HPE Community
Operating System - HP-UX
1753395 Members
7467 Online
108792 Solutions
New Discussion юеВ

Re: 553 Permission denied on server. (Upload)

 
Steven Schweda
Honored Contributor

тАО07-21-2010 07:48 AM

тАО07-21-2010 07:48 AM

Re: 553 Permission denied on server. (Upload)

> Can anyone definitively verify that 11iv3
> requires use of the ftpaccess file in order
> for the anonymous account to upload?

I'm not definitive, but I've never seen a
WU-FTP-based FTP server (on any version of
HP-UX, or on anything else), which would, by
default, allow anonymous uploads. So far as
I know, it's always been an option which
requires explicit configuration, and it's
complex enough to be unlikely to be a
command-line option, so I'd guess that it's
always required something in the FTP server
configuration file.

I always hesitate to say "impossible", but
I'm unaware of any way to do what you want,
and I doubt that there is one, but I'm
always open to actual evidence to the
contrary.


> [...] Any reason?

Still wondering...

("The boss says so" is not the same as an
actual reason.)
0 Kudos
Reply
Myke Fisher
New Member

тАО07-21-2010 08:17 AM

тАО07-21-2010 08:17 AM

Re: 553 Permission denied on server. (Upload)

Agreed. Here's why I'm having to chase this down.

Older server that was used for anonymous ftp. Allows upload anonymous with no issues.

OS on older server:
HP-UX [ourservername] B.11.11 U

entry in the inetd.conf file:

ftp stream tcp nowait root /usr/lbin/ftpd ftpd -l

No ftpaccess file. This is why I'm trying to track down some sort of confirmation that 11i v3 has implemented tighter security.
0 Kudos
Reply
Steven Schweda
Honored Contributor

тАО07-22-2010 04:43 AM

тАО07-22-2010 04:43 AM

Re: 553 Permission denied on server. (Upload)

> Older server that was used for anonymous
> ftp. Allows upload anonymous with no
> issues.

My 11.11 system was inaccessible until now,
so I couldn't test much, but I'll admit that
its FTP server ("FTP server (Version
1.1.214.4(PHNE_38458) Tue Jul 29 07:36:52 GMT
2008)") is willing to do uploads without an
"ftpaccess" file.

Interestingly, it does give the distinctive
messages shown in that previously referenced
thread, depending on whether "ftpaccess"
exists ("(Upload)" with "ftpaccess", no
"(Upload)" without), while the FTP server on
my 11.31 system ("FTP server (Revision 1.1
Version wuftpd-2.6.1 Mon Oct 23 02:01:44 GMT
2006)") shows the "(Upload)" message even
without an "ftpaccess" file.

So, knowing not enough about what HP is using
for source code in either case, the
difference in ID strings suggests that these
really are different programs/versions, not
just the same stuff compiled at different
times (for different hardware types -- my
11.31 system is IA64). Further, I'd
speculate, based on the error messages, that
the server on the 11.31 system acts as if
it has some default "ftpaccess" file (perhaps
an empty one, perhaps not) when there is no
"ftpaccess" file, while the server on the
11.11 system behaves in a detectably
different way when the "ftpaccess" file is
absent. For a good time:

what /usr/lbin/ftpd

Around here, there's a considerable
difference in the reports between 11.11
(PA-RISC) and 11.31 (IA64) systems.

I spotted nothing informative in the "man
ftpd" stuff, so I'd guess that no one without
access to the source code could "definitively
verify" much of anything in this
neighborhood.

I wouldn't bet that this constitutes "tighter
security", but it does seem to be different
security.

So, is the apparent aversion to using an
"ftpaccess" file simply an expectation that
the new stuff should work like the old stuff,
or is there some other reason to avoid using
an "ftpaccess" file?
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.