HPE Community
Operating System - HP-UX
1827448 Members
5837 Online
109965 Solutions
New Discussion

grant anonymous ftp access to a trusted system

 
SOLVED
Go to solution
Roderick Derks
Frequent Advisor

‎04-18-2005 03:42 AM

‎04-18-2005 03:42 AM

grant anonymous ftp access to a trusted system

Directory is /usr/cible/tmp/ftp/centralink

How do I do this?

I did the following things but I still can not login with user anonymous:

In order to permit anonymous FTP, there must be an entry in the passwd(4) database for an account named ftp. The password field should be *, the group membership should be guest, and the login shell should be /usr/bin/false. For example (assuming the guest group ID is 10):

ftp:*:500:10:anonymous ftp:/usr/cible/tmp/ftp/centralink:/usr/bin/false

The anonymous FTP directory should be set up as follows:

~ftp The home directory of the FTP account should be owned by user root and mode 555 (not writable). Since ftpd does a chroot() to this directory, it must have the following subdirectories and files:

~ftp/usr/bin This directory must be owned by root and mode 555 (not writable). The file /sbin/ls should be copied to ~ftp/usr/bin. This is needed to support
directory listing by ftpd. The command should be mode 111 (executable only). If the FTP account is on the same file system as /sbin, ~ftp/usr/bin/ls can be hard link, but it may not be a symbolic link, because of the chroot(). The command must be
replaced when the system is updated.


~ftp/etc This directory must be owned by root and mode 555 (not writable). It should contain versions of the files passwd and group. See passwd(4) and group(4). These files must be owned by root and mode 444
(readable only). These files must be present for the LIST command to be able to produce owner names rather than numbers.

~ftp/etc/passwd This file should contain entries for the ftp user and any other users who own files under the anonymous ftp directory. Such entries should have *
for passwords. Group IDs must be listed in the anonymous FTP group file,
The path names of home directories in ~ftp/etc/passwd must be
with respect to the anonymous FTP home directory.

~ftp/etc/group This file should contain the group names associated with any group IDs in file ~ftp/etc/passwd and any group IDs of files in the anonymous FTP subdirectories.

~ftp/pub This directory is used by anonymous FTP users to deposit files on the system. It should be owned by user ftp and should be mode 777 (readable and writable by all).
0 Kudos
5 REPLIES 5
RAC_1
Honored Contributor

‎04-18-2005 03:47 AM

‎04-18-2005 03:47 AM

Solution

Re: grant anonymous ftp access to a trusted system

The procedure is right. And mentioned in (i think) passwd/ftp man page.
There is no substitute to HARDWORK
0 Kudos
john korterman
Honored Contributor

‎04-18-2005 03:56 AM

‎04-18-2005 03:56 AM

Re: grant anonymous ftp access to a trusted system

Hi,
what error message do you get on the screen and in syslog?
Check also in SAM-->Networking and Communications-->System Access-->Internet Services-->
Does ftp appear as being allowed?

regards,
John K.
it would be nice if you always got a second chance
0 Kudos
Roderick Derks
Frequent Advisor

‎04-18-2005 03:58 AM

‎04-18-2005 03:58 AM

Re: grant anonymous ftp access to a trusted system

Error message:

220 ezhlims1.elisabeth.nl FTP server (Version 1.1.214.4(PHNE_27765) Wed Sep 4 0
5:59:34 GMT 2002) ready.
Gebruiker (10.1.0.61:(none)): anonymous
530 Guest login not permitted.
Aanmelden mislukt.
0 Kudos
Roderick Derks
Frequent Advisor

‎04-18-2005 04:01 AM

‎04-18-2005 04:01 AM

Re: grant anonymous ftp access to a trusted system

SAM-->Networking and Communications-->System Access-->Internet Services-->

ftp Remote file transfer ARPA Allowed
0 Kudos
Roderick Derks
Frequent Advisor

‎04-18-2005 04:10 AM

‎04-18-2005 04:10 AM

Re: grant anonymous ftp access to a trusted system

#$%^&@, I checked twice but didn't see the mistake. The ~ftp/usr/bin/ls command had the wrong owner.

Thanks!
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.