Dat Head | 24 Jul 00:03 2014
Picon

[Proftpd-user] is mod_wrap2 not ipv6 aware?

we have been using proftpd 1.3.4a for quite some time now and never could get ipv6 to work correctly, so decided to upgrade to 1.3.5 and still it doesn't work

if in hosts.allow i put this (not what we want) it works fine:
  proftpd: ALL

if i put this it works to localhost (ipv4) only:
  proftpd: 127.0.0.1 [::1]

if i put this nothing works:
  proftpd: [::1] 127.0.0.1

this is just a simplified breakdown to try and debug, so basically what i'm seeing is any time wrap2 encounters a v6 addr anything including it AND AFTER it fails (any v4 BEFORE it works ok)

doesn't work w/o the square brackets either (we have to use them for all other services in hosts.allow so figure libwrap uses them and the other services
work ok with v6)

Connected to ::1 (::1).
220 ::1 FTP server ready
331 Anonymous login ok, send your complete email address as your password
530 Access denied <=== I imagine this is from wrap2
Login failed.
421 Service not available, remote server has closed connection

setting debug level to 10 doesn't show me anything more than at level 0 which is:

014-07-23 21:40:00,312 foobar.com proftpd[10885] : FTP session opened.
2014-07-23 21:40:00,314 foobar.com proftpd[10885] : FTP session closed.

this is what I have in proftpd.conf:

## wrap2 - note: wrap(1) denies hosts that don't reverse DNS lookup, so have to use wrap2
LoadModule                      mod_wrap2.c
LoadModule                      mod_wrap2_file.c
WrapEngine                      on
# wraplog is verbose, only use for debugging
WrapLog                         /var/log/proftpd-wrap2.log
WrapTables                      file:/etc/hosts.allow file:/etc/hosts.deny

and this is what is in proftpd-wrap2.log:

2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: table daemon list:
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]:   proftpd
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: table client list:
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]:   127.0.0.1
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]:   [
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: table options list:
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]:   :1]
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: daemon matches 'proftpd'
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: bad IPv6 address syntax: '['

*** doesn't work w/o the [ ] either ***

there is no doc for wrap2, just wrap and it is very brief

2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: checking deny table rules
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: table daemon list:
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]:   ALL
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: table client list:
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]:   ALL <at> ALL
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: daemon matches 'ALL'
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: client matches 'ALL <at> ALL'
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: 'UseReverseDNS off' in effect, NOT resolving ::1 to DNS name for comparison
2014-07-23 21:45:32,133 mod_wrap2/2.0.6[11109]: refused connection from anonymous <at> ::1
it looks like here it is mis-parsing?:

2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]:   [
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]: table options list:
2014-07-23 21:45:32,038 mod_wrap2/2.0.6[11109]:   :1]



------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Chris Lasater | 1 Jul 22:05 2014
Picon

[Proftpd-user] Mod_sql with Mysql

Hi Again,
     I seem to be having some issues with proftpd and mysql.  I compiled 
my own version using the spec file configuration and my own compiled 
version of mysql.  In the past I have tried with the mysql-devel RPM on 
Centos and it did not work either.  I have not seen any error messages 
that stand out and the regular logs just say user not found. I have 
enabled auditing on the mysql server and see no attempt at connecting.  
I can connect using the mysql client with the same credentials with no 
problem.

<IfModule mod_sql_mysql.c>
    SQLConnectInfo               db <at> databaseserver user password
    SQLEngine                    on
    SQLBackend                   mysql
    SQLAuthenticate              users
    SQLAuthTypes                 Plaintext
    SQLDefaultHomedir            /home/user/ftphome/%u
    SQLUserInfo                  account username password uidgid uidgid 
Null Null
    SQLLogFile                   /home/user/logs/proftpd/sql.log
    SQLOptions                   IgnoreConfigfile
</IfModule mos_sql_mysql.c>

