Anonymous ftp configuration
Hi,
I'm trying to set up an anonymous ftp server on an Ultra 10 running solaris 8 and am having massive amounts of problems. I did download wu-ftp found on http://www.sunfreeware.com and I installed it but now cannot find the binary executables. I followed the man pages for ftpd and encoutered that it said that even though anonymous worked and had a home directory of / but couldn't see any files or cd into any sub directory.
Any help would be very helpfull!
Thank you,
Cindy Herzberg
University of Detroit Mercy
Read these first:
http://www.cert.org/techtips/anonymous_ftpconfig.html
http://www.cert.org/techtips/anonymous_ftpabuses.html
Create the user in NetInfo Manager. Create the directories and assign permissions in Terminal.
Similar Messages
-
Disabling anonymous ftp access
We have just completed a 9iFS install. The previous version of iFS was 1.1.6. We were having problems with anonymous logins (people were dumping garbage in our public folder) and we disabled anonymous FTP by changing the guest password (we also changed it in the IFSDavServletParameters.properties file and modified the ftpserver.def file by setting AnonymousPoolSize = 0 and AllowAnonymousConnections = false. We would like to do the same with 9iFS but these files no longer exist or have been renamed. What are the equivalent files in 9iFS or how else can we go about disabling anonymous logins?
NHi Siva,
Yes the SLD and UME is already configured.
Regards,
Anupama -
Anonymous FTP, How Secure?
All,
I am sending file to Anonymous FTP server from SAP. I like to know how secure Anonymous FTP regarding files.
By using Anonymous FTP, i think we don't need any password.
In this case, anybody in the network can access the file.
Please give your inputs.
a®U can configure the FTP to ask for login and password while accessing it. If it do not ask any uname/password, then it is called anonymous login. If FTP is configured for prompting username and password, then "Anonymous Login" checkbox is unchecked
Or
this is a guet User ID
the anonymous login will use to have User ID as "anonymous" and enter the password as anything (any password will work).
this will always have guest permissions and will not be able to temper any of the data without permission.
the administrator can assign the required permissions and roles to this user ID.
Reward points.. -
Can't get Anonymous FTP folder to work
According to this Apple doc you can set up a folder for anonymous FTP users. But when I add the "uploads" folder to my ftp root directory, which was relocatd as mentioned bellow. It doesn't seem to work. Anonymous users are sent directly to the ftp root folder rather then the uploads folder. So they can see all my files. I want Anonymous users to only be able to see anonymous user files, not all the ftp files.
Any thoughts?
Greg
http://docs.info.apple.com/article.html?path=ServerAdmin/10.4/en/c6fs20.html
Server Admin 10.4 Help
Creating an FTP Uploads Folder for Anonymous Users
The uploads folder provides a place for anonymous users to upload files to the FTP server. It must exist at the top level of the FTP root directory and be named "uploads." (If you have changed the FTP root directory, then the uploads folder must be at the root of that directory.)
Use the Finder to create a folder named "uploads" at the top level of your server's FTP root directory.
Set privileges for the folder to allow guest users to write to it.
You can set up an FTP upload directory using the mkdir and chmod commands in Terminal. For more information, see the file services chapter of the command-line administration guide.Greg,
can you show us the "upload" directory permissions?
Also, have you restarted your ftp server?
Mihalis. -
HI Experts,
i have assigned to following scnario, We are creating report level interfaces from SAP to third party(no bdc,rfc,bapi, such methods) I want to know the FTP configuration bcos the flat files are send through FTP from SAP to third party server.I don't think you need any specific configuration in sap. please check in the sm59 connection list whether you have connection type SAPFTP & SAPFTPA.
How to send the files please check the program RSFTP002
a® -
I'm runing a solaris 8 on a ultra 5. I want to create an anonymous ftp server can some one tells me the steps on hot ot do it or if they have a web site where they show ho to to create one?
several web sites can apply... btw, you should have posted this to the sysop area as you've said in your post you've got solaris 8...
a quick search of google
anonymous ftp solaris setup
yielded...
http://www.dbaoncall.net/references/ht_setup_ftp.html
http://stone.backrush.com/sunfaq/lmh032.html
You may also want to look at a hardened approach and check for how to setup a chroot environment on solaris (there was a post a week or two back with this question)
hth -
Anonymous FTP User created by the system lacks the user name
I'm experiencing some problems and inconsistencies in the Mac OS X Server 10.4.7 FTP service.
