[Solved] Pure-ftpd only virtual users
Dear arch-users
I'm using pureftpd from extra. I've created a lot of virtual users for my LAN, everything is working fine.
But it is possible for system users to log on an see their whole /home/users directory, with their user/pass combo. I've disabled it, by setting the minUID to a very high number, but I think their is a more decent solution for this problem.
So what is the best solution to only allow virtual-users to log on?
Last edited by YscO (2007-07-15 10:49:16)
Solved the case
# If you want to enable PAM authentication, uncomment the following line
PAMAuthentication no
# If you want simple Unix (/etc/passwd) authentication, uncomment this
UnixAuthentication no
Similar Messages
-
[SOLVED] pure-ftpd no longer works after system update
Hi,
I made a system update today and since pure-ftpd doesn't want to start it just display "[FAIL]" but I don't have any error message.
Is it possible to see the the error log of pure-ftpd ?
Do you have any idea of how getting it working again?
Thanks
Last edited by clems45 (2011-04-02 21:41:23)I tried to check the version of pure-ftpd: pure-ftpd -V and it replies:
pure-ftpd: error while loading shared libraries: libmysqlclient.so.16: cannot open shared object file: No such file or directory
but mysql client is installed properly! I tried to reinstall it but it changed nothing -
Pure-ftpd and ldap. (solved)
Hi,
I'm trying to use pure-ftpd with virtual users on ldap but it don't work.
Configuration is easy... similar to dovecot, postfix or apache. The question is that I don't know if is bad my confuguration or if the package isn't compiled with ldap support.
How do I know if it is compiled with ldap support?
Thanks and sorry for my english.
Last edited by opotonil (2009-10-20 09:01:19)If you look at the SVN entries for pure-ftpd, the PKGBUILD you will see:
./configure --prefix=/usr --with-puredb --with-ftpwho --with-altlog --with-tls
in the build() function. So no, LDAP is not compiled in. You can edit the PKGBUILD and recompile it. -
Pure-ftpd - different permissions for virtual users?
I seem not to be able to find out how I could declare different permissions for different virtual users. In /etc/pure-ftpd.conf exists one line to declare permissions using
#umask file:folder
umask 133:133
umask matches the numbers to 'UserGroupOthers'.
Now that virtual ftp users belong to a real existing unix user / group, I wonder who is Users, Group and Others?
Users = virtual ftp user ?
Group = virtual ftp group ?
Others = anonymous visitors?
How can I tune it, so one virtual user can add files - f.e. to be used by a scan station - while others shall only read, having anonymous disabled?
This gives me a headache.Ok, let me think. What did I do?
I had different users. User X, Y and Z.
Then, I had a shared directory above their home directories.
While in the system, (not in pure-ftpd) I symlinked.
(Note that doing something in user X's directory, like ln -s ../shared didn't work---I had to do ln -s /usr/home/ftpuser/shared).
Then, I ~think I played with the permissions on shared and got what I wanted.
Then, after a few hours on this, they changed their minds about what they wanted, everyone was allowed to use shared, but different companies had to have their own directories, so I no longer have that config.
For what it's worth, you can take a quick look at my page
http://www.scottro.net/qnd/qnd-pureftpd.html
but I don't think it covers that situation.
HTH, though I doubt that it did. -
Vsftpd and virtual users - SOLVED!
I have followed the wiki to build my vsftpd server, which works fine with local users
However, I wanted to build the server with virtual users, and I have made everything as described in the wiki,
but it doesn't work - I got a 530 error - Login incorrect.
