IFS FTP service
We are setting up a service wherein users can FTP documents to iFS through the iFS FTP portal. We are having a problem, however, blocking the user from moving up to the root directory and seeing the other mailboxes and seeing the root directory where all the interface files are kept. How do we block this access through the FTP port?
Thanks
Erik
Okay, suppose I want to restrict access to the iFS directory. If I set its ACL to 'private', no one can log on. Furthermore, setting the ACLs does not seem to prevent someone from entering 'cd /' and going up a level or two. This is what I want to prevent. Even if I set up the user with a home address of, say, 'home/Erik', 'Erik' can still cd right up to the root no matter how tight an ACL I put on his directory (this all happens through the FTP interface).
Or am I just completely not getting the ACL method?
Thanks,
Erik
Similar Messages
-
How to install ftp service on the system?
OS: SuSE Linux Enterprise Server 8
How to install ftp service on the system?
How to check and modify to use it?
I am not able to use FTP.
Regards,
DRohit,
If its about installation/Deployment of Agent- then its through SDM,
'configuration' can be manual or Atuomatic:
Manual-> refer the installation Guide which digesh has mentioned -(from page 20).
Automatic- Its through Diagnostics Setup through Solman -(Its bit easy).
Thanks,
Jagan -
How to setup the FTP Service by the OS X Server? Thanks~
Dear All,
OS X 10.8.2
I want to setup a FTP Service by the "OS X Server".
When I start the FTP Service, I can't login by my account.
FTP Service and FTP Client run at the same computer,
I think it's not the network problem.
Do you have the documents about the FTP Setting or "OS X Server" User Guide?
Thanks
Austinservice generally manages the lower level services on the system.
High level services such as Apache are managed via serveradmin:
serveradmin status web
serveradmin start web -
How do you set up ftp services with outside of network access?
What are the steps to set up a password protected directory for our clients to ftp files to?
I've turned on ftp services and created a testftp directory, with access to everyome, but can't access the files. It never asks me for a password.
We have AT&T dsl service. The connection goes to a Linksys router and on to multiple switches. Each of our users have assigned static ip's.
Thanks for the help,
ChasThe Mac OS X Server Security manual has a discussion of setting up ftp and the share points and related. Here's the [Tiger Security|http://images.apple.com/server/macosx/docs/TigerServer_Security_Config021507.pdf] manual, and here's [Leopard|http://images.apple.com/server/macosx/docs/LeopardServer_Security_Configv10.5.pdf].
If you'd prefer a description here rather than the manuals, what follows are the basics.
I'm here assuming you have a firewall between the Internet and your server; a firewall attached to the DSL modem. If you have an external static IP and an internal private (192.168.0.0/16, 10.0.0.0/8, etc) via NAT, you'll need a firewall with reasonable port-mapping capabilities. If you're static and public throughout, you need only poke holes; you probably don't need the port-mapping stuff. (Or you could have a direct connection to your Mac OS X box; I don't usually configure things that way.)
First, open your firewall and allow access via the ftp ports (port 20 outbound and port 21 inbound, typically) and open up the ephemeral port range.
Then create a user and directory via whichever service you are using -- Workgroup Manager, Open Directory or otherwise. Within Workgroup Manager, you can set up share points; basically locations that the ftp daemon is permitted to touch.
Then wander into Server Admin and enable the ftp server.
Now if I wanted to do this without exposing my cleartext username and cleartext password over every hotel and coffee shop LAN I might use (and I'm not kidding; "ftp security" is an oxymoron), I'd create a username and its directory per your usual means, use Server Admin to configure and launch sftp daemon, and open up port 22 at the firewall. In my experience, sftp is easier to administer, and operates with ssh and with PKE authentication, and it doesn't post your password to Craigslist -- and beyond discussions of the (lack of) security, ftp tends to be somewhat fragile; it really gets into trouble traversing firewalls.
Given my experience with ftp over the years, here is [why I don't want to use ftp|http://64.223.189.234/node/530] -- sftp is just so much easier to deal with, and to secure. -
FTP service not working anymore. ??
