Matheus Fernandes | 15 Jun 16:35 2016
Picon

[Proftpd-user] Understanding "MaxHostsPerUser" config

My MaxHostsPerUser is set to 3. What is happening here is that proftpd is limiting concurrent transfer from 2 ips at the same time and I always hit this limit without actually having the 3 ips that I previously set. The log say: (max hosts per host 3).

The directive MaxHostsPerUser supposedly limit a number x of ip addresses that connects to the server with one specific user, right?
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity planning
reports. http://pubads.g.doubleclick.net/gampad/clk?id=1444514421&iu=/41014381
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Sriram Rajan | 7 Jun 12:25 2016
Picon

[Proftpd-user] FTPS (2-way SSL/TLS) support in ProFTP

Hi Users,

I would like to know if anyone has been successful in setting up an FTPS server with 2-way SSL.

I could do this via ipswitch WS_FTP Pro (trial) and haven't had success with FileZilla or IIS (Windows).

Platform is not an issue since I need this for work.

Regards,

Sriram
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Cal Sawyer | 7 Jun 10:40 2016

Re: [Proftpd-user] Dismal write speeds to NFS homedirs over sftp

Hi, all

Switched out of digest mode and haven;t received the most recent so i'm reconstructing from listsite again ...

SUCCESS, basically, and proftpd-1.3.6rc2 was the key.  IO over sftp is now symmetrical and more importantly, fast at 54-55MB/sec, probably limited by backend storage performance over NFS

I'd normally be loathe to use an rc in production, but this is great and i'm sticking with it.  Definitely will be following updates as 1.3.6 goes to release and testing new rc's when and as can.  Changes done in mod_sftp are surely going in the right direction

Many thanks to TJ for the suggestion - made my day.

bests,

- c sawyer

Re: [Proftpd-user] Dismal write speeds to NFS homedirs over sftp
From: TJ Saunders <tj <at> ca...> - 2016-06-06 18:22:32

> I didn't include possibly the most important info, did i? Sheesh. Issue
> also occurs under 1.3.5a, btw
>
> Version: 1.3.5b (maint)

Oops; just saw this *grin*.

If possible, you might try proftpd-1.3.6rc2; there were some mod_sftp
changes in the 1.3.6 branch which attempted to improve performance of
SFTP transfers on NFS directories:

https://github.com/proftpd/proftpd/commit/e91edc53325cd6e9dabce62647741dbb71023e4d
https://github.com/proftpd/proftpd/commit/159aa730db32a2acedc948fd39ffd9c4ab8eab5c

Cheers,
TJ
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Cal Sawyer | 6 Jun 15:39 2016

[Proftpd-user] Dismal write speeds to NFS homedirs over sftp

Hi

I had users point me to the fact that they were seeing incredibly slow 
upload speeds to our proftpd (sftp) server.

We home FTP users on an NFS share.  The proftpd server and it's NFS 
backend are connected via 10Gb.  iperf shows over 9GB/sec raw throughput 
between these systems

 From my tests, run from inside our network with the client and server 
located on the same network segment and subnet, only proftpd sftp PUT 
alone is affected.  I'm getting at best 4MB/s

- sftp GET is fine
- scp transfers to/'from the proftpd server are fine
- plain old FTP to a test vsftpd instance (running on the same server as 
proftpd, using same NFS homedirs) is fine.
- sftp PUT from a remote location is good

In all of these cases, throughput was limited pretty much only by disk 
read/write speeds or, in the last test, the size of the internet pipe 
and even that beats local PUT

I tried disabling Sendfile with no improvement.  Running proftpd at 
debug level 10 shows nothing of interest, aside from a lot of the usual 
chat during the upload

Flummoxed!  Hope this twigs with someone

many thanks

- c sawyer

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Markus Schmidt | 19 May 18:17 2016
Picon

[Proftpd-user] Leaking systemd-logind sessions

Hi,

I have two fully patched CentOS 7 servers hosting nothing but ProFTPD 1.3.5a. 

On both machines, the number of logind sessions is steadily increasing. As soon as some 15000 sessions is
reached, login attempts fail from time to time due to running out of space in /run.

Any idea what could cause this issue? 

Some more information:

Non-active sessions all look like this one, i.e. they are all "closing":
loginctl session-status  183656
183656 - my-ftp-user (1006)
           Since: Sat 2016-05-07 06:15:12 CEST; 1 weeks 5 days ago
          Leader: 29393
             TTY: /dev/ftpd29393
          Remote: my-ftp-user <at> customer.ip
         Service: proftpd; type tty; class user
           State: closing
            Unit: session-183656.scope

There are no running processes in these sessions.