I think it should be a problem with the password database file, but how to solve it?
here's my vsftpd.conf:
CODE:
listen=YES
anonymous_enable=NO
local_enable=YES
write_enable=YES
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
xferlog_file=/var/log/vsftpd.log
#ftpd_banner=Welcome to blah FTP service.
chroot_local_user=YES
pam_service_name=ftp
guest_enable=YES
guest_username=virtual
virtual_use_local_privs=YES
Last edited by scar (2010-05-07 05:43:33)I don't think so :
cat /etc/passwd | grep virtual
virtual:x:1002:1002::/srv/ftp:/bin/bash
ls -l /srv/
drwxr-xr-x 2 virtual virtual 4096 máj 6 22.20 ftp
cat /etc/pam.d/ftp
auth required /lib/security/pam_userdb.so db=/etc/vsftpd_login
crypt=hash account required /lib/security/pam_userdb.so db=/etc/vsftpd_login crypt=hash -
[solved] VSFTPD + Virtual Users + different home directories
Hi All,
I've been trying to get VSFTPD setup to allow ftp access to some of my clients to access their web files. I've got VSFTPD up and running via the Wiki, but my virtual users can't log in. The only thing that I didn't do from the wiki was the "useradd virtual" as I didn't think it was needed. Also, the wiki only covers one directory for all users, I want to have each user to have access to their own web directory and nothing else. I think I may just have something a little off in my vsftpd file. Thanks!
vsftpd.conf
anonymous_enable=NO
local_enable=YES
write_enable=YES
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
data_connection_timeout=120
listen=YES
virtual_use_local_privs=YES
pam_service_name=vsftpd
guest_enable=YES
user_sub_token=$USER
chroot_local_user=YES
hide_ids=YES
local_root=/srv/http/$USER
Last edited by GravityGripp (2009-05-14 17:36:19)GravityGripp wrote:
I don't think it's a directory permissions issue as it's telling me that my login is incorrect.
Here's my /etc/pam.d/ftp
auth required /lib/security/pam_userdb.so db=/etc/vsftpd_login crypt=hash
account required /lib/security/pam_userdb.so db=/etc/vsftpd_login crypt=hash
here's part of my auth.log also.
May 14 08:14:08 arthur vsftpd: pam_unix(vsftpd:auth): check pass; user unknown
May 14 08:14:08 arthur vsftpd: pam_unix(vsftpd:auth): authentication failure; logname= uid=0 euid=0 tty=ftp ruser=current_user rhost=127.0.0.1
May 14 08:24:14 arthur vsftpd: pam_unix(vsftpd:auth): check pass; user unknown
May 14 08:24:14 arthur vsftpd: pam_unix(vsftpd:auth): authentication failure; logname= uid=0 euid=0 tty=ftp ruser=current_user rhost=127.0.0.1
Hi GravityGripp,
as posted at the beginning of the thread in /etc/vsftpd.conf the 'pam_service_name' option is 'vsftpd' but here you are referencing /etc/pam.d/ftp as PAM service name but in vsftpd.conf you told to use 'vsftpd' as PAM service for auth.
About your need to define different directory for each ftp virtual user in my installation I allow ftp access to virtual users (defined in MySQL and auth via pam_mysql); to let users have access to their own ftp directory (with different auth read only / read-write) I used the user_config_dir option (see man vsftpd.conf).
Here an extract of my '/etc/vsftpd.conf':
# This powerful option allows the override of any config option specified
# in the manual page, on a per-user basis. Usage is simple, and is best
# illustrated with an example. If you set user_config_dir to be /etc/vsftpd_user_conf
# and then log on as the user "chris", then vsftpd will apply the settings
# in the file /etc/vsftpd_user_conf/chris for the duration of the session.
# Default: (none)
user_config_dir=/etc/vsftpd/vsftpd-user-conf
Each time I add a new ftp virtual user that need a personal ftp directory, under the dir '/etc/vsftpd/vsftpd-user-conf' I create a file named as the username where I define the personal ftp directory and the auth on it (RO or RW).
Example for user 'test' (file '/etc/vsftpd/vsftpd-user-conf/test'):
# vsftpd per-user basis config file (override of any config option specified
# in the vsftpd server config file)
# TEMPLATE
# User test - Description for user test
# Set local root
local_root=/srv/vsftpd/test
# Disable any form of FTP write command.
# Allowed values: YES/NO
write_enable=YES
Of course the dir must exist and have the right permissions to allow the user to connect.