We have successfully been using ftp service with a new XServe 2 (Base Station 802.11n as gateway) for about a month. But, possibly following the latest firmware update that was run on the base station a few weeks ago, the ftp service just stopped working.
FTP works within the network if I connect via Cyberduck using the internal server address. But, to connect from the outside using the IP that is offered from within Base Station—the way we've done this successfully for a whole month—Cyberduck will spin and spin and never even see the network much less attempt to authenticate. Crazy.
• I have done a hard reset on Base Station. No change.
• I have unplugged and reset cable modem multiple times. No change.
• The ISP has confirmed that ports 20 and 21 are still open. Nothing unusual from their end.
• I've used ServerAdmin multiple times to stop & start ftp service, restart server, etc. No effect.
• Here's a curious detail: from the server I can go to whatismyipaddress.com, and it correctly sees the Base-Station-issued IP that I am trying to connect via ftp from the outside. Hmm.
Any experience from someone who can help isolate this issue? I'll admit, it appears to be a Base Station issue (maybe. likely.) since I can connect ftp from within the network. And, I am about 60-70% certain the latest firmware update was run near the time it spontaneously stopped working. But, ftp had been working. Not sure what is different now or why resetting things is not fixing anything.
Thoughts? Thanks in advance!
GregYeah im able to connecto to my account no problem. Its that everytime I try to log in to my email on my N8, it keeps saying it could not connect. I just dont understand what this has happened, I never had such problem before.
Did Nokia close hotmail accounts acces for Symbian phones or something? -
Connecting Via Windows FTP Service
I recently moved several sites that used Contribute to a new
webserver (Windows 2003 running IIS 6). The server uses Windows FTP
Service.
To create a FTP account I created a Windows Account and then
a Virtual FTP directory with the same name as the windows user and
pointed that virtual directory at the root of the site I want to
update with contribute. I gave the Windows account full control on
the site root folder. I can FTP connect via Internet Explorer and
the command line.
When connecting via contribute I get an error saying
The directory you specified does not exist. Please make sure you
entered the directory name correctly. On some servers,
file/directory names are case sensitive"
Contribute seems to be trying to change directory to a folder
with the same name as the FTP virtual directory, rather than to the
folder that the virtual directory points at.
here's the error log from contribute
Date: 11/27/2006
LocalTime: 14:07
Host: 80.76.207.49
Port:
LoginID: myFTPUserName
Path: /myFTPUserName/
Passive Enabled: false
ProxyHost: NoneContribute Alternate Rename: no
Contribute Optimized: yes
======================== Test Results
==========================
NOTE: Microsoft FTP Service has been detected. For more
information on FTP server compatibility issues, please see
http://www.macromedia.com/support/contribute/ts/documents/ftp_info.htm
Login: SUCCESS!
Changing Directory To: /myFTPUserName/ Error. The directory
you specified does not exist. Please make sure you entered the
directory name correctly. On some servers, file/directory names are
case sensitive.
----------------------- FTP log from the last operation
> CWD /ftp
< 550 /ftp: The system cannot find the file specified.
> CWD /ftp/
< 550 /ftp: The system cannot find the file specified.
> CWD /
< 250 CWD command successful.
> RNFR ftp
< 550 ftp: The system cannot find the file specified.
> MDTM ftp
< 550 ftp: The system cannot find the file specified.Hi!
I think the windows service is using a different systemaccount that your other application, and that account does not have rights to read the sbo-common database.
You can change the account used by your service on the service definition or in the SERVICES application of Windows.
Sir Harold -
How to enable FTP service in Solaris 10
Hello, Everybody
I installed my first Solaris 10 today, but I have a problem with FTP process, I found I could not ftp to my new server from other equipments. It seems that FTP service is disabled by default.
Could you any guy tell me how to enable FTP in Solaris 10?
Thanks in advance.
-jasonSince the OS is Solaris 10, how about using SMF's svcadm tool to enable/disable ftp service.
eg.,
# svcadm disable /network/ftp
# ftp localhost
ftp: connect to address 127.0.0.1: Connection refused
Trying ::1...
ftp: connect: Network is unreachable
ftp> bye
# svcadm enable /network/ftp
# ftp localhost
Connected to localhost.
