[Solved] Pure-ftpd only virtual users

Dear arch-users
I'm using pureftpd from extra. I've created a lot of virtual users for my LAN, everything is working fine.
But it is possible for system users to log on an see their whole /home/users directory, with their user/pass combo. I've disabled it, by setting the minUID to a very high number, but I think their is a more decent solution for this problem.
So what is the best solution to only allow virtual-users to log on?
Last edited by YscO (2007-07-15 10:49:16)

Solved the case
# If you want to enable PAM authentication, uncomment the following line
PAMAuthentication no
# If you want simple Unix (/etc/passwd) authentication, uncomment this
UnixAuthentication no

Similar Messages

  • [SOLVED] pure-ftpd no longer works after system update

    Hi,
    I made a system update today and since pure-ftpd doesn't want to start it just display "[FAIL]" but I don't have any error message.
    Is it possible to see the the error log of pure-ftpd ?
    Do you have any idea of how getting it working again?
    Thanks
    Last edited by clems45 (2011-04-02 21:41:23)

    I tried to check the version of pure-ftpd: pure-ftpd -V and it replies:
    pure-ftpd: error while loading shared libraries: libmysqlclient.so.16: cannot open shared object file: No such file or directory
    but mysql client is installed properly! I tried to reinstall it but it changed nothing

  • Pure-ftpd and ldap. (solved)

    Hi,
    I'm trying to use pure-ftpd with virtual users on ldap but it don't work.
    Configuration is easy... similar to dovecot, postfix or apache. The question is that I don't know if is bad my confuguration or if the package isn't compiled with ldap support.
    How do I know if it is compiled with ldap support?
    Thanks and sorry for my english.
    Last edited by opotonil (2009-10-20 09:01:19)

    If you look at the SVN entries for pure-ftpd, the PKGBUILD you will see:
    ./configure --prefix=/usr --with-puredb --with-ftpwho --with-altlog --with-tls
    in the build() function. So no, LDAP is not compiled in. You can edit the PKGBUILD and recompile it.

  • Pure-ftpd - different permissions for virtual users?

    I seem not to be able to find out how I could declare different permissions for different virtual users. In /etc/pure-ftpd.conf exists one line to declare permissions using
    #umask file:folder
    umask 133:133
    umask matches the numbers to 'UserGroupOthers'.
    Now that virtual ftp users belong to a real existing unix user / group, I wonder who is Users, Group and Others?
    Users = virtual ftp user ?
    Group = virtual ftp group ?
    Others = anonymous visitors?
    How can I tune it, so one virtual user can add files - f.e. to be used by a scan station - while others shall only read, having anonymous disabled?
    This gives me a headache.

    Ok, let me think.  What did I do? 
    I had different users.  User X, Y and Z.
    Then, I had a shared directory above their home directories.
    While in the system, (not in pure-ftpd) I symlinked.
    (Note that doing something in user X's directory, like ln -s ../shared didn't work---I had to do ln -s /usr/home/ftpuser/shared).
    Then, I ~think I played with the permissions on shared and got what I wanted. 
    Then, after a few hours on this, they changed their minds about what they wanted, everyone was allowed to use shared, but different companies had to have their own directories, so I no longer have that config.
    For what it's worth, you can take a quick look at my page
    http://www.scottro.net/qnd/qnd-pureftpd.html
    but I don't think it covers that situation.
    HTH, though I doubt that it did.

  • Vsftpd and virtual users - SOLVED!