Hope that this will be of help.
bye -
Pure-ftpd-mysql socket error after latest mysql update [SOLVED]
As we know the socket path in mysql have been moved from /tmp/mysqld.sock to /var/run/mysqld/mysqld.sock.
The problem now with pure-ftpd-mysql is that it tries to use /tmp/mysqld.sock even though I have:
MYSQLSocket /var/run/mysqld/mysqld.sock
Inside of my /etc/pure-ftpd/pure-ftpd-mysql.conf
I guess that either MYSQLSocket is the wrong keyword or that the path is hard coded into pure-ftpd-mysql.
Any ideas how to solve this?
EDIT:
The path for the mysql conf was changed during last update
from
MySQLConfigFile /etc/pure-ftpd/pure-ftpd-mysql.conf
to
MySQLConfigFile /etc/pure-ftpd/auth/mysql.conf
Last edited by ancide (2009-11-25 10:23:24)maksvlad wrote:
I've edited /etc/rc.d/mysqld file and added "ln -fs /var/run/mysqld/mysqld.sock /tmp/mysql.sock" like this
echo $(getPID) >/var/run/mysqld/mysqld.pid
add_daemon mysqld
ln -fs /var/run/mysqld/mysqld.sock /tmp/mysql.sock
stat_done
It isn't correct solution but it works...
On other hand you would try something like this http://bbs.archlinux.org/viewtopic.php?id=85441
Thanks for the reply. The problem is that all my other applications are using the new correct path. But I guess I can just make a symlink like you said for now until pure-ftpd-mysql is fixed. -
Manually add/modify users for pure-ftpd ftp server?
Ave,
Alright I downloaded, compiled & installed the latest pure-ftpd ftp server from pureftpd.org .. and it seems to have started off ok.
Since there is no Leopard Compatible PureFTPD Manager out yet, I need to create/modify users manually. Does anyone know how to do that for Pure-FTPD FTP Server? I can't seem to find or see any .conf files or anything at all. How do you manage users for pure-ftpd through command line or configuration?
Thanks!This seems like a good one:
extra/bftpd 3.8-2
Small, easy-to-configure FTP server
From what i have read you can set individual configuration for each user or group:
http://bftpd.sourceforge.net/doc/en/bft … html#ss3.1 -
[SOLVED] vsFTP and virtual users
EDIT: One should really install pam_pwdfile if he wants this to work (it's also in the wiki, but I'm blind)
Hey,
I'm trying to set up vsFTP with virtual users on my machine. Here is what I did:
# pacman -S vsftpd
# mkdir /etc/vsftpd
# htpasswd -cd /etc/vsftpd/.passwd ftpguest
*password*
# vi /etc/pam.d/vsftpd
auth required pam_pwdfile.so pwdfile /etc/vsftpd/.passwd
account required pam_permit.so
# useradd -d /storage/ftp virtual
# chown virtual:virtual /storage/ftp
My /etc/vsftpd.conf:
anonymous_enable=NO
pam_service_name=vsftpd
hide_ids=YES
local_enable=YES
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
chroot_local_user=YES
local_root=/storage/ftp/$USER
user_sub_token=$USER
guest_enable=YES
guest_username=virtual
virtual_use_local_privs=YES
listen=YES
# mkdir /storage/ftp/ftpguest
# chown virtual:virtual /storage/ftp/ftpguest
# systemctl start vsftpd.service
Then I point my browser to ftp://myip and I get a prompt for username and password, but the problem is that the user I created (ftpguest) can't log in. What am I missing?