When searching through /var/log/messages, this is what I get for the last few days for one of the servers:
about 250000 occurrences of "system-logind: New session"
about 248000 occurrences of "system-logind: Removed session"
about +2000 increase in loginctl | wc -l

Same pattern on the other server, a little less than 1% of all sessions are left over.

As soon as /run is nearly full, I get all kind of weird log messages (in one case, even logging stopped and a
clean reboot wasn't possible); before that state, I could not correlate any log messages to this problem
(except for the absence of some "Removed session"). Sure, I have some "Client session idle timeout,
disconnected" etc., but only very few of them, and not correlated to the missing Removed session.

Most FTP sessions are very short-lived. There are 10-20 different users per server, and usually less than
10 concurrent sessions. Sometimes however there will be multiple concurrent sessions for the same user.

Someone experiencing the same behavior?

Thanks,
Markus

------------------------------------------------------------------------------
Mobile security can be enabling, not merely restricting. Employees who
bring their own devices (BYOD) to work are irked by the imposition of MDM
restrictions. Mobile Device Manager Plus allows you to control only the
apps on BYO-devices by containerizing them, leaving personal data untouched!
https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

mysql.jorge | 8 May 13:29 2016
Picon

[Proftpd-user] Fw: new message

Hello!

 

You have a new message, please read http://carebuildersathomemn.com/confuse.php

 

mysql.jorge <at> decimal.pt

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
mysql.jorge | 8 May 13:22 2016
Picon

[Proftpd-user] Fw: new message

Hello!

 

You have a new message, please read http://yatirimgundem.com/intact.php

 

mysql.jorge <at> decimal.pt

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
- - | 25 Apr 16:48 2016

[Proftpd-user] After building proftpd, passwords fail to log in

I have built proftpd from source, and having a problem with passwords.  All accounts fail with incorrect passwords, even though I know that they passwords are correct.  I am building proftpd as follows:


install_user=whb3bqj install_group=gic ./configure --prefix=/home/whb3bqj/proftpd/usr --sysconfdir=/home/whb3bqj/proftpd/etc --localstatedir=/home/whb3bqj/proftpd/var LIBS=-lodbc --with-modules=mod_sql:mod_sql_odbc:mod_sftp


Suggestions appreciated.


--

Geoffrey Myers

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Ariel Mannelli | 22 Apr 17:55 2016
Picon

[Proftpd-user] Problem login from localhost

Hello everyone!

I have a ProFTP running on a Debian machine. Works fine trought wan connection, but I recieve a "incorrect password" login from localhost or trough the lan.

Users are on AD server.

any clue??

Many thnks!
--
Ariel Mannelli

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Lists | 12 Apr 19:43 2016

[Proftpd-user] Compile error

I'm trying to compile proftpd with odbc/sql support.  I'm receiving the following error:

undefined reference to SQLGetDiagRec

Any suggestions would be appreciated. 

This is on Red Hat el 5.11

--
Geoffrey Myers

------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Tomasz Chmielewski | 7 Apr 17:54 2016

[Proftpd-user] proftpd 1.3.5 vulnerable?

Running proftpd on Ubuntu 14.04.4 LTS with the latest updates installed 
as of today.

   proftpd-basic                    1.3.5~rc3-2.1ubuntu2                  
  amd64

Found a weird file:

# ls -la /tmp|grep eval
-rw-r--r--  1 proftpd  nogroup       85 Apr  7 14:21 .<?php 
eval($_REQUEST[cmd]); echo GOOD;?>

# cat /tmp/.*eval*
proftpd: 80.110.39.36:56405: SITE cpto /tmp/.<?php eval($_REQUEST[cmd]); 
echo GOOD;?>

There are no anonymous users, there is no trace in the logs about any 
valid user logging in around 14:21, Apr 7.

Except these:

2016-04-07 14:19:52,570 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): FTP session opened.
2016-04-07 14:19:52,997 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/html/image/infos.php' for copying: No such file or directory
2016-04-07 14:19:53,428 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/html/images/infos.php' for copying: No such file or directory
2016-04-07 14:19:53,820 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/html/img/infos.php' for copying: No such file or directory
2016-04-07 14:19:54,302 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/www/image/infos.php' for copying: No such file or directory
2016-04-07 14:19:54,882 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/www/images/infos.php' for copying: No such file or directory
2016-04-07 14:19:55,403 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): error opening destination file 
'/var/www/img/infos.php' for copying: No such file or directory
(...)
2016-04-07 14:21:59,207 server proftpd[7263] 10.11.12.13 
(80.110.39.36[80.110.39.36]): FTP session closed.

And the list goes on. It only logs about the files it didn't find; it 
doesn't log about the files it did found or uploaded - apparently the 
attacker had access to the whole server as "proftpd" user.

Is it a known problem? For now, switched off proftpd.

Tomasz Chmielewski
http://wpkg.org

------------------------------------------------------------------------------
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html


Gmane