[user <at> server ~]$ proftpd -V
Compile-time Settings:
   Version: 1.3.5 (stable)
   Platform: LINUX [Linux 2.6.39-400.24.1.el5uek x86_64]
   Built: Tue Jul 1 2014 14:31:26 EDT
   Built With:
     configure  '--prefix=/home/user/proftpd' '--disable-strip' 
'--enable-ctrls' '--enable-dso' '--enable-facl' '--enable-ipv6' 
'--enable-nls' '--enable-openssl' '--with-lastlog' 
'--with-libraries=/home/techno/apps/mysql/lib64/mysql:/home/techno/apps/openssl/lib' 
'--with-includes=/home/user/mysql/include/mysql:/home/user/openssl/include' 
'--with

shared=mod_ban:mod_ctrls_admin:mod_exec:mod_facl:mod_load:mod_quotatab:mod_quotatab_file:mod_quotatab_radius:mod_quotatab_sql:mod_radius:mod_ratio:mod_readme:mod_rewrite:mod_shaper:mod_site_misc:mod_sql:mod_ldap:mod_sftp:mod_sftp_sql:mod_sql_mysql:mod_wrap2:mod_wrap2_file:mod_wrap2_sql:mod_ifsession' 
'CFLAGS=-m64 -fPIC -O2 -pipe'

   CFLAGS: -m64 -fPIC -O2 -pipe -Wall
   LDFLAGS: -L$(top_srcdir)/lib  -L/home/user/openssl/lib 
-L/home/user/mysql/lib64/mysql
   LIBS: -lacl  -lssl -lcrypto -lssl -lcrypto -lcap -lsupp -lcrypt -ldl

   Files:
     Configuration File:
       /home/user/proftpd/etc/proftpd.conf
     Pid File:
       /home/user/proftpd/var/proftpd.pid
     Scoreboard File:
       /home/user/proftpd/var/proftpd.scoreboard
     Header Directory:
       /home/user/proftpd/include/proftpd
     Shared Module Directory:
       /home/user/proftpd/libexec

   Features:
     - Autoshadow support
     + Controls support
     + curses support
     - Developer support
     + DSO support
     + IPv6 support
     + Largefile support
     + Lastlog support
     - Memcache support
     + ncursesw support
     + NLS support
     + OpenSSL support
     - PCRE support
     + POSIX ACL support
     + Shadow file support
     + Sendfile support
     + Trace support

   Tunable Options:
     PR_TUNABLE_BUFFER_SIZE = 1024
     PR_TUNABLE_DEFAULT_RCVBUFSZ = 8192
     PR_TUNABLE_DEFAULT_SNDBUFSZ = 8192
     PR_TUNABLE_GLOBBING_MAX_MATCHES = 100000
     PR_TUNABLE_GLOBBING_MAX_RECURSION = 8
     PR_TUNABLE_HASH_TABLE_SIZE = 40
     PR_TUNABLE_NEW_POOL_SIZE = 512
     PR_TUNABLE_SCOREBOARD_BUFFER_SIZE = 80
     PR_TUNABLE_SCOREBOARD_SCRUB_TIMER = 30
     PR_TUNABLE_SELECT_TIMEOUT = 30
     PR_TUNABLE_TIMEOUTIDENT = 10
     PR_TUNABLE_TIMEOUTIDLE = 600
     PR_TUNABLE_TIMEOUTLINGER = 30
     PR_TUNABLE_TIMEOUTLOGIN = 300
     PR_TUNABLE_TIMEOUTNOXFER = 300
     PR_TUNABLE_TIMEOUTSTALLED = 3600
     PR_TUNABLE_XFER_SCOREBOARD_UPDATES = 10

[user <at> server ~]$ ldd proftpd/libexec/mod_sql_mysql.so
     linux-vdso.so.1 =>  (0x00007fff6cf0e000)
     libm.so.6 => /lib64/libm.so.6 (0x00007f79085f0000)
     libmysqlclient.so.18 => 
/home/user/mysql/lib64/mysql/libmysqlclient.so.18 (0x00007f7908022000)
     libz.so.1 => /lib64/libz.so.1 (0x00007f7907e0e000)
     libc.so.6 => /lib64/libc.so.6 (0x00007f7907ab5000)
     libpthread.so.0 => /lib64/libpthread.so.0 (0x00007f7907898000)
     libdl.so.2 => /lib64/libdl.so.2 (0x00007f7907694000)
     librt.so.1 => /lib64/librt.so.1 (0x00007f790748b000)
     libstdc++.so.6 => /usr/lib64/libstdc++.so.6 (0x00007f790718a000)
     libgcc_s.so.1 => /lib64/libgcc_s.so.1 (0x00007f7906f7c000)
     /lib64/ld-linux-x86-64.so.2 (0x0000003a5a400000)

[techno <at> ucdvap105002 ~]$ proftpd -vv
ProFTPD Version: 1.3.5 (stable)
   Scoreboard Version: 01040003
   Built: Tue Jul 1 2014 14:31:26 EDT

