HPE Community
Operating System - HP-UX
1822147 Members
4179 Online
109640 Solutions
New Discussion юеВ

Re: FTP access

 
SOLVED
Go to solution
Nemer_1
Regular Advisor

тАО12-13-2005 04:21 PM

тАО12-13-2005 04:21 PM

FTP access

Hello all,

I have HP-UX 11.0 box on which ftp access is allowed. I can access and login successfully to this server from anywhere in my network using ftp.

Yesterday I add my PC name to the hosts file in that server and for some unknown reason the server become not accessible via ftp from my PC as long as that entry exists in the hosts file...

C:\>ftp
Connected to .
220 FTP server (Version 1.1.214.8 Fri Apr 20 07:27:4
2 GMT 2001) ready.
User (:(none)): root
530 User root access denied....
Login failed.
ftp>

regards
0 Kudos
13 REPLIES 13
Arunvijai_4
Honored Contributor

тАО12-13-2005 04:27 PM

тАО12-13-2005 04:27 PM

Re: FTP access

Do you use DHCP on your network ? Check your PC's IP and has anybody changed any config files (/etc/ftpaccess) ?

-Arun
"A ship in the harbor is safe, but that is not what ships are built for"
0 Kudos
Arunvijai_4
Honored Contributor

тАО12-13-2005 04:30 PM

тАО12-13-2005 04:30 PM

Re: FTP access

Also, check this thread,

http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=630481

-Arun
"A ship in the harbor is safe, but that is not what ships are built for"
0 Kudos
Nemer_1
Regular Advisor

тАО12-13-2005 04:38 PM

тАО12-13-2005 04:38 PM

Re: FTP access

Arun,

I'm not using DHCP at all and the IP address resolution is correct. note that if I remove the entry of my PC from the hosts file every think work fine....

thanks
0 Kudos
Arunvijai_4
Honored Contributor

тАО12-13-2005 04:46 PM

тАО12-13-2005 04:46 PM

Re: FTP access

Can you able to telnet from your PC and able to login as root ? Please check /var/adm/inetd.sec for any ftp deny.

Also, Run inted with logging (inetd -l)enabled and check /var/adm/syslog/syslog.log

-Arun
"A ship in the harbor is safe, but that is not what ships are built for"
0 Kudos
RAC_1
Honored Contributor

тАО12-13-2005 04:58 PM

тАО12-13-2005 04:58 PM

Re: FTP access

Most probably this seems fromt he fact that root is not allowed to do ftp.
What is the message in syslog.log file?? (I hope you have enabled inetd logging. inetd -l)

Check /etc/ftpd/ftpusers file.
Check /etc/ftpusers file.

If root is in the file, you need to take it away. But doing doing direct ftp/telnet/ssh with root is not a good sysadministration practise.
There is no substitute to HARDWORK
0 Kudos
Muthukumar_5
Honored Contributor

тАО12-13-2005 05:53 PM

тАО12-13-2005 05:53 PM

Re: FTP access

check the /var/adm/inetd.sec file service denial. Check ftpusers file for user restriction. Are you able to access it by normal user using ftp?

-Muthu
Easy to suggest when don't know about the problem!
0 Kudos
Nemer_1
Regular Advisor

тАО12-16-2005 07:08 PM

тАО12-16-2005 07:08 PM

Re: FTP access

Hi all,
sorry for my late response.

actually, my problem is with ftp access only, I can telnet my server normally. my problem appears only after I add myPC IP to the hosts file. everything was working fine before...even now if I remove that entry from the hosts file, I can ftp my server from my PC with any account.

I double check the inet.sec file and the ftp access is allowed. also the ftpusers file is empty. right now I cann't start the inetd with -l option because I cann't stop the inetd service.

I'm wondering what is the relation between the ftp service & hosts file??

thanks,
0 Kudos
Darrel Louis
Honored Contributor

тАО12-16-2005 07:50 PM

тАО12-16-2005 07:50 PM

Re: FTP access

Hi,

What's your ftp line in /etc/inetd.conf?
If the -a option is not used it will not check the ftpaccess file.
Are you making use of ftphosts file?
Are you making use of LDAP/NIS, if yes check your /etc/nsswitch.conf.

What's the error message your seeing in ftpd.log or syslog.log?

GoodLuck

Darrel
0 Kudos
Nemer_1
Regular Advisor

тАО12-16-2005 08:50 PM

тАО12-16-2005 08:50 PM

Re: FTP access

Hi,

the ftp entry in /etc/inetd.conf is :
ftp stream tcp nowait root /usr/lbin/ftpd ftpd -l -a

we are not using ftphosts, LDAP/NIS.

Also there is no logs related to ftp appears in the syslog.log file. ftpd.log is not there.

Regards,
0 Kudos
Darrel Louis
Honored Contributor

тАО12-16-2005 11:16 PM

тАО12-16-2005 11:16 PM

Solution

Re: FTP access

Hi,

Can you please attach your inetd.conf and ftpaccess file, so I can have a quick look at it.

Darrel
0 Kudos
Darrel Louis
Honored Contributor

тАО12-16-2005 11:30 PM

тАО12-16-2005 11:30 PM

Re: FTP access

Hi,

Can you add the following entry to the /etc/syslog.conf:
#------------------------------
# FTPD messages
#------------------------------
local5.debug /var/adm/syslog/ftpd.log

Make sure that you use the TAB instead of spaces. Do a kill -HUP to re-read syslog.conf.

Also add the -v option to your ftp line and then do a inetd -c.

GoodLuck

Darrel
0 Kudos
Nemer_1
Regular Advisor

тАО12-17-2005 06:48 PM

тАО12-17-2005 06:48 PM

Re: FTP access

Thanks All,

The problem was in the ftpaccess file. it was configured to allow only specific class of addresses to connect to the server. Darrel solution help me in identifying this problem. The old entry in the ftpaccess file was something like:

class ftpusers real *.*.*.*

I change this entry to:

class ftpusers real *

and its now working fine.

regards
0 Kudos
Amitabh_1
New Member

тАО12-29-2005 06:14 PM

тАО12-29-2005 06:14 PM

Re: FTP access

I have the same problem and i did everything what members suggested. What else could be the reson for not enabling FTP ?
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.