then have Windows users use WinSCP. Let me tell a little story. A few years back I was asked to set up secure ftp for a client. I argued, but he insisted, and the customer is always right, so I set it up for him. The plan, to keep it secure, was to enable the FTP server when it was needed, and disable it when the transfer was complete. Well, one day he forgot to turn it off. A few weeks later he went to enable it for another transfer and noticed a bunch of files on the server he didn't recognize. Someone had guessed the password and was using his FTP server to transfer files of a most unsavory nature. After we destroyed the files, changed the passwords, etc -- he decided to keep using the FTP (in spite of the incident). The only problem, he argued, was that we'd forgot to turn it off. But the crook now had our address. The next time he enabled that server, it wasn't more than a few hours before the crook was using it to move around his files again. The guy must have set up some monitoring to alert him when the FTP site came up, then he either had a sniffer to get the password or he was able to brute-force it really fast. I tell that story when people tell me that the data their transferring isn't sensitive, and therefore using FTP isn't a security risk. It still is. The only time it's OK to use FTP is when it's download only and the files are publicly available. Any other time, FTP is a liability. -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp set up
-Original Message- From: Bill Moran [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 06, 2007 5:24 AM To: Vizion Cc: freebsd-questions@freebsd.org Subject: Re: ftp set up Please wrap your lines around 72 characters. In response to Vizion [EMAIL PROTECTED]: I wonder if someone could point me to a reliable detailed resource for configuring an ftp server on freebsd 6.1 for both incoming and outgoing files (including anonymous ftp). I do not want anonymous uploaders to view existing file names in ftp/incoming or be able to download from incoming. I want the server as secure as is reasonably practicable. The notes in the freebsd handbook are not really comprehensive enough for me. Please don't do this. Please don't even try. -- Got yr point -- my guess is you did not use a process to shift files out of the the upload directory as soon as they arrived. That way they can be monitored and never downloaded. I think it is up to each administrator to solve the problems. If you happen to have an answer to my original question -- a reliable source of info about ftp configuration it would be useful. It is a long time since I ran an ftp server and I am rusty. I ran a large number of ftp servers for a long time and suffered many hacking attempts but none succeeded on my watch. I agree it is not easy - but necessary david ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp set up
In response to Vizion [EMAIL PROTECTED]: -Original Message- From: Bill Moran [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 06, 2007 5:24 AM To: Vizion Cc: freebsd-questions@freebsd.org Subject: Re: ftp set up Please wrap your lines around 72 characters. In response to Vizion [EMAIL PROTECTED]: I wonder if someone could point me to a reliable detailed resource for configuring an ftp server on freebsd 6.1 for both incoming and outgoing files (including anonymous ftp). I do not want anonymous uploaders to view existing file names in ftp/incoming or be able to download from incoming. I want the server as secure as is reasonably practicable. The notes in the freebsd handbook are not really comprehensive enough for me. Please don't do this. Please don't even try. -- Got yr point -- my guess is you did not use a process to shift files out of the the upload directory as soon as they arrived. That way they can be monitored and never downloaded. You're still sending out _very_ long lines. ... and no, I didn't use a process to prevent files from being subsequently downloaded, it would have defeated the purpose of file transfer. I think it is up to each administrator to solve the problems. If you happen to have an answer to my original question -- a reliable source of info about ftp configuration it would be useful. It is a long time since I ran an ftp server and I am rusty. Sorry, I don't. I haven't set up an FTP server in a long time. scp has replaced ftp -- which was my point. I've done my due-diligence in warning of the dangers ... -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp set up
In response to Vizion [EMAIL PROTECTED]: -Original Message- From: Bill Moran [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 06, 2007 5:24 AM To: Vizion Cc: freebsd-questions@freebsd.org Subject: Re: ftp set up Please wrap your lines around 72 characters. In response to Vizion [EMAIL PROTECTED]: I wonder if someone could point me to a reliable detailed resource for configuring an ftp server on freebsd 6.1 for both incoming and outgoing files (including anonymous ftp). I do not want anonymous uploaders to view existing file names in ftp/incoming or be able to download from incoming. I want the server as secure as is reasonably practicable. The notes in the freebsd handbook are not really comprehensive enough for me. Please don't do this. Please don't even try. -- Got yr point -- my guess is you did not use a process to shift files out of the the upload directory as soon as they arrived. That way they can be monitored and never downloaded. You're still sending out _very_ long lines. BTW my standard line length is 80 chars.. I have reduced them for you. Dont you have a wrap option on your mail reader to set the lines to your desired width ... and no, I didn't use a process to prevent files from being subsequently downloaded, it would have defeated the purpose of file transfer. Here we differ .. if you did not do that you asked for trouble!! David I think it is up to each administrator to solve the problems. If you happen to have an answer to my original question -- a reliable source of info about ftp configuration it would be useful. It is a long time since I ran an ftp server and I am rusty. Sorry, I don't. I haven't set up an FTP server in a long time. scp has replaced ftp -- which was my point. I've done my due-diligence in warning of the dangers ... Uploading to an ftp server has to be treated as a process by which the sender offers files to the administrator who may or may not choose to transfer them to the download directory. IF you let an end user determine what may be made available and subsequently have trouble well do not blame ftp blame the administrator!! IMHO To do otherwise is not exercising due diligence!! On web sites I follow the same principle -- users cannot add links -- only offer them.. same principle! david -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp set up
