Baird, Josh | 9 Feb 15:23 2016

[Proftpd-user] 1.3.6 final?

Hi,

Is there a tentative release date for 1.3.6 final?

Thanks,

Josh

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Plots Pontcare | 8 Feb 08:36 2016
Picon

[Proftpd-user] Issues with LDAP login

Hi all,
I'm trying to setup a proftpd server that make possible the login of a list of people in a specific Group in my active directory.

I'm running Redhat Enterprise 6.7 with proftpd RPM packages installed from EPEL (version 1.3.3g).

My config is

<IfModule mod_ldap.c>
LDAPServer myserver:port
LDAPAuthBinds On
LDAPDnInfo "CN=myldaploginuser,DC=domain,DC=my" "password"
LDAPAuth On "DC=domain,DC=my" "(&(sAMAccountName=%u)(objectclass=user)(memberOf=CN=FTPGROUP,DC=domain,DC=my"))"
LDAPAttr uid sAMAccountName
LDAPSearchScope subtree
CreateHome off
LDAPDefaultGid 3334
LDAPDefaultUid 3334
</IfModule>

Despite the second part of module configuration, what I see is that LDAP query does not work.
I made a check on my AD and the configuration is correct, and the user I'm using works.

Proftpd says:
mod_ldap/2.8.22: pr_ldap_search(): LDAP search failed: Operations error

I made another test with
LDAPAuth On "DC=domain,DC=my" "(&(sAMAccountName=%u)(objectclass=user)"

and I got:
mod_ldap/2.8.22: pr_ldap_search(): LDAP search failed: Bad search filter

But I supposed that last filter should be able to authenticate everyone.

What might be wrong so?

Thanks
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Molle, Thomas | 28 Jan 17:37 2016

[Proftpd-user] rpmbuild and module not loaded

Hello,

 

I try to make a rpm from the sources (1.3.5a) and I need to load somes modules as mod_tls, mod_rewrite, etc.
When I build the rpm, I specify “—with ssl” for mod_tls but it seems that it is not enough.
Nothing more is loaded when I run proftpd –l.

By the file proftpd.spec, mod_rewrite, mod_auth_pam and mod_ifsession should be always built. Why are not they listed as compiled-in modules ?

 

Any ideas?

 

# cat /etc/redhat-release

CentOS release 6.7 (Final)

 

# rpm -qa |grep openssl

openssl-devel-1.0.1e-42.el6_7.1.x86_64

openssl-1.0.1e-42.el6_7.1.x86_64

 

# rpm -qa |grep proftpd

proftpd-1.3.5-0.1.a.el6.x86_64

proftpd-devel-1.3.5-0.1.a.el6.x86_64

 

# proftpd -l

Compiled-in modules:

  mod_core.c

  mod_xfer.c

  mod_rlimit.c

  mod_auth_unix.c

  mod_auth_file.c

  mod_auth.c

  mod_ls.c

  mod_log.c

  mod_site.c

  mod_delay.c

  mod_facts.c

  mod_dso.c

  mod_ident.c

  mod_cap.c

  mod_ctrls.c

  mod_lang.c

 

Built with : rpmbuild -ba --with ssl proftpd.spec

 

Regard,

Thomas MOLLE

 

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
BROCKHOVEN Werner (EXT | 26 Jan 13:16 2016

[Proftpd-user] umask not taken into account when sunique is on

Hi all,

 

It seems that when using STOU (sunique on), the uploaded file do not follow the umask setting.

Is this the expacted behaviour?

Is there a configuration that can be done to have STOU also follow the umask setting?

 

 

A quick look in the code (modules/mod_xfer.c), shows the following:

 

/* xfer_post_stou() is a POST_CMD handler that changes the mode of the

* STOU file from 0600, which is what mkstemp() makes it, to 0666,

* the default for files uploaded via STOR.  This is to prevent users

* from being surprised.

*/

 

 

However while testing with a newly compiled instance, based on https://dl.fedoraproject.org/pub/epel/7/SRPMS/p/proftpd-1.3.5a-2.el7.src.rpm , we notice that uploaded files keep permission 0600.  When testing a previous version proftpd-1.3.4d, the behaviour is according to the comment in mod_xfer.c and the resulting uploaded file get permission 0666.

 

Regards,

 

Werner Brockhoven

NM CIP MS (22.138)

Email: werner.brockhoven <at> eurocontrol.int
Tel CIP MS: 92662

Tel CIP MS: +32 (0)2 730 26 62

EUROCONTROL
96 Rue de la Fusée, 1130 Brussels, Belgium

Follow us on:
Web 
| Twitter | Facebook | Youtube | Flickr | Linkedin

 

____

This message and any files transmitted with it are legally privileged and intended for the sole use of the individual(s) or entity to whom they are addressed. If you are not the intended recipient, please notify the sender by reply and delete the message and any attachments from your system. Any unauthorised use or disclosure of the content of this message is strictly prohibited and may be unlawful.

Nothing in this e-mail message amounts to a contractual or legal commitment on the part of EUROCONTROL, unless it is confirmed by appropriately signed hard copy.

Any views expressed in this message are those of the sender.
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Peggy Andrews | 25 Jan 23:10 2016

[Proftpd-user] I need verification of support for RFC2228 for FTP over an SSL session (SSL Key)

We are running version 1.3.0

 

We will be setting up a bank connection, and their FTP/SSL Requirements include:

FTP software supporting the RFC2228 standard for FTP over an SSL session (SSL Key)

 

Can you verify this requirement is met with our ProFTPD software?

