FTP Access

Giuseppe_13 · ‎04-07-2008

I have a problem.
I can access to server HP-UX 11.11, via ftp, using username root only.

Using other username, the answer is:

"220 iitsh005 FTP server (Version 1.1.214.4(PHNE_34544) Fri Feb 24 15:03:24 GMT 2
006) ready.
Utente (138.132.95.34:(none)): sist
530 User sist access denied..."

How is possible to enable the username "sist" ?

thanks

Steven E. Protter · ‎04-07-2008

Shalom,

See the ftpacces file.

That reverse intuitively controls those users that can use ftp.

Also, having root with ftp access is dangerous and will fail you on most security audits.

SEP

Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com

skt_skt · ‎04-07-2008

check if you have an entry in cat /etc/ftpd/ftpusers & cat /etc/ftpusers for sist which also could result the same error

Steven E. Protter · ‎04-07-2008

Shalom,

See the ftpaccess list and man page for wu-ftpd.

This counter-intuitive list will permit you to authorize/block access.

You should block root ftp access. It id dangerous and a common failure point on security audits.

ftp authenticates in clear text and where possible sftp from openssh (secure shell) should be used in its place.

SEP

Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com

Giuseppe_13 · ‎04-07-2008

The file /etc/ftpd/ftpusers is not present
The file /etc/ftpd/ftpaccess is not present

Javed Khan_1 · ‎04-07-2008

Hi,
Please check /etc/shells for /usr/bin/sh & /sbin/sh

Never Give Up

YAQUB_1 · ‎04-07-2008

Hi Giuseppe,

This is very common problem, pls check the below URL site, hope it will help for U:-

http://forums12.itrc.hp.com/service/forums/questionanswer.do?admit=109447627+1207569264586+28353475&threadId=1026012

Thanks--Yaqub
HP Support!!!

HP-FMS · ‎04-07-2008

Hi,..

Pls try this path,..

#ll /usr/newconfig/etc/ftpd/examples/*

In this dir u will get a ftpusers, access & etc....

Pls verify,..

H.Kannan.

Giuseppe_13 · ‎04-07-2008

in /var/ad/syslog/syslog.log:
Apr 7 14:10:55 iitsh005 ftpd[6847]: FTP LOGIN REFUSED (bad shell) FROM 138.132.26.48 [138.132.26.48], sist

in /etc/shells:
/bin/sh
/bin/csh
/bin/ksh

the file /usr/bin/sh exists
the file /sbib/sh exists

The user "sist" has the ksh shell:
cat /etc/passwd | grep sist :
sist:7pb58KDNAZdKs:117:109:,,,:/home/sist:/usr/bin/ksh

Javed Khan_1 · ‎04-07-2008

add /usr/bin/ksh to /etc/shells

Never Give Up

Giuseppe_13 · ‎04-07-2008

OK !

I have add /usr/bin/ksh in /etc/shells and now is possible to exec ftp connection to server.

Thanks

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

FTP Access

FTP Access

Re: FTP Access

Re: FTP Access

Re: FTP Access

Re: FTP Access

Re: FTP Access

Re: FTP Access

Re: FTP Access

Re: FTP Access

Re: FTP Access

Re: FTP Access