220 sunfire.anonymous.com FTP server ready.
Name (localhost:giri): 331 Password required for giri.
Password: -
FTP service through CSM: Quit command not working
Greetings all
I've been testing FTP service through our CSM for about a day now and has run into an issue I can't find an answer for.
Here are the settings I'm currently using for the vserver and serverfarm. The 10.90.1.0 network is routed from my client network by a firewall using NAT.
serverfarm APPFARM
nat server
no nat client
predictor leastconns
real 10.91.1.155
inservice
probe ICMPCHECK
vserver APPFTP
virtual 10.90.1.40 tcp ftp service ftp
serverfarm APPFARM
persistent rebalance
inservice
Connecting to the FTP works just fine using both passive and active FTP and I can log in and transfer files. However when I send the "quit" command to the FTP server, as I do when connecting to the server directly, the session freezes and the "good bye" messages never appears.
My guess is that there is some premature termination of the connection before a final disconnect is sent to my FTP client. Anyone have an idea how this can be solved?
Regards
Fredrik HofgrenFredrik,
first time I see this.
Could you capture a sniffer trace of csm portchannel showing what happens before, during and after the Quit.
Also, there is way to achieve ftp loadbalancing without the need to use 'service ftp'. You'll get much better performance if you do not use this function.
All you need is configure loopback on your servers using the vip address so they can advertise the right ip in the control channel fo the client to open the data channel.
You then need a generic vserver to catch all possible port and by using stickyness you can guarantee that the control channel and the data channel are both sent to the same server.
Gilles. -
Exception occurred while ftpying files using FTP service
Hi,
We are using an FTP service component for copying file to remote location.
We are getting the following exception while FTPying the file:
com.adobe.idp.DocumentError: The document pointing to the file ------- could not be found. It may have expired, been removed prematurely, or subject to a network filesystem failure. Consider increasing the document disposal timeout if expiration seems likely.
Regards,
Carter JCheck out the NetComponents java package at http://www.savarese.org/oro
I use it for downloads with success, but it does have methods to "store" files to the server.
Just download the NetComponents.jar and put it in your classpath.
Your code would be something like this...
FileInputStream fis = new FileInputStream("c:\\myfile");
FTPClient ftp = new FTPClient();
try {
ftp.connect("ftp.foobar.com");
ftp.login("username","password"); // if it's not anonymous
ftp.storeFile("filename", instream);// note that you must close input stream yourself
} catch(IOException e) {
} finally {
if(ftp.isConnected()) {
ftp.disconnect(); // throws IOException
if(fis != null) {
fis.close();
You may want to check each call on the FTPClient ftp object like so...
int reply = ftp.getReplyCode(); // reply code will tell you what last ftp command did
if(!FTPReply.isPositiveCompletion(reply)) {
throw new IOException("Couldn't login"); // or do something
Hope this helps,
Carl -
Hi, i have to migrate all my web site to OAS 4.0.8.1 on NT, but i need the FTP services because i have many files in others servers that i need down it in my server by my web site.
How I form OAS?
Any suggestion...?
Thanks..
ClaudiaOAS is an HTTP 1.1/1.0 server. The FTP server needs to be installed seperately. This is not part of OAS.
There are lot's of free/shareware ftp servers available on NT. You may have to use one of them.
null -
How can ftp service on non-standard port be load balanced using Cisco ACE.
How can ftp service on non-standard port be load balanced using Cisco ACE.For example ftp service required on tcp 2000 port
Hi Samarjit,
you can do this by specifying the port number in the class map that you create . Please find the below mentioend config guide where you can specify the tcp/udp port , range or ports or even the wild card to match the port.
http://www.cisco.com/en/US/docs/interfaces_modules/services_modules/ace/v3.00_A1/configuration/administration/guide/mapolcy.html#wp1318826
Regards
Abijith -
Configure FTP service on OS X server 10.5.4
I am trying to support a customer who is running Mac OS X server 10.5.4. I do not have this software, only a client version of 10.5.4.
I am looking for instructions to setup the FTP service on server. When we attempt to connect from another PC/Mac vai DOS or terminal, it connects but terminates the connection immediately.