    I have followed the wiki to build my vsftpd server, which works fine with local users
    However, I wanted to build the server with virtual users, and I have made everything as described in the wiki,
    but it doesn't work - I got a 530 error - Login incorrect.
    I think it should be a problem with the password database file, but how to solve it?
    here's my vsftpd.conf:
    CODE:
    listen=YES
    anonymous_enable=NO
    local_enable=YES
    write_enable=YES
    dirmessage_enable=YES
    xferlog_enable=YES
    connect_from_port_20=YES
    xferlog_file=/var/log/vsftpd.log
    #ftpd_banner=Welcome to blah FTP service.
    chroot_local_user=YES
    pam_service_name=ftp
    guest_enable=YES
    guest_username=virtual
    virtual_use_local_privs=YES
    Last edited by scar (2010-05-07 05:43:33)

    I don't think so :
    cat /etc/passwd | grep virtual
    virtual:x:1002:1002::/srv/ftp:/bin/bash
    ls -l /srv/
    drwxr-xr-x 2 virtual virtual  4096 máj    6 22.20 ftp
    cat /etc/pam.d/ftp
    auth required /lib/security/pam_userdb.so db=/etc/vsftpd_login
    crypt=hash account required /lib/security/pam_userdb.so db=/etc/vsftpd_login crypt=hash

  • [solved] VSFTPD + Virtual Users + different home directories

    Hi All,
       I've been trying to get VSFTPD setup to allow ftp access to some of my clients to access their web files. I've got VSFTPD up and running via the Wiki, but my virtual users can't log in. The only thing that I didn't do from the wiki was the "useradd virtual" as I didn't think it was needed. Also, the wiki only covers one directory for all users, I want to have each user to have access to their own web directory and nothing else.  I think I may just have something a little off in my vsftpd file. Thanks!
    vsftpd.conf
    anonymous_enable=NO
    local_enable=YES
    write_enable=YES
    dirmessage_enable=YES
    xferlog_enable=YES
    connect_from_port_20=YES
    data_connection_timeout=120
    listen=YES
    virtual_use_local_privs=YES
    pam_service_name=vsftpd
    guest_enable=YES
    user_sub_token=$USER
    chroot_local_user=YES
    hide_ids=YES
    local_root=/srv/http/$USER
    Last edited by GravityGripp (2009-05-14 17:36:19)

    GravityGripp wrote:
    I don't think it's a directory permissions issue as it's telling me that my login is incorrect.
    Here's my /etc/pam.d/ftp
    auth required /lib/security/pam_userdb.so db=/etc/vsftpd_login crypt=hash
    account required /lib/security/pam_userdb.so db=/etc/vsftpd_login crypt=hash
    here's part of my auth.log also.
    May 14 08:14:08 arthur vsftpd: pam_unix(vsftpd:auth): check pass; user unknown
    May 14 08:14:08 arthur vsftpd: pam_unix(vsftpd:auth): authentication failure; logname= uid=0 euid=0 tty=ftp ruser=current_user rhost=127.0.0.1
    May 14 08:24:14 arthur vsftpd: pam_unix(vsftpd:auth): check pass; user unknown
    May 14 08:24:14 arthur vsftpd: pam_unix(vsftpd:auth): authentication failure; logname= uid=0 euid=0 tty=ftp ruser=current_user rhost=127.0.0.1
    Hi GravityGripp,
       as posted at the beginning of the thread in /etc/vsftpd.conf the 'pam_service_name' option is 'vsftpd' but here you are referencing /etc/pam.d/ftp as PAM service name but in vsftpd.conf you told to use 'vsftpd' as PAM service for auth.
    About your need to define different directory for each ftp virtual user in my installation I allow ftp access to virtual users (defined in MySQL and auth  via pam_mysql); to let users have access to their own ftp directory (with different auth read only / read-write) I used the user_config_dir option (see man vsftpd.conf).
    Here an extract of my '/etc/vsftpd.conf':
    # This powerful option allows the override of any config option specified
    # in the manual page, on a per-user basis. Usage is simple, and is best
    # illustrated with an example. If you set user_config_dir to be /etc/vsftpd_user_conf
    # and then log on as the user "chris", then vsftpd will apply the settings
    # in the file /etc/vsftpd_user_conf/chris for the duration of the session.
    # Default: (none)
    user_config_dir=/etc/vsftpd/vsftpd-user-conf
    Each time I add a new ftp virtual user that need a personal ftp directory, under the dir '/etc/vsftpd/vsftpd-user-conf' I create a file named as the username where I define the personal ftp directory and the auth on it (RO or RW).
    Example for user 'test' (file '/etc/vsftpd/vsftpd-user-conf/test'):
    # vsftpd per-user basis config file (override of any config option specified
    # in the vsftpd server config file)
    # TEMPLATE
    # User test - Description for user test
    # Set local root
    local_root=/srv/vsftpd/test
    # Disable any form of FTP write command.
    # Allowed values: YES/NO
    write_enable=YES
    Of course the dir must exist and have the right permissions to allow the user to connect.
    Hope that this will be of help.
    bye

