FTP install

Date: Thu, 30 Apr 1998 12:14:01 -0300 (ADT)
From: David Potter <potter@csuite.ns.ca>
To: webmaster@netwater.comc, csuite-install@chebucto.ns.ca
Precedence: bulk
Return-Path: <csuite-install-mml-owner@chebucto.ns.ca>

next message in archive
no next message in thread
previous message in archive
Index of Subjects 



I've redirected this to csuite-install...

I see by your application that you're using Slackware.... we haven't
tested an install on that distribution so some problems are to be
expected....

To deal with your second question first... we limit ftp access through
program modifications (ie. a custom ftpd) and unfortunately we're not in a
position to help with another setup.

Back to the CSuite ftpd... your CS_ROOT/etc/ftpd directory probablly
should look something like this..... 

csuite:/var/csuite/etc/ftpd# ls -l 
total 357
-r--r--r--   1 root     csuite        821 Jan 18 15:26 ftpaccess
-r-xr-xr-x   1 root     csuite     360636 Jan 18 15:26 ftpd 

-----

To try and sort out the problem... have a look in CS_ROOT/build
it appears that on your machine this is /var/csuite2/build 

There should be one or more files make-install-csuite.xxxx where xxxx is
a process id. Have a look in this file to see if you can find an error
associated with ftp. Perhaps `grep ftp make-install-csuite.* ` 

*While you're at it you might grep for error and see if anything else
failed during the install.

Here is the grep ftp output from the install noted above...

csuite:/var$ grep ftp csuite/build/make.install-csuite.6528 
Made directory /var/csuite/etc/ftpd/
  cp ftp.pl /var/csuite/lib/perl5/ftp.pl
  chmod 444 /var/csuite/lib/perl5/ftp.pl
make[3]: Entering directory `/var/csuite/src/etc/ftpd'
./build $ftpd
make[4]: Entering directory `/var/csuite/src/etc/ftpd/support'
make[4]: Leaving directory `/var/csuite/src/etc/ftpd/support'
Making ftpd.
make[4]: Entering directory `/var/csuite/src/etc/ftpd/src'
gcc -O2 -fomit-frame-pointer -I.. -I../support -I/usr/include/bsd
-L../support -s -I/var/csuite/src -I/var/csuite/intl/include  -c ftpd.c -o
ftpd.o
byacc  ftpcmd.y 
mv -f y.tab.c ftpcmd.c
gcc -O2 -fomit-frame-pointer -I.. -I../support -I/usr/include/bsd
-L../support -s -I/var/csuite/src -I/var/csuite/intl/include  -c ftpcmd.c
-o ftpcmd.o
gcc -O2 -fomit-frame-pointer -I.. -I../support -I/usr/include/bsd
-L../support -s -o ftpd ftpd.o ftpcmd.o glob.o logwtmp.o popen.o vers.o
access.o extensions.o realpath.o acl.o private.o authenticate.o
conversions.o hostacc.o sigfix.o -lsupport -lbsd 
make[4]: Leaving directory `/var/csuite/src/etc/ftpd/src'
Making ftpcount.
make[4]: Entering directory `/var/csuite/src/etc/ftpd/src'
gcc -O2 -fomit-frame-pointer -I.. -I../support -I/usr/include/bsd
-L../support -s -o ftpcount ftpcount.c vers.o -lsupport -lbsd 
make[4]: Leaving directory `/var/csuite/src/etc/ftpd/src'
Making ftpshut.
make[4]: Entering directory `/var/csuite/src/etc/ftpd/src'
gcc -O2 -fomit-frame-pointer -I.. -I../support -I/usr/include/bsd
-L../support -s -o ftpshut ftpshut.c vers.o -lsupport -lbsd 
make[4]: Leaving directory `/var/csuite/src/etc/ftpd/src'
make[4]: Entering directory `/var/csuite/src/etc/ftpd/src'
make[4]: Leaving directory `/var/csuite/src/etc/ftpd/src'
342642  12348   205768  560758  88e76   bin/ftpd
147353  1364    15176   163893  28035   bin/ftpcount
81989   1212    15188   98389   18055   bin/ftpshut
147353  1364    15176   163893  28035   bin/ftpwho
cs_install bin/ftpd /var/csuite/etc/ftpd
Installed bin/ftpd in /var/csuite/etc/ftpd successfully
cs_install ftpaccess /var/csuite/etc/ftpd
Installed ftpaccess in /var/csuite/etc/ftpd successfully
cs_install nodot /var/csuite/etc/ftpd/msgs
make[3]: Leaving directory `/var/csuite/src/etc/ftpd' 

====================================

david potter


On Thu, 30 Apr 1998 webmaster@netwater.com wrote:

> I am having trouble limiting access with ftpd.
> 
> First, the /var/csuite2/etc/ftpd directory seems to be missing items.
> Here's a screen print of the directory and it's permissions:
> 
> williamston:/var/csuite2/etc/ftpd# ls -lsa
> total 227
>    1 drwxrwxr-x   2 root     csuite       1024 Apr 30 09:54 ./
>    1 drwxrwxr-x  15 http     csuite       1024 Apr 30 09:12 ../
>   58 -r-xr-xr-x   1 http     csuite      57760 Apr 30 09:22 ftp*
>    1 -r--r--r--   1 http     csuite        826 Apr 29 12:36 ftpaccess
>    7 -rwxr-xr-x   1 http     csuite       6880 Apr 30 09:22 ftpcount*
>   55 -rwxr-xr-x   1 http     csuite      55048 Apr 30 09:22 ftpd*
>    7 -rwxr-xr-x   1 http     csuite       6832 Apr 30 09:22 ftpshut*
>    7 -rwxr-xr-x   1 http     csuite       6880 Apr 30 09:22 ftpwho*
>   90 -rwxr-xr-x   1 http     csuite      90600 Apr 30 08:54 wu.ftpd*
> 
> Why do I have so much?  Because in the inetd.conf the original line that
> build.html put in:
> 
> ftp stream tcp nowait root /usr/sbin/tcpd /var/csuite2/etc/ftpd/ftpd -l -a 
> -u0133
> 
> did not work.  "ftpd*" was not in the above directory.  So I went to the
> src directory in Csuite and tried to rebuild ftp (./build lnx), but that
> didnt work and it said that there were files missing in the bin/ directory
> (under the src directory).
> 
> And I can go on and on.  My real question is, I got ftp to work using
> wu.ftpd, but how do I limit restrictions to directories?  I went in and
> created a dummy user "aa003", ftp'd into the server as him, and proceeded
> to download the /etc/passwd and shadow password file - a major security
> risk.  I could do the same thing as user "guest". I noticed on VFN that
> the users cannot go any higher than their user directory (. & .. don't
> even show).  Plus the msgs/ directory is missing.  All in all, I think I
> killed the ftpd in Csuite.  How can I rebuild just the ftpd portion?
> 
> I hope I was clear.
> 
> Thanx.
> Mark
>

next message in archive
no next message in thread
previous message in archive
Index of Subjects