Operating System - HP-UX
1834017 Members
2544 Online
110063 Solutions
New Discussion

Re: anonymous ftp access denied

 
SOLVED
Go to solution
Jimmy Rogers
Frequent Advisor

anonymous ftp access denied

Hello,
I used SAM on an HP-UX 11.0 server to add anonymous ftp. I try an ftp session logging in as ftp, but get the " 530 User ftp access denied." message. I looked at syslogs and it claimed the access was denied because ftp is in mu /etc/ftpusers file, however, it isn't in there. I even moved the ftpusers file to take it out of the equation, same message in syslog. Also, moved /var/adm/inetd.sec file to take it out of the equation. Syslog still claims ftp is in /etc/ftpusers file, even though I've moved it. Any suggestions before I completely lose my mind? Remember, ftp is working for other user accounts.

Thanks,
J.R.
3 REPLIES 3
Jordan Bean
Honored Contributor
Solution

Re: anonymous ftp access denied

Although the syslog entry claims the file is /etc/ftpusers, it is actually /etc/ftpd/ftpusers in HPUX 11.x.
someone_4
Honored Contributor

Re: anonymous ftp access denied

Hi there .. Here is what I got when I did a man on ftpd ... It should help
Your 530 means Not logged in,
If the user name is anonymous or
ftp, an anonymous FTP account must be present in the password file
(user ftp). In this case the user is allowed to log in by specifying
any password (by convention this is given as the user's e-mail
address).
In order to permit anonymous FTP, there must be an entry in the
passwd(4) database for an account named ftp. The password field
should be *, the group membership should be guest, and the login shell
should be /usr/bin/false. For example (assuming the guest group ID is
10):

ftp:*:500:10:anonymous ftp:/home/ftp:/usr/bin/false

The anonymous FTP directory should be set up as follows:

~ftp The home directory of the FTP account should be owned by user
root and mode 555 (not writable). Since ftpd does a chroot()
to this directory, it must have the following subdirectories
and files:

~ftp/usr/bin
This directory must be owned by root and mode 555
(not writable). The file /sbin/ls should be copied
Chris Calabrese
Valued Contributor

Re: anonymous ftp access denied

In 11.00 the ftpusers files is in /etc/ftpd/ftpusers, not /etc/ftpusers. The account is probably in this file. The message is probably wrong.
Brainbench MVP for Unix Administration and Internet Security, SANS Review Editor, and Center for Internet Security HP-UX Benchmark project leader