  • Pure-ftpd-mysql socket error after latest mysql update [SOLVED]

    As we know the socket path in mysql have been moved from /tmp/mysqld.sock to /var/run/mysqld/mysqld.sock.
    The problem now with pure-ftpd-mysql is that it tries to use /tmp/mysqld.sock even though I have:
    MYSQLSocket /var/run/mysqld/mysqld.sock
    Inside of my /etc/pure-ftpd/pure-ftpd-mysql.conf
    I guess that either MYSQLSocket is the wrong keyword or that the path is hard coded into pure-ftpd-mysql.
    Any ideas how to solve this?
    EDIT:
    The path for the mysql conf was changed during last update
    from
    MySQLConfigFile  /etc/pure-ftpd/pure-ftpd-mysql.conf
    to
    MySQLConfigFile /etc/pure-ftpd/auth/mysql.conf
    Last edited by ancide (2009-11-25 10:23:24)

    maksvlad wrote:
    I've edited /etc/rc.d/mysqld file and added "ln -fs /var/run/mysqld/mysqld.sock /tmp/mysql.sock" like this
    echo $(getPID) >/var/run/mysqld/mysqld.pid
    add_daemon mysqld
    ln -fs /var/run/mysqld/mysqld.sock /tmp/mysql.sock
    stat_done
    It isn't  correct solution but it works...
    On other hand you would try something like this http://bbs.archlinux.org/viewtopic.php?id=85441
    Thanks for the reply. The problem is that all my other applications are using the new correct path. But I guess I can just make a symlink like you said for now until pure-ftpd-mysql is fixed.

  • Manually add/modify users for pure-ftpd ftp server?

    Ave,
    Alright I downloaded, compiled & installed the latest pure-ftpd ftp server from pureftpd.org .. and it seems to have started off ok.
    Since there is no Leopard Compatible PureFTPD Manager out yet, I need to create/modify users manually. Does anyone know how to do that for Pure-FTPD FTP Server? I can't seem to find or see any .conf files or anything at all. How do you manage users for pure-ftpd through command line or configuration?
    Thanks!

    This seems like a good one:
    extra/bftpd 3.8-2
        Small, easy-to-configure FTP server
    From what i have read you can set individual configuration for each user or group:
    http://bftpd.sourceforge.net/doc/en/bft … html#ss3.1

  • [SOLVED] vsFTP and virtual users

    EDIT: One should really install pam_pwdfile if he wants this to work (it's also in the wiki, but I'm blind)
    Hey,
    I'm trying to set up vsFTP with virtual users on my machine. Here is what I did:
    # pacman -S vsftpd
    # mkdir /etc/vsftpd
    # htpasswd -cd /etc/vsftpd/.passwd ftpguest
    *password*
    # vi /etc/pam.d/vsftpd
    auth required pam_pwdfile.so pwdfile /etc/vsftpd/.passwd
    account required pam_permit.so
    # useradd -d /storage/ftp virtual
    # chown virtual:virtual /storage/ftp
    My /etc/vsftpd.conf:
    anonymous_enable=NO
    pam_service_name=vsftpd
    hide_ids=YES
    local_enable=YES
    dirmessage_enable=YES
    xferlog_enable=YES
    connect_from_port_20=YES
    chroot_local_user=YES
    local_root=/storage/ftp/$USER
    user_sub_token=$USER
    guest_enable=YES
    guest_username=virtual
    virtual_use_local_privs=YES
    listen=YES
    # mkdir /storage/ftp/ftpguest
    # chown virtual:virtual /storage/ftp/ftpguest
    # systemctl start vsftpd.service
    Then I point my browser to ftp://myip and I get a prompt for username and password, but the problem is that the user I created (ftpguest) can't log in. What am I missing?
    Thanks
    Last edited by developej (2014-05-10 20:38:59)

