topic Re: login error ftp in Operating System - HP-UX

login error ftp

Jose Ramirez_6 — Wed, 06 Nov 2002 17:24:25 GMT

I have a problem when i execute ftp with some users, for example root. For other, for example cdf the ftp is good.

the file inetd.sec is empty.

the error is:
frsd1:/etc# ftp 195.180.2.22
Connected to 195.180.2.22.
220 frsd1 FTP server (Version 1.1.214.8 Fri Apr 20 07:27:42 GMT 2001) ready.
Name (195.180.2.22:root): root
530 User root access denied...
Login failed.
Remote system type is UNIX.
Using binary mode to transfer files.

Thank you for help me
JRM.

Re: login error ftp

Steven E. Protter — Wed, 06 Nov 2002 17:29:55 GMT

My advice.
stop using root for ftp.
Block root ftp access in the /etc/ftpaccess file.

Install Secure shell.

Use for root file transfers.

It is secure.

It encrypts passwords.

It is worth the longer time it takes to connect.

My guess is the remote system in your example has /etc/ftpaccess with root in it.

In the Post 9-11 era nobody should assume their network is safe, especially if it has any Microsoft software on any node. Therefore standard CERT and industry practice is to disable root ftp access. telnet should probably be replaced and disabled as well, but I haven't gotten around to that.

If you ever have a security audit as I have(since my employer is a frequent recipient of terrorist threats), you will get an embarassing, avoidable writeup on this issue.

Lastly, consider installing Bastille. It does a point an click question and answer security audit of your entire machine and can close down many security holes automagically. It also lets you shut down antiquated daemons that are risky and hardly anyone uses, freeing up system resources.

This message is probably not helpful, but if you listen to me, you will be happy and your bosses will appreciate it if there is ever a security breach.

Steve

Re: login error ftp

Vincent Fleming — Wed, 06 Nov 2002 17:34:09 GMT

Root ftp access is normally turned off because ftp sends clear-text passwords accross the net, and could allow someone to gain your root password.

You should either use another user, or find an SSL version (ie: secure) of ftp (they are out there... look at the gnu stuff).

Good Luck!

Re: login error ftp

Govind — Wed, 06 Nov 2002 19:23:26 GMT

Check the file /etc/ftpd/ftpusers That must be having root in it. Try "man ftpusers" that will give you more info.
As others pointed This is not recommended for ftp access to be granted for root. You have to do it at ur own discretion. But I would strongly discourage it.

Re: login error ftp

Kim Kendall — Thu, 07 Nov 2002 19:54:04 GMT

Also make sure you have a /etc/shells file with the appropriats shells listed

Re: login error ftp

eran maor — Thu, 07 Nov 2002 20:30:48 GMT

hi jose

i have handle a case today with the same error .

vi to /etc/shells
and add all your shell
( get all the shell that your users are working from the /etc/passwd ) .

check also what shell is your user root is working with