Thanks
Last edited by developej (2014-05-10 20:38:59)EDIT: One should really install pam_pwdfile if he wants this to work (it's also in the wiki, but I'm blind)
Hey,
I'm trying to set up vsFTP with virtual users on my machine. Here is what I did:
# pacman -S vsftpd
# mkdir /etc/vsftpd
# htpasswd -cd /etc/vsftpd/.passwd ftpguest
*password*
# vi /etc/pam.d/vsftpd
auth required pam_pwdfile.so pwdfile /etc/vsftpd/.passwd
account required pam_permit.so
# useradd -d /storage/ftp virtual
# chown virtual:virtual /storage/ftp
My /etc/vsftpd.conf:
anonymous_enable=NO
pam_service_name=vsftpd
hide_ids=YES
local_enable=YES
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
chroot_local_user=YES
local_root=/storage/ftp/$USER
user_sub_token=$USER
guest_enable=YES
guest_username=virtual
virtual_use_local_privs=YES
listen=YES
# mkdir /storage/ftp/ftpguest
# chown virtual:virtual /storage/ftp/ftpguest
# systemctl start vsftpd.service
Then I point my browser to ftp://myip and I get a prompt for username and password, but the problem is that the user I created (ftpguest) can't log in. What am I missing?
Thanks
Last edited by developej (2014-05-10 20:38:59) -
I've only just recently migrated to OSX server since the release of snow leopard. Ive come from a debain server.
I used to be able to have a virtual user table under sendmail allowing me to have multiple domains with similar usernames in each domain thus:-
[email protected] domain1username
[email protected] domain2username
It seems under workgroup manager (is this the place to add these?) under shortnames even if i create a shortname for domain1username that is [email protected] and a shortname for domain2username that is [email protected] the mail server wont allow mails for [email protected], bouncing with the error message <[email protected]>: User unknown in virtual alias table
Can anyone shed any light or point me to a manual/fix?
Thanks muchly!
AndyHere's what I've found that works.
In WGM in addition to the shortname you need to add the email address. In this case your username for domain1 and domain2 are the same.
andy
[email protected]
[email protected] -
LoadRunner SAPGUI Virtual Users Decline
I am trying to perform a Load Test on SAP R/3 using LoadRunner 9.5. I have 120 virtual users that I would like to run for an hour. I have distributed these 120 vusers over 6 scenarios on 5 load generators. The maximum number of virtual users that I have been able to run at one time is 114. The number then slowly declines over the next 40 minutes and stabilizes at 91 vusers (which run for the remaining hour). The messages I get from LoadRunner indicate that users have logged on and navigated to their assigned transaction code in SAP, but fail to perform the first step in that transaction code (this happens for ME21N, ME22N, ME23, FB10, F-43 which is all of the transaction codes that I am testing). I have worked with the Basis Group here to ensure that there are enough interactive dialog work processes, set each scenarios think time to random, initialize and start each vuser individually, and ensured that each load generator has enough RAM. The only thing left that I know to try is to increase the number of dialog processes per user. However, we cannot figure out the parameter name to do this. If anyone knows the name of this parameter or have any other suggestions, please let me know. Thanks!
Hello Andy,
We are having a similar problem, did you ever get an answer about this issue?
Thank you! -
Rejecting emails to unknown virtual users before filtering them?
hi
it appears that all emails to any virtual domain on my server gets "filtered" BEFORE it gets checked against valid users for that domain.
1. mail in
2. filtered
3. checked if valid
4. rejected (unknown)
Is there any way to have the validity check done before the filtering?
It would seem more economical if it worked like this...
1. mail in
2. checked if valid
3. rejected (unknown)
Regan
Message was edited by: reganyelcichI have used pterobyte's virtual mail set up in the past without a problem - and found that Apple has broken the postfix in 10.5 (as it says on the PDF that pterobyte is recommending.)
If you, like me, had already set up each user in WGM to have two shortnames (the second one - an email at virtual domain) then you only need to append the users to your "virtual" file in "/etc/postfix".
EG:
[email protected] shortname
do this for each virtual user, postmap the file and reload postfix. Then the mail server will accept the email addressed to your virtual user.
