[NTLUG:Discuss] can get my ftp to accept me.

[Kyle Davenport]

ftp server must be running if you get a prompt.  Instead it sounds like an
authorization problem.   Check that you have a file /etc/pam.d/ftp that looks
something like this:

#%PAM-1.0
auth    optional    /lib/security/pam_ftp.so
auth       optional /lib/security/pam_listfile.so item=user sense=deny
file=/etc/ftpusers onerr=succeed
auth       optional /lib/security/pam_pwdb.so shadow nullok
auth       optional /lib/security/pam_shells.so
account    optional /lib/security/pam_pwdb.so
session    optional /lib/security/pam_pwdb.so

Above is very permissive.  You may  prefer:
#%PAM-1.0
auth       required /lib/security/pam_listfile.so item=user sense=deny
file=/etc/ftpusers onerr=succeed
auth       required /lib/security/pam_pwdb.so shadow nullok
auth       required /lib/security/pam_shells.so
account    required /lib/security/pam_pwdb.so
session    required /lib/security/pam_pwdb.so

which does not allow root to log in remotely.  Also check your /etc/hosts.allow
and /etc/hosts.deny files, and whether you can ftp locally (on the same host)

_______________________________________________________




Fred James <fredjame at concentric.net> on 04/01/2001 10:09:21 PM

Please respond to discuss at ntlug.org

To:   discuss at ntlug.org
cc:    (bcc: Kyle Davenport/Is/Corporate/CompUSA)
Subject:  [NTLUG:Discuss] can get my ftp to accept me.



Red Hat 6.2 with ftp server on and seemingly set up correctly (I cannot
locate an error).
This is all on my internal network behind the firewall.
ftp connects and ask for user and password, and log in fails every time.