Re: Ftp not working for only 1 user to 1 system!!!

Daniel Simard · ‎01-05-2004

Hi!
Here is my situation. I have an "oracle" account that dries to ftp from server A to B, i get the following output...

root@[biqaf]: ftp 172.20.64.94
Connected to 172.20.64.94.
220 FTP server ready.
Name (172.20.64.94:simardd): root
331 Password required for root.
Password:
root@[biqaf]:

Here is what I've tried (troubleshooting.)
1. Verified the permissions of /etc/passwd (normal)
2. Tried ftp'ing as another "normal" user from server A to server (B) and it works.
3. Tried ftp'ing from B to A and it works.
4. Tried ftp'ing to any other server using the problematic account, they all work.
5. Tried with a normal plaine jane .profile and it didn't work.
6. Checked ftpusers, ftpuser.night files, nothing suspicious.

Conclusion of problem. Only the oracle account doesn't work. ONLY from server A to server B. Please help!

/etc/ftpd/ftpaccess is normal also..

Si tu n'as pas ce que tu aimes, aimes ce que tu as.

Uday_S_Ankolekar · ‎01-05-2004

Your output shows you are trying ftp with root! Did you try with oracle account??

-USA..

Good Luck..

RAC_1 · ‎01-05-2004

Is users shell listed in /etc/shells? and appropriate perms on it?

There is no substitute to HARDWORK

Daniel Simard · ‎01-05-2004

Sorry all! Here is the proper output...

/oracle/home> ftp 172.20.64.94
Connected to 172.20.64.94.
220 FTP server ready.
331 Password required for oracle.
530 Login incorrect.
Login failed.
Remote system type is UNIX.
Using binary mode to transfer files.

Also...we don't have or use /etc/shells, it is not a trusted system. (not that /etc/shells would only be on trusted systems.)

Very funny strange thing happening. My ultimate troubleshooting test would simply be to delete the oracle account and re-create it but I don't want to attempt that because the server is fairly important and I do not with to agravate the situation etc...

Si tu n'as pas ce que tu aimes, aimes ce que tu as.

RAC_1 · ‎01-05-2004

If you do not have /etc/shells file then do as follows.

cut -d":" -f7 /etc/passwd >/etc/shells.

Not try and post the results.

Also do indet -l so that loggin is enabled and post the results.

There is no substitute to HARDWORK

Daniel Simard · ‎01-05-2004

I've tried your suggestion, same results. Here is a glimpse of the end of my /var/adm/syslog/syslog.log

Jan 5 14:47:57 biqaf inetd[12491]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 14:47:57 2004
Jan 5 14:49:40 biqaf : su : + 5 simardd-oracle
Jan 5 14:49:57 biqaf inetd[12593]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 14:49:57 2004
Jan 5 14:51:57 biqaf inetd[12635]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 14:51:57 2004
Jan 5 14:53:57 biqaf inetd[12719]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 14:53:57 2004
Jan 5 14:55:57 biqaf inetd[12760]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 14:55:57 2004
Jan 5 14:57:57 biqaf inetd[12847]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 14:57:57 2004
Jan 5 14:59:57 biqaf inetd[12913]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 14:59:57 2004
Jan 5 15:01:57 biqaf inetd[12972]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 15:01:57 2004
Jan 5 15:03:57 biqaf inetd[13056]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 15:03:57 2004
Jan 5 15:05:57 biqaf inetd[13148]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 15:05:57 2004
Jan 5 15:07:57 biqaf inetd[13241]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 15:07:57 2004
Jan 5 15:08:47 biqaf : su : + 5 simardd-oracle
Jan 5 15:09:57 biqaf inetd[13324]: registrar/tcp: Connection from biqaf (172.20.64.95) at Mon Jan 5 15:09:57 2004

B.T.W I do have inted -l configured. (logging).

Please help!!!

Si tu n'as pas ce que tu aimes, aimes ce que tu as.

RAC_1 · ‎01-05-2004

Can you telnet using that user? Is home dir OK for that user?

There is no substitute to HARDWORK

Daniel Simard · ‎01-05-2004

Yes, I can telnet no problem. I should have indicated that. Also, the permissions to /oracle/home (or oracle's home) are ok.

One thing is for sure, it is only happening with this user (ORACLE) from server A to B. Not A to C, A to D, only A to B ???

Si tu n'as pas ce que tu aimes, aimes ce que tu as.

Michael Schulte zur Sur · ‎01-05-2004

Hi,

can you post the passwd line of user oracle?

thanks,

Michael

Daniel Simard · ‎01-05-2004

oracle:,6/gP:105:101:Oracle Generic,,,:/oracle/home:/usr/bin/sh

THANKS! any help is appreciated!

Si tu n'as pas ce que tu aimes, aimes ce que tu as.

Uday_S_Ankolekar · ‎01-05-2004

/etc/ftpusers , /etc/ftpaccess and /etc/shells are three files you need to check. If in ftpusers file you have oracle then it rejects ftp.

-USA..

Good Luck..

Daniel Simard · ‎01-05-2004

I understand what you are trying to say. But if any of these files were incorrect in any way, why would I be able to ftp to 40 servers except 1 ? And only for the user account "ORACLE" ?

Cause if I try to ftp to all servers using my login name, (specially to server B from A, I at least get a prompt were as oracle, i dont).

Please help!

Si tu n'as pas ce que tu aimes, aimes ce que tu as.

Uday_S_Ankolekar · ‎01-05-2004

I guess you are checking these settings on System B ( Destination).Check these settings on destination server perticularly the ftpusers and ftpaccess.

Good Luck..

Daniel Simard · ‎01-05-2004

I found this on server B in /var/adm/syslog.log At least it's something!!!!

Jan 5 15:58:27 bidev inetd[26606]: ftp/tcp: Connection from unknown (172.20.64.95) at Mon Jan 5 15:58:27 2004
Jan 5 15:58:27 bidev ftpd[26606]: cannot stat private access file /etc/ftpd/ftpgroups: No such file or directory
Jan 5 15:58:27 bidev ftpd[26606]: USER oracle
Jan 5 15:58:27 bidev ftpd[26606]: PASS password
Jan 5 15:58:28 bidev ftpd[26606]: pam_authenticate: Authentication failed 134217759
Jan 5 15:58:28 bidev ftpd[26606]: User oracle: Login incorrect
Jan 5 15:58:28 bidev ftpd[26606]: SYST
Jan 5 15:58:28 bidev ftpd[26606]: TYPE Image
Jan 5 15:58:29 bidev ftpd[26606]: QUIT
Jan 5 15:58:29 bidev ftpd[26606]: FTP session closed

Please help!!!

Si tu n'as pas ce que tu aimes, aimes ce que tu as.

Uday_S_Ankolekar · ‎01-05-2004

Is ftpgroups missing in /etc/ftpd??
-USA..

Good Luck..

James Cain · ‎01-05-2004

Does the oracle account use a .netrc file? If it does, it may contain an old password.

RAC_1 · ‎01-05-2004

Also check /etc/ftphosts and indetd.sec files.

There is no substitute to HARDWORK

Daniel Simard · ‎01-05-2004

THANKS JAMES CANE!!! MY BUDDY AT WORK FIGURED IT OUT BUT YOU WERE RIGHT!! iT WAS THE .NETRC FILE THAT CONTAINED AN INVALID PASSWORD.

Si tu n'as pas ce que tu aimes, aimes ce que tu as.

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Re: Ftp not working for only 1 user to 1 system!!!

Ftp not working for only 1 user to 1 system!!!