 

Thanks!

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Linda | 25 Jan 01:45 2016
Picon

[Proftpd-user] Dual Authentication

Does anyone know if proftpd supports 'dual authentication'.?

I want one set of authentication for 'local users'
Another set of authentication for 'external users'.

Can this be done using proftpd?

Thanks
Linda 
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Steve Matzura | 12 Jan 13:43 2016

[Proftpd-user] Use of matching and AllowGroup

What's the best way to combine these two features to limit a group of
users to their common login directory plus symlinks?

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Steve Matzura | 11 Jan 14:52 2016

[Proftpd-user] FTP with all files elsewhere

I have a system with all accessible files networked either via Windows
share or network-attached storage. I only want certain directories
from these sources to be accessible by the FTP server. I'm symlinking
all the top-level directories I want accessible to the login directory
of the FTP account. Although there aren't more than ten of these, I'm
wondering is this the right way to do this? I don't know of any other
easy yet secure way to set this up. Thoughts and advice welcome.

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Steve Matzura | 2 Jan 18:29 2016

[Proftpd-user] Post-Installation Question

During the installation of ProFTPD on Debian 8.2.0 (Jessie), I
received an error after choosing to set ProFTPD to run as a system
service, not start via inet. Here's the log of the entire install
session minus the dialog:

Get:1 http://security.debian.org/ jessie/updates/main proftpd-basic
amd64 1.3.5-1.1+deb8u1 [2,460 kB]
Get:2 http://httpredir.debian.org/debian/ jessie/main libmemcached11
amd64 1.0.18-4 [95.2 kB]
Get:3 http://httpredir.debian.org/debian/ jessie/main
libmemcachedutil2 amd64 1.0.18-4 [22.3 kB]
Fetched 2,577 kB in 0s (3,232 kB/s)
Preconfiguring packages ...
Selecting previously unselected package libmemcached11:amd64.
(Reading database ... 34165 files and directories currently
installed.)
Preparing to unpack .../libmemcached11_1.0.18-4_amd64.deb ...
Unpacking libmemcached11:amd64 (1.0.18-4) ...
Selecting previously unselected package libmemcachedutil2:amd64.
Preparing to unpack .../libmemcachedutil2_1.0.18-4_amd64.deb ...
Unpacking libmemcachedutil2:amd64 (1.0.18-4) ...
Selecting previously unselected package proftpd-basic.
Preparing to unpack .../proftpd-basic_1.3.5-1.1+deb8u1_amd64.deb ...
Unpacking proftpd-basic (1.3.5-1.1+deb8u1) ...
Processing triggers for man-db (2.7.0.2-5) ...
Processing triggers for systemd (215-17+deb8u2) ...
Setting up libmemcached11:amd64 (1.0.18-4) ...
Setting up libmemcachedutil2:amd64 (1.0.18-4) ...
Setting up proftpd-basic (1.3.5-1.1+deb8u1) ...
Warning: The home dir /run/proftpd you specified can't be accessed: No
such file or directory
Adding system user `proftpd' (UID 108) ...
Adding new user `proftpd' (UID 108) with group `nogroup' ...
Not creating home directory `/run/proftpd'.
Adding system user `ftp' (UID 109) ...
Adding new user `ftp' (UID 109) with group `nogroup' ...
Creating home directory `/srv/ftp' ...
‘/usr/share/proftpd/templates/welcome.msg’ ->
‘/srv/ftp/welcome.msg.proftpd-new’
Processing triggers for libc-bin (2.19-18+deb8u1) ...
Processing triggers for systemd (215-17+deb8u2) ...

What does the warning message mean, and do I need `/run proftpd'?

------------------------------------------------------------------------------
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Hajo Locke | 21 Dec 12:21 2015
Picon
Picon

[Proftpd-user] disable tlsv1.0

Hello,

there is a growing number of people who think tlsv1.0 is insecure and 
should be disabled.
Is this possible with proftpd? I think directive TLSProtocol makes no 
differences between tlsv1, tlsv1.1 or tlsv1.2

Thanks,
Hajo

------------------------------------------------------------------------------
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Robert Khachikyan | 1 Dec 23:29 2015
Picon
Picon

[Proftpd-user] 1.3.5a HideGroup + prefix possible bug?

Dear Community,

There may be a bug in the recent 1.3.5a version. And I use that word 
very cautiously as it may be an unwanted feature I've overlooked.

When I configure with "./configure --prefix=/opt/proftpd-1.3.5a", 
certain features in HideGroup or HideUser don't work when using 
ANONYMOUS_FTP.
> HideGroup 'xfr' is not a known/valid group, ignoring

However, when I configure with "./configure", these same features works 
fine.
> retrieved GID 22478 for group 'xfr'

A little more info for the developer/debugger:

When I ftp to the server, the server log initially shows that it's able 
to retrieve the groupID for the 'xfr' account. This is just logging in 
w/o typing anything. However, when I issue a dir (where there's a 
directory in the /var/ftp dir that's group is 'xfr'), it fails to 
retrieve the groupID.

I'm curious to learn is this is an error or a feature I've overlooked?

Thanks,
--Robert

------------------------------------------------------------------------------
Go from Idea to Many App Stores Faster with Intel(R) XDK
Give your users amazing mobile app experiences with Intel(R) XDK.
Use one codebase in this all-in-one HTML5 development environment.
Design, debug & build mobile apps & 2D/3D high-impact games for multiple OSs.
http://pubads.g.doubleclick.net/gampad/clk?id=254741911&iu=/4140
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html


Gmane