    EDIT: One should really install pam_pwdfile if he wants this to work (it's also in the wiki, but I'm blind)
    Hey,
    I'm trying to set up vsFTP with virtual users on my machine. Here is what I did:
    # pacman -S vsftpd
    # mkdir /etc/vsftpd
    # htpasswd -cd /etc/vsftpd/.passwd ftpguest
    *password*
    # vi /etc/pam.d/vsftpd
    auth required pam_pwdfile.so pwdfile /etc/vsftpd/.passwd
    account required pam_permit.so
    # useradd -d /storage/ftp virtual
    # chown virtual:virtual /storage/ftp
    My /etc/vsftpd.conf:
    anonymous_enable=NO
    pam_service_name=vsftpd
    hide_ids=YES
    local_enable=YES
    dirmessage_enable=YES
    xferlog_enable=YES
    connect_from_port_20=YES
    chroot_local_user=YES
    local_root=/storage/ftp/$USER
    user_sub_token=$USER
    guest_enable=YES
    guest_username=virtual
    virtual_use_local_privs=YES
    listen=YES
    # mkdir /storage/ftp/ftpguest
    # chown virtual:virtual /storage/ftp/ftpguest
    # systemctl start vsftpd.service
    Then I point my browser to ftp://myip and I get a prompt for username and password, but the problem is that the user I created (ftpguest) can't log in. What am I missing?
    Thanks
    Last edited by developej (2014-05-10 20:38:59)

  • Virtual users

    I've only just recently migrated to OSX server since the release of snow leopard. Ive come from a debain server.
    I used to be able to have a virtual user table under sendmail allowing me to have multiple domains with similar usernames in each domain thus:-
    [email protected] domain1username
    [email protected] domain2username
    It seems under workgroup manager (is this the place to add these?) under shortnames even if i create a shortname for domain1username that is [email protected] and a shortname for domain2username that is [email protected] the mail server wont allow mails for [email protected], bouncing with the error message <[email protected]>: User unknown in virtual alias table
    Can anyone shed any light or point me to a manual/fix?
    Thanks muchly!
    Andy

    Here's what I've found that works.
    In WGM in addition to the shortname you need to add the email address. In this case your username for domain1 and domain2 are the same.
    andy 
    [email protected]
    [email protected]

  • LoadRunner SAPGUI Virtual Users Decline

    I am trying to perform a Load Test on SAP R/3 using LoadRunner 9.5. I have 120 virtual users that I would like to run for an hour. I have distributed these 120 vusers over 6 scenarios on 5 load generators. The maximum number of virtual users that I have been able to run at one time is 114. The number then slowly declines over the next 40 minutes and stabilizes at 91 vusers (which run for the remaining hour). The messages I get from LoadRunner indicate that users have logged on and navigated to their assigned transaction code in SAP, but fail to perform the first step in that transaction code (this happens for ME21N, ME22N, ME23, FB10, F-43 which is all of the transaction codes that I am testing). I have worked with the Basis Group here to ensure that there are enough interactive dialog work processes, set each scenarios think time to random, initialize and start each vuser individually, and ensured that each load generator has enough RAM. The only thing left that I know to try is to increase the number of dialog processes per user. However, we cannot figure out the parameter name to do this. If anyone knows the name of this parameter or have any other suggestions, please let me know. Thanks!

    Hello Andy,
    We are having a similar problem, did you ever get an answer about this issue?
    Thank you!