First I'll report this behaviour to evaluate if it's worth a bug report.
I read in the that the user with user name 'Anonymous FTP User" and short name 'ftp' is created by the system the first time the FTP server is accessed using an anonymous user.
I noticed that the user is indeed created but its user name field is empty. It doesn't have the associated LDAP record, too.
If I try to manually create a user with an empty user name field WGM errors, so could this be considered a bug?
PowerBook G4 867MHz 12,1" Mac OS X (10.4.7)Hi
Using NFS u can write the file in XI directories only not on other system
If u want to write in other System (ECC in u r case) u shud use FTP protocol.
NFS ===> xi local path
other path ==> use FTP protocol
thx
srini -
Disable anonymous ftp in Solaris 10
Hello,
I am trying to disable anonymous ftp on a solaris 10 server, but am having great difficulty.
I have tried adding the line 'guestserver' to /etc/ftpd/ftpaccess - this did not work.
There is no ftp account present in /etc/passwd
The inetd.conf entry for ftp is 'ftp stream tcp nowait root /usr/sbin/in.ftpd in.ftpd'
I have even tried adding 'anonymous' to the /etc/ftpd/ftpusers file
Anyone know how to shut anonymous ftp off, in a clean manner?The former. (the last field corresponds to argv[0], argv[1]...)
Though I find it odd that if you don't have an anonymous account, you think that anonymous ftp is active. If you ftp the host, and use anonymous and a password, it lets you in? It seems that the normal behavior is that is says
331 Guest login ok, send your complete e-mail address as password.
REGARDLESS of whether anonymous ftp is active or not (it's just that you can't log in without an allowed password). One can argue whether or not this is a desired behavior....
-r -
I'm filling in for a sick colleague, so some things are already set and shouldn't be changed.
FTP is already set for Home Directory Only. I need to add an ftp download point for anonymous users. For instance in ServerHD:WebSites:SiteA:Files, I want to provide guest access to the Files folder. The ftp root folder is inside the WebSites folder.
When I Enable Anonymous Access, all other ftp sites are visible via ftp clients. Is this unavoidable?
Secondly, how do I determine the ftp address of a file such as ServerHD:WebSites:SiteA:Files?
Thanks in advance for any help or suggestions.When I Enable Anonymous Access, all other ftp sites
are visible via ftp clients. Is this unavoidable?
Anonymous ftp appears to be a disappointing shortcoming of OS X Server.
I resolved the issue by going to http downloads in this scenario. -
E4200 - Anonymous ftp server read and write
Hello,
Is there any possibility to set linksys E4200 for support anonymous acces to ftp server in read and write mode ?
Thanks,
BR, Mariusz.Nope, just anonymous read access only, according to the options they give you. 192.168.1.1--->storage--->administration----> anonymous FTP access (enabled)
I don't work for Cisco. I'm just here to help. -
Anonymous ftp does not list directory - Solaris 9
I've got 2 Solaris 9 systems set up for anonymous ftp access. One will show a directory listing, the other won't. AFAIK, I set them up the same, and the ftpd binaries have the same checksum. Anyone know how to permit the directory listing?
By directory listing, I mean either the '"dir" command in a command-line session or via a browser (e.g., ftp://ftpserver.whatever.domain)
Baffling behavior, and I can't find anything in Sun's docs to explain.
Thanks.This is exactly the same question which you posted in this thread:
ldd on my library (sample.so) fails to resolve SUNW_1.9.1 version of libnsl
Please don't post the same question twice -
Anonymous ftp returns message "unretrievable"
When someone uses Anonymous FTP to download publically available files, they get an "unretrievable" error message. I can't find any problems with permissions, and a named user can download files. This worked well before the update from 9. Any suggestions??