--- Bill Moran [EMAIL PROTECTED] wrote: Please wrap your lines around 72 characters. In response to Vizion [EMAIL PROTECTED]: I wonder if someone could point me to a reliable detailed resource for configuring an ftp server on freebsd 6.1 for both incoming and outgoing files (including anonymous ftp). I do not want anonymous uploaders to view existing file names in ftp/incoming or be able to download from incoming. I want the server as secure as is reasonably practicable. The notes in the freebsd handbook are not really comprehensive enough for me. Please don't do this. Please don't even try. Never try to use the word secure in the same sentence as ftp. They don't fit in the same sentence. Set up ssh, then have Windows users use WinSCP. Let me tell a little story. A few years back I was asked to set up secure ftp for a client. I argued, but he insisted, and the customer is always right, so I set it up for him. The plan, to keep it secure, was to enable the FTP server when it was needed, and disable it when the transfer was complete. Well, one day he forgot to turn it off. A few weeks later he went to enable it for another transfer and noticed a bunch of files on the server he didn't recognize. Someone had guessed the password and was using his FTP server to transfer files of a most unsavory nature. After we destroyed the files, changed the passwords, etc -- he decided to keep using the FTP (in spite of the incident). The only problem, he argued, was that we'd forgot to turn it off. But the crook now had our address. The next time he enabled that server, it wasn't more than a few hours before the crook was using it to move around his files again. The guy must have set up some monitoring to alert him when the FTP site came up, then he either had a sniffer to get the password or he was able to brute-force it really fast. I tell that story when people tell me that the data their transferring isn't sensitive, and therefore using FTP isn't a security risk. It still is. The only time it's OK to use FTP is when it's download only and the files are publicly available. Any other time, FTP is a liability. -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Just an informational bit for the windows users that will transfer files: WinSCP http://winscp.net/eng/index.php Filezilla http://filezilla.sourceforge.net/ Portable FileZilla http://portableapps.com/ PS: The portable version of FileZilla doesn't require an install on Windows. TV dinner still cooling? Check out Tonight's Picks on Yahoo! TV. http://tv.yahoo.com/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP Servers Down
On 2/14/07, Elida Waggoner [EMAIL PROTECTED] wrote: Hello I am using the ports tree with the latest BSD release and for some reason if a package is tried to be downloaded from most the ftp.Freebsd.org servers and mirrors it fails. Is there a reason for this or an updated FTP list somewhere. hmm...what's the error message you are getting when it tries to grab a package. i do not see any issues from where i am, but an error message will help folks on the list diagnose what's going on your end. -pete -- ~~o0OO0o~~ Pete Wright www.nycbug.org NYC's *BSD User Group ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp-archive.freebsd.org
On 2/7/07, Marcel Smeets [EMAIL PROTECTED] wrote: Hi, I have a Freebsd 5.3 Virtual machine running on a SUSE 9.3 Xen 2.05 machine and I wanted to recompile the kernel with the xen-sources and kernel sources form the archive. But to my great astonishment the ftp://ftp-archive.freebsd.org url asked for a username and password, which it didn't before Have you tried to log in as anonymous with the password of anonymous (w/out quotes)? What's happened or is something wrong?? The URL loads OK for me in firefox; could it be that you used to access the URL in question with a client that automatically attempted anonymous login, and now you are using a different client, or that the client is no longer attempting anonymous login on your behalf due to a software update / configuration change? E.g. when using the ftp ftp-archive.freebsd.org command in a shell, the ftp login prompt comes up and you must type in a user/pass to continue (but anonymous:anonymous seems to be working just fine). Sincerely, -Parker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp over ssh
On 11/8/06, Gorobets Igor [EMAIL PROTECTED] wrote: Hello. How correctly to adjust this miracle? :-) man sftp ;-) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp over ssh
I on ssh do the forward of port here thus ssh -L local_port:foo.com:remote_port foo.com. I should as make with ftp. On Wed, Nov 08, 2006 at 12:59 +0300, Andrew Pantyukhin wrote: On 11/8/06, Gorobets Igor [EMAIL PROTECTED] wrote: Hello. How correctly to adjust this miracle? :-) man sftp ;-) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ftp over ssh
On 11/8/06, Gorobets Igor [EMAIL PROTECTED] wrote: I on ssh do the forward of port here thus ssh -L local_port:foo.com:remote_port foo.com. I should as make with ftp. What are you talking about? http://en.wikipedia.org/wiki/FTP_over_SSH ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