Any information on this setup would be much appreciated, I can't find anything out there.Thanks for lending a hand.
I'm actually looking for the steps to enable and setup the FTP service at the server. I'm familiar with this setup from a client perspective.
When we perform the test via DOS, it connects for 1 second and then terminates by host. We don't get a chance to enter credentials. Perhpas it's enabled, but has a low timeout connection?
If you have any screen shots of this configuration, please send them along.
Many thnaks! -
Hi I newly installed oracle linux..
I dnt have internet..
My FTP is not working, m trying do ftp tp oracle linux but root ,password is not accepting.
Can u help me in enabling FTP services so that i can transfer packages to itYou may need to check your firewall configuration, or turn it of using "service iptables stop". However, Telnet and FTP are legacy protocols used in the last century and obsolete. Unless you have a very specific need for FTP I suggest not to bother with it anymore.
Only ssh, tcp port 22, will be allowed to accept incoming connect by default. Apparently you have Putty (ssh client) and WinSCP, which supports SFTP and SCP. If you can use SSH to connect to your machine, SCP and SFTP will work too. If you cannot establish a SSH connection with your server, check your network routing and tcp/ip configuration on the client and server. If you run any kind of machine virtualization, check the virtual network adapter type. -
FTP Service misbehaving after upgrade to Leopard server
After upgrading my server from 10.4 to 10.5, FTP services were running even though it was not present in the Server Manager. After adding it to the Server Manager non admin ftp clients logging in had full access to the root. I've shut down the FTP service in Server Manager but the service is still available. I've had to close the port on the firewall until I can figure out how to fix it.
Is there an way to configure ftp through terminal, or remove the old configuration and start over?Please excuse what may be an obvious question, but what do you mean by "access to root"? The users can create files anywhere? The users have access to the / root directory?
If the users can get anywhere (and it seems that they have access akin to the root password) then check the protections on the files and directories.
The ftp "share" model is soft protection; folks that have ftp credentials can often log in and access other areas directly. (sftp doesn't have the share-like model layered on, which causes folks that expect ftp to work like "mount points" to be concerned.)
What interests me most is that ftp is running even though it's indicated as shut off. Given that ftp exposes access credentials in cleartext, anybody that's scanned your ftp connection off a coffee shop WiFi access can access the target server. Which is why getting hacked is more of a possibility than it might seem. Any of the WiFi-scanning tools know how to scan for ftp passwords, too.
If it's working as expected, ftp creates error and access logs. See if there's anything interesting there. -
Turn off FTP service via command line
We are running a Mt Lion server. The FTP Service quit working properly. Instead of directing users to the FTP folder specified, users are just sent to the root of the OS drive. We attemped to turn off FTP service in the Server.app, but FTP stays running even when Server.app lists it as off.
Is there a way to turn off FTP via the command line? We can't seem to find it. The instructions we found online for 10.7 don't work. We've tried rebooting the server and repairing permissions but the same problem exists.Finally, tracked it down thanks to the good people at CrushFTP http://crushftp.com
Here is the command for anyone else that may be looking.
sudo -s launchctl load -w /System/Library/LaunchDaemons/ftp.plist
Maybe you are looking for
-
Can't drag files in library grid view
I am unable to click and drag files from folder to folder within a library.
-
Crashing Internet Explorer on Windows XP.
I've noticed that the "bio" page on my website will crash Internet Explorer. It's the latest version, running without any unusual plugins on Windows XP Pro. My website is http://web.mac.com/droeber/iWeb/Roeber.com/bio.html and I've used the Modern th
-
Hi all, How should i create an interactive report with two radio buttons?. When i clicks the radio button it should retrive the corresponding row and display that in SQL report(should be editable-with in same page)- Should i use tabular form instead
-
How do I move music (not entire library!) from PC to Mac?
I recently got a mac laptop of my own, before which I had used a family desktop PC. I need to transfer my music from the itunes on the PC to the itunes on this mac. I found the Apple Support page that guides through the steps necessary to do that (us
-
HT1848 Transfer bought music with new itunes?
But there is no source list on the "new" itunes. I cant right click om my iphone and transfer purchases anymore. How do I transfer music now from iphone to my comp?