THANKS!!
I forgot to mention that there are no errors in the logs.
Message was edited by:
Jim_SDSUOOOPs!!
Was editing the wrong copy of the config file.
Never mind, and thanks!! -
We have just completed a 9iFS install. The previous version of iFS was 1.1.6. We were having problems with anonymous logins (people were dumping garbage in our public folder) and we disabled anonymous FTP by changing the guest password (we also changed it in the IFSDavServletParameters.properties file and modified the ftpserver.def file by setting AnonymousPoolSize = 0 and AllowAnonymousConnections = false. We would like to do the same with 9iFS but these files no longer exist or have been renamed. What are the equivalent files in 9iFS or how else can we go about disabling anonymous logins?
NI understand what you're specifically asking for, but could you provide some background on what specific requirement(s) you are seeking to resolve -- the requirement(s) here, and not the proposed solution here using ftp.
Are you are familiar with ftp attacks, if this is an open Internet site? Open ftp servers are malware magnets.
If you're trying to avoid having specific (known) users specify authentication, then there are ways to do that. Not the least of which is sftp with the public keys shared. There are other approaches, such as uploads via http-based sites. -
I installed Solaris 9 on Sun blade 100 and I can use ftp by entering my login account and password set up on this machine. But I can't use anonymous ftp by using "anonymous" and my email address as password. The system reports ftp login failed.
Today I setup the anonymous ftp by running the command:
/usr/sbin/ftpconfig /var/tmp where ftpconfig is a shell script for setting up anonymous ftp. ( see more details with "man ftpconfig").
Now I can anonymous login and I can see the files under /var/tmp (now is the / for anomymous ftp). However , when I want to get the file by "get file1", it gave me the error "/file1 is marked unretrievable"; when I issue "put file2", I got the error "file2: Permission denied on server. (Upload)".
We are using NIS+ and any hint?
THX!Take a look at your /etc/ftpd/ftpaccess file. Particularly these lines:
noretrieve relative class=anonusers /
allow-retrieve relative class=anonusers /pub
upload class=anonusers * * no nodirs
# upload class=anonusers * /incoming yes ftpadm ftpadm 0440 nodirs
The first pair is your "file1 is marked unretrievable" error. The second two relate to your inability to write files.
Daryl -
Having issues with Simple FTP configuration
I am attempting to set up FTP behind this new CISCO ASA 5510 we just bought. I haven't configured a cisco device in 5 years, so I am having issues., i think i am close, but need a little help to get me over the hump. If I FTP from outside (fixed) IP it connects and takes the password but hangs on PASV and gives no data connection below is my configuration. Can anyone help? I am hoping it is simple since I seem to have the connection inside correct. and yes you can connect to the FTP server from inside without issue.
ASA Version 8.2(5)
hostnameASA1
enable password 8Ry2YjIyt7RRXU24 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
interface Ethernet0/0
nameif External
security-level 0
ip address y.y.y.y 255.255.255.0
interface Ethernet0/1
nameif Internal
security-level 100
ip address x.x.x.x. 255.255.255.0
interface Ethernet0/2
shutdown
no nameif
no security-level
no ip address
interface Ethernet0/3
shutdown
no nameif
no security-level
no ip address
interface Management0/0
nameif management
security-level 100
ip address 192.168.1.1 255.255.255.0
management-only
ftp mode passive
dns domain-lookup External
dns server-group DefaultDNS
name-serverg.g.g.g.g.
name-server h.h.h.h.
