HPE Community
Operating System - HP-UX
1753735 Members
4353 Online
108799 Solutions
New Discussion юеВ

Login failed message while starting FTP

 
SOLVED
Go to solution
user1221
Frequent Advisor

тАО09-09-2009 04:07 AM

тАО09-09-2009 04:07 AM

Re: Login failed message while starting FTP

root@hrdbdr01:/etc/ftpd# more /etc/shells
ksh
sh
bash
csh
0 Kudos
Reply
user1221
Frequent Advisor

тАО09-09-2009 04:08 AM

тАО09-09-2009 04:08 AM

Re: Login failed message while starting FTP

root:wP3YfPdFupRN2:0:3::/:/sbin/sh
0 Kudos
Reply
Torsten.
Acclaimed Contributor

тАО09-09-2009 04:12 AM

тАО09-09-2009 04:12 AM

Re: Login failed message while starting FTP

What shell is configured for root in /etc/passwd?




http://docs.hp.com/en/B3921-60631/ftpd.1M.html

...
ftpd authenticates users according to three rules:

- The user name must be in the password data base, /etc/passwd, and not have a null password. The client must provide the correct password for the user before any file operations can be performed.

- The user name must not appear in the file /etc/ftpd/ftpusers (see ftpusers(4)).

- The user must have a standard shell returned by getusershell().

Hope this helps!
Regards
Torsten.

__________________________________________________
There are only 10 types of people in the world -
those who understand binary, and those who don't.
__________________________________________________
No support by private messages. Please ask the forum!

If you feel this was helpful please click the KUDOS! thumb below!   
Reply
Hakki Aydin Ucar
Honored Contributor

тАО09-09-2009 04:16 AM

тАО09-09-2009 04:16 AM

Re: Login failed message while starting FTP

To enable the /etc/ftpd/ftpaccess file, you need specify the -a option for the ftp entry in the /etc/inetd.conf file. For example:

ftp stream tcp nowait root /usr/lbin/ftpd ftpd -a -l -d

is it OK ? check it out
Reply
Torsten.
Acclaimed Contributor

тАО09-09-2009 04:30 AM

тАО09-09-2009 04:30 AM

Re: Login failed message while starting FTP

I noticed the log "FTP LOGIN REFUSED" is for user rayees. How about his shell in passwd? Any similar message for root?

Did you already check if you have sftpd installed?

Since ftp is really unsecure, you should consider to use sftp anyway.

Hope this helps!
Regards
Torsten.

__________________________________________________
There are only 10 types of people in the world -
those who understand binary, and those who don't.
__________________________________________________
No support by private messages. Please ask the forum!

If you feel this was helpful please click the KUDOS! thumb below!   
Reply
user1221
Frequent Advisor

тАО09-09-2009 04:33 AM

тАО09-09-2009 04:33 AM

Re: Login failed message while starting FTP

The entry in the /etc/inetd.conf file was
ftp stream tcp nowait root /usr/lbin/ftpd ftpd -l

I changed it to;

ftp stream tcp nowait root /usr/lbin/ftpd ftpd -a -l -d

and then restarted the inetd service with inetd -c.

There is no "ftpusers" file in /etc/ftpd/ftpusers.

checked again still not working.

0 Kudos
Reply
Matti_Kurkela
Honored Contributor

тАО09-09-2009 04:35 AM

тАО09-09-2009 04:35 AM

Solution

Re: Login failed message while starting FTP

OK, the reason for rejection according to the syslog was "shell not in /etc/shells".

The shell field of /etc/passwd must match *exactly* with one of the lines in /etc/shells, otherwise ftpd will not allow access.

> root@hrdbdr01:/etc/ftpd# more /etc/shells
ksh
sh
bash
csh

Your /etc/shells does not have full path names in it. This may be the problem. Shells should be specified with a full path, both in /etc/passwd and in /etc/shells.

If /etc/shells is not readable or does not exist, the system uses this standard list:

/sbin/sh
/usr/bin/sh
/usr/bin/rsh
/usr/bin/ksh
/usr/bin/rksh
/usr/bin/csh
/usr/bin/keysh

This list is documented in getusershell(3C) man page (accessible with "man getusershell" command on your HP-UX system).

My suggestion: copy this standard list of shells to /etc/shells and add the full pathname of your bash shell to it. Then make sure your /etc/passwd uses full pathnames to specify the shells for each user.

MK
MK
Reply
Roland Piette
Regular Advisor

тАО09-10-2009 03:46 AM

тАО09-10-2009 03:46 AM

Re: Login failed message while starting FTP

Hi,

You report :
the /etc/ftpd/ftpaccess contents are
root@hrdbdr01:/etc/ftpd# more ftpaccess
root
rayees

I am afraid that this content doesn't match the needs for this file ! This content is totally wrong.

You need to make a copy of the sample file and reading the man page (man ftpaccess)
The sample file is located at the following path : /usr/newconfig/etc/ftpd/examples/ftpaccess

Regards
Roland
Reply
user1221
Frequent Advisor

тАО09-10-2009 04:10 AM

тАО09-10-2009 04:10 AM

Re: Login failed message while starting FTP

changed the /etc/shells to

/usr/bin/ksh
/sbin/sh
bash
/usr/bin/csh


restarted the inetd with inetd -c

Still the login failed message.

I transfered the files with scp as I cannot wait anymore to fix the FTP issue.
Thanks everyone for precious support.
0 Kudos
Reply
Roland Piette
Regular Advisor

тАО09-10-2009 05:06 AM

тАО09-10-2009 05:06 AM

Re: Login failed message while starting FTP

Hi,

I understand the urgency of the solution.
But if your are interresting to use ftp with ftpaccess file mecanism you are not far awy from the solution. I used it to give restricted access to users in this way that users cannot walk everywhere on my server (ftponly). They are connected in specific directory they see as root (/). ftpaccess is the key to handle the access rights.

Another thing to troubbleshoot the problem. Disable ftpaccess use in /etc/inetd.conf. Take away the -a option
restart inetd with inetd -c command
Try to connect !

If you can do it, you have a configuration problem with ftpaccess mecanism ....

Regards,
Roland

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.