By All Means: read the PDF for more instructions. -
Ramp Down Virtual Users Feature in OLT 9.1
Hi,
I would like to know is there any ramp-down feature available in Oracle Load test tool similar to one available in HP LoadRunner?
I was able to find only ramp-up field entries in auto-pilot tab.
Please do let me know more info regarding it
Regards,
MaheshHi,
The Scenario pattern which you had mentioned is for ramping-up users which usually occurs during start of test execution which is readily available in autopilot tab. I mean ramping-down users which occurs at the end of test execution for defined period / goal.
At present, users are made to exit once they complete current iteration.
Is there any method available for graduall exit of virtual users?
Hope you understood my query.
Regards,
Mahesh -
Hi Everybody,
We have installed the latest ( to my best understanding) version of CR Add-on (2.0.0.7 , compiled for 64 bit , downloaded from Richard Duffy's blog) and we are receiving the error message "Only Super Users are allowed access to this function" .
We've checked that the users are all Super Users and they have Professional and Addon licenses.
The only relevant thread I've found in forums solved the issue by installing the latest version of CR Add-on, which we've did.
The installation is B1 2007 A SP001 ,PL 11.
Any ideas will be highly welcomed.
Thanks in advance,
SimonWe have the same issue, this happens when you go to Administration > Crystal Reports
We can't see the reports in CR
Please if you have a solution tell me.
Thx and Regards, -
Virtual User Minutes, Load Testing, and Billing
I am struggling with figuring out how to handle my QA organization's potential use of the Cloud-Based Load Testing. I have about 30 individuals in my QA organization with MSDN Ultimate licenses. Many of these individuals do not do Load Testing.
Ideally I would like to 'pool' all of their 15,000 Virtual User Minutes together - and have my organization be able to use those minutes for our monthly load testing, as the individuals that would be doing the testing invidually would exceed their own
15,000 Virtual User Minutes; plus - in a large organization, having individuals utilize their own MSDN benefits seems odd.
How does the Windows Azure Organization Account option fit into this?
Our company also has a Enterprise Azure Agreement - but I'm not sure how that works either - in order to determine how I would budget for these costs.
We would only be utilizing the Load Testing option within my team. Please advise on how I determine what route to go and potential budget.Hi Psandstrom,
I understand that you are looking forward to know about the Azure benefits for MSDN users, every MSDN user /individual can get up to $150/month.
If you exceed your monthly credits, your service will be disabled for that month. You can choose to turn off your Spending Limit, and any usage each month in excess of the monthly credits will be charged at the rates specified in this offer. For more information
See
Monthly Azure credits.
To grab the benefits, I recommend you to let the 30 individuals who own MSDN licenses to activate the Azure benefits.
To activate Azure benefits, log into http://msdn.microsoft.com , select My Account and click
activate azure.
Hope this answers your query.
Regards,
Shirisha Paderu
Maybe you are looking for
-
Christmas present a new ipad. Refurbished. I am not sure what the stats are. All I do know is I sure could use some help and would be very appricative of it.
-
hello peeps! I am looking for a bluetooth headset you know the ones that go on your ear I guess the wireless kind. Now can I get any kind or do I have to buy the apple one?
-
How to organize Portlets?
We are using IBM RAD as the tool to develop JSF JSR168 Portlets. In our Project, there are around 70 Portlets we need to develop. Should we contain all these portlets in one Portlet Project, or split them into several ones. What is the normal way to
-
CAll VB 6 DLL wilth labview 8.2
I have VB 6.0 DLL I want to call it in my Labview 8.2 program . as per the link http://digital.ni.com/public.nsf/allkb/F2CD7758CD3C847F86256C01006C0E48 i am using Automation Refnum but iam unsuccessful . i am getting following error Automation Ope
-
Hi Gurus, I am try to use the consumption mode found in the MRP setting if SAP. My scenario is as follows: 1) Did a forecast of a material for 3 months 2) Created a Reservation between does 3 months Problem: 1) No compensation was made to any of the