access-list 100 extended permit tcp any host y.y.y.y eq ftp
access-list 100 extended permit tcp any host y.y.y.y eq ftp-data
pager lines 24
logging enable
logging asdm informational
mtu External 1500
mtu Internal 1500
mtu management 1500
no failover
icmp unreachable rate-limit 1 burst-size 1
no asdm history enable
arp timeout 14400
global (External) 101 interface
nat (Internal) 101 0.0.0.0 0.0.0.0
static (Internal,External) tcp interface ftp-data 192.168.0.69 ftp-data netmask 255.255.255.255
static (Internal,External) tcp interface ftp 192.168.0.69 ftp netmask 255.255.255.255
access-group 100 in interface External
route External 0.0.0.0 0.0.0.0 L.L.L.L 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
http server enable
http 192.168.1.0 255.255.255.0 management
http 192.168.0.0 255.255.255.0 Internal
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
crypto ca trustpoint _SmartCallHome_ServerCA
crl configure
crypto ca certificate chain _SmartCallHome_ServerCA
certificate ca
quit
telnet timeout 5
ssh timeout 5
console timeout 0
dhcpd address 192.168.1.2-192.168.1.254 management
dhcpd enable management
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
webvpn
class-map INSPECTION_DEFAULT
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
service-policy global_policy global
prompt hostname context
call-home reporting anonymous
Cryptochecksum:9c15122a54bf6b87ce5ab8be0f23e9d5
: endFirst of all Thanks! So I pulled those commands off.
I am hitting the FTP server behind the firewall as you can see from my first log... It dies on PASV which is why I thought I needed that FTP-Data.
000018)1/25/2013 11:48:21 AM - (not logged in) (72.90.68.10)> 220-FileZilla Server version 0.9.41 beta
(000018)1/25/2013 11:48:21 AM - (not logged in) (72.90.68.10)> 220-written by Tim Kosse ([email protected])
(000018)1/25/2013 11:48:21 AM - (not logged in) (72.90.68.10)> 220 Please visit http://sourceforge.net/projects/filezilla/(000018)1/25/2013 11:48:21 AM - (not logged in) (72.90.68.10)> USER administrator(000018)1/25/2013 11:48:21 AM - (not logged in) (72.90.68.10)> 331 Password required for administrator(000018)1/25/2013 11:48:21 AM - (not logged in) (72.90.68.10)> PASS *****(000018)1/25/2013 11:48:21 AM - administrator (72.90.68.10)> 230 Logged on(000018)1/25/2013 11:48:21 AM - administrator (72.90.68.10)> CWD /(000018)1/25/2013 11:48:21 AM - administrator (72.90.68.10)> 250 CWD successful. "/" is current directory.(000018)1/25/2013 11:48:21 AM - administrator (72.90.68.10)> TYPE A(000018)1/25/2013 11:48:21 AM - administrator (72.90.68.10)> 200 Type set to A(000018)1/25/2013 11:48:21 AM - administrator (72.90.68.10)> PASV(000018)1/25/2013 11:48:21 AM - administrator (ip.ip.ip.ip.ip)> 227 Entering Passive Mode (72,90,69,2,10,125)
Here's what the Log shows when I hit the FTP server from the outside...
6
Jan 25 2013
08:48:52
72.90.68.10
39185
72.90.69.2
21
Deny TCP (no connection) from ip.ip.ip.ip/39185 to outsideinterfaceip/21 flags PSH ACK on interface External
Does that help?
Thanks again? Cyclist eh? Nice, that's my latest passion and it will probably send me to the poor house with the amount of times I crash.
Maybe you are looking for
-
Add hyperlink or button to open document in client application
Good day. I have SharePoint 2013 and Office Web Apps 2013 integrated with it. I configured the default behavior when clicking on a document in a document library to open it in web app. And I want additionally to have column in this library with hype
-
XML Metadata import - Memory Problem
I am trying to import metadata through "extras->XML Import\Export" Option giving the path to XML file (file:D:\RSAD_C07.xml). It has parsed the file and saved some objects but half-way it stopped with the error that I pasted below. Its an 8GB RAM s
-
Hi, I have a pivot table report which display complete report instead of showing 25 rows first. Due to large number of rows we are getting Out of memory issue. Is it possible to display 25 rows first in Pivot table. Please help - as users are unable
-
Show selected value from multi-selected parameter in crystal report
Dear Experts! i would like to ask how to catch selected value from multi-selected parameter to show in report header section. Thanks in advance.
-
Trying to figure out how to make my "cluttered" up G4 "new" again. We just got a new iMac and want to use the G4 for the kids. I've (somehow!) set up a network with an Airport extreme and express so it's connected to the internet. Now I want to wipe