System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

ftp error : 503 user access denied...

 
SOLVED
Go to solution
Highlighted
Advisor

ftp error : 503 user access denied...

I'm currently using HP UX 11.0 installed on HP9000/800/L2000 server.

this is just happened 2 weeks ago, but before this it was ok.

i tried to ftp to the server but cannot login into the server, and i receive this error msg:


C:\>ftp 192.168.1.3
Connected to 192.168.1.3.
220 s01amy03 FTP server (Version 1.1.214.5 Tue Nov 16 09:39:15 GMT 1999) ready.
User (192.168.1.3:(none)): root
530 User root access denied...
Login failed.
ftp> bye
221 Goodbye.

C:\>

can somebody out there help me to figure out what is the problem....

regards,
15 REPLIES 15
Highlighted
Honored Contributor

Re: ftp error : 503 user access denied...

Hi Muhammad,

Make sure that root is NOT in the /etc/ftpd/ftpusers file.
This is a list of users NOT allowed to ftp.
Seems backwards doesn't it?

HTH,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
Highlighted
Honored Contributor

Re: ftp error : 503 user access denied...

You also need to see the /var/adm/inetd.sec file does not deny any ftp access.
Highlighted
Exalted Contributor

Re: ftp error : 503 user access denied...

Want to fail an outisde security audit?

Then tale root out of the ftpusers file.

root user can accidently wipe out the whole system.

It may be a pain, but you should use less priviledged user ids for ftp transfers on and offf critical Enterprise HP-9000 servers.

Leave it alone, use another user, keep your system secure. Take it from a man who two years ago had this among other security faults presented to management in an audit that I initiated.

Steve
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Highlighted
Honored Contributor

Re: ftp error : 503 user access denied...

Steve is absolutely right. However, if this was working 2 weeks ago, we want to find out what happened :-)

Did you perhaps change root's default shell (in /etc/passwd) to ksh recently ? If you did, ftp might not be accessible because of an 'invalid shell'. Check your logs for the messages.

regards

Wout
an engineer's aim in a discussion is not to persuade, but to clarify.
Highlighted
Honored Contributor

Re: ftp error : 503 user access denied...

check for /etc/shells (i do not remember correct me if i am wrong)

Any user's shell who wants to perform ftp should be entered here. I hope this is the problem

kaps
Nothing is impossible
Highlighted
Honored Contributor

Re: ftp error : 503 user access denied...

Hi,

Are are denying ftp service for this address in /var/adm/inetd.sec file?

Also pls check following that root user is not appear in /etc/ftpd/ftpusers file, and a valid shell definition for root in /etc/passwd file.


Rgds.
Highlighted
Advisor

Re: ftp error : 503 user access denied...

Hi guys, sorry for late respond on all your answer. actually i've not online for last 2-3 days.
ok first of all, not only root can't ftp, but also all the user in that server can't login by ftp.

i've check in the /etc/ftpd/ftpusers file, no user login name inside the file.

and i check in the /var/adm/inetd.sec file, no user is denying for ftp.

only one thing that i check for the /etc/shells file, it contains string "/etc/local/bin/bash"
so, waht does it mean & what should i do to correct this ftp 503 error?

thanks & regards.
Highlighted
Honored Contributor

Re: ftp error : 503 user access denied...

It is the /etc/shells file which stops users from ftp'ing to the box. Someone has created this file on your server withing the last two weeks (Run "ll /etc/shells" to verify the timestamp of the file). If you rename the file (# mv /etc/shells /etc/shells.bak) then you and all other users will again be able to ftp to this server.

Hai
Highlighted
Honored Contributor

Re: ftp error : 503 user access denied...