  • Rejecting emails to unknown virtual users before filtering them?

    hi
    it appears that all emails to any virtual domain on my server gets "filtered" BEFORE it gets checked against valid users for that domain.
    1. mail in
    2. filtered
    3. checked if valid
    4. rejected (unknown)
    Is there any way to have the validity check done before the filtering?
    It would seem more economical if it worked like this...
    1. mail in
    2. checked if valid
    3. rejected (unknown)
    Regan
    Message was edited by: reganyelcich

    I have used pterobyte's virtual mail set up in the past without a problem - and found that Apple has broken the postfix in 10.5 (as it says on the PDF that pterobyte is recommending.)
    If you, like me, had already set up each user in WGM to have two shortnames (the second one - an email at virtual domain) then you only need to append the users to your "virtual" file in "/etc/postfix".
    EG:
    [email protected] shortname
    do this for each virtual user, postmap the file and reload postfix. Then the mail server will accept the email addressed to your virtual user.
    By All Means: read the PDF for more instructions.

  • Ramp Down Virtual Users Feature in OLT 9.1

    Hi,
    I would like to know is there any ramp-down feature available in Oracle Load test tool similar to one available in HP LoadRunner?
    I was able to find only ramp-up field entries in auto-pilot tab.
    Please do let me know more info regarding it
    Regards,
    Mahesh

    Hi,
    The Scenario pattern which you had mentioned is for ramping-up users which usually occurs during start of test execution which is readily available in autopilot tab. I mean ramping-down users which occurs at the end of test execution for defined period / goal.
    At present, users are made to exit once they complete current iteration.
    Is there any method available for graduall exit of virtual users?
    Hope you understood my query.
    Regards,
    Mahesh

  • CR Add-on 2.0.0.7 Problem: Only Super Users are allowed access ...

    Hi Everybody,
    We have installed the latest ( to my best understanding) version of CR Add-on (2.0.0.7 , compiled for 64 bit , downloaded from Richard Duffy's blog) and we are receiving the error message "Only Super Users are allowed access to this function" .
    We've checked that the users are all Super Users and they have Professional and Addon licenses.
    The only relevant thread I've found in forums solved the issue by installing the latest version of CR Add-on, which we've did.
    The installation is  B1 2007 A SP001 ,PL 11.
    Any ideas will be highly welcomed.
    Thanks in advance,
    Simon

    We have the same issue, this happens when you go to Administration > Crystal Reports
    We can't see the reports in CR
    Please if you have a solution tell me.
    Thx and Regards,

  • Virtual User Minutes, Load Testing, and Billing

    I am struggling with figuring out how to handle my QA organization's potential use of the Cloud-Based Load Testing.  I have about 30 individuals in my QA organization with MSDN Ultimate licenses.  Many of these individuals do not do Load Testing.
      Ideally I would like to 'pool' all of their 15,000 Virtual User Minutes together - and have my organization be able to use those minutes for our monthly load testing, as the individuals that would be doing the testing invidually would exceed their own
    15,000 Virtual User Minutes; plus - in a large organization, having individuals utilize their own MSDN benefits seems odd. 
    How does the Windows Azure Organization Account option fit into this? 
    Our company also has a Enterprise Azure Agreement - but I'm not sure how that works either - in order to determine how I would budget for these costs. 
    We would only be utilizing the Load Testing option within my team.   Please advise on how I determine what route to go and potential budget.  

    Hi Psandstrom,
    I understand that you are looking forward to know about the Azure benefits for MSDN users, every MSDN user /individual can get up to $150/month.
    If you exceed your monthly credits, your service will be disabled for that month. You can choose to turn off your Spending Limit, and any usage each month in excess of the monthly credits will be charged at the rates specified in this offer. For more information
    See
    Monthly Azure credits.
    To grab the benefits, I recommend you to let the 30 individuals who own MSDN licenses to activate the Azure benefits.
    To activate Azure benefits, log into http://msdn.microsoft.com , select My Account and click
    activate azure.
    Hope this answers your query.
    Regards,
    Shirisha Paderu

Maybe you are looking for