Loaded modules:
   mod_sql_mysql/4.0.8
   mod_sql/4.3
   mod_sftp/0.9.9
   mod_lang/1.0
   mod_ctrls/0.9.5
   mod_cap/1.1
   mod_ident/1.0
   mod_dso/0.5
   mod_facts/0.3
   mod_delay/0.7
   mod_site.c
   mod_log.c
   mod_ls.c
   mod_auth.c
   mod_auth_file/1.0
   mod_auth_unix.c
   mod_rlimit/1.0
   mod_xfer.c
   mod_core.c

sql.log file  (for one attempted connection)

2014-07-01 13:16:30,463 mod_sql/4.3[5046]: defaulting to 'mysql' backend
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: backend module 
'mod_sql_mysql/4.0.8'
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: backend api 'mod_sql_api_v1'
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: >>> sql_sess_init
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: entering     mysql 
cmd_defineconnection
2014-07-01 13:16:30,463 mod_sql/4.3[5046]:   name: 'default'
2014-07-01 13:16:30,463 mod_sql/4.3[5046]:   user: 'proftp'
2014-07-01 13:16:30,463 mod_sql/4.3[5046]:   host: 'dbserver'
2014-07-01 13:16:30,463 mod_sql/4.3[5046]:     db: 'db'
2014-07-01 13:16:30,463 mod_sql/4.3[5046]:   port: '3306'
2014-07-01 13:16:30,463 mod_sql/4.3[5046]:    ttl: '0'
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: exiting      mysql 
cmd_defineconnection
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: connection 'default' 
successfully established
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: mod_sql engine     : on
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: negative_cache     : off
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: authenticate       : users
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: usertable          : account
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: userid field       : username
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: password field     : password
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: UID field          : uidgid
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: GID field          : uidgid
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: homedir(default)   : 
'/home/user/ftphome/%u'
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: shell field        : NULL
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: SQLMinUserUID      : 999
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: SQLMinUserGID      : 999
2014-07-01 13:16:30,463 mod_sql/4.3[5046]: <<< sql_sess_init
2014-07-01 13:16:31,001 mod_sql/4.3[5046]: >>> sql_pre_pass

------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Chris Lasater | 27 Jun 19:46 2014
Picon

[Proftpd-user] Proftpd 1.3.5: Interface in Virtual Host

I created a Virtual Host for a basic proftpd instance, and I am getting the following error.  The release notes for 1.3.5 say that using the interface is supported.  Do I need to do something to enable this feature?

My OS is Centos 5.5

[server etc]$ proftpd -vv
2014-06-27 13:41:16,931 server proftpd[31122]: getnameinfo error: ai_family not supported
2014-06-27 13:41:16,931 server proftpd[31122]: getnameinfo error: ai_family not supported
2014-06-27 13:41:16,932 server proftpd[31122]: getnameinfo error: ai_family not supported
2014-06-27 13:41:16,932 server proftpd[31122]: getnameinfo error: ai_family not supported
2014-06-27 13:41:16,934 server proftpd[31122] server.local: warning: unable to determine IP address of 'eth0'
ProFTPD Version: 1.3.5 (stable)
  Scoreboard Version: 01040003
  Built: Thu Jun 19 2014 23:43:47 EDT

Loaded modules:
  mod_sftp/0.9.9
  mod_lang/1.0
  mod_ctrls/0.9.5
  mod_cap/1.1
  mod_ident/1.0
  mod_dso/0.5
  mod_facts/0.3
  mod_delay/0.7
  mod_site.c
  mod_log.c
  mod_ls.c
  mod_auth.c
  mod_auth_file/1.0
  mod_auth_unix.c
  mod_rlimit/1.0
  mod_xfer.c
  mod_core.c



LoadModule mod_sftp.c

Umask                           027
MaxInstances                    60
User                            proftpd
Group                           proftpd

<VirtualHost eth0>

   <IfModule mod_sftp.c>
      ServerName                    "SFTP Server"
      ServerIdent                   on     "SFTP Server"
      Port                          1322
      DefaultRoot                   ~
      AllowOverwrite                on
      RequireValidShell             off
      CreateHome                    on
      SFTPEngine                    on
      SFTPRekey                     required
   </IfModule>
</VirtualHost>

------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Maarten Broekman | 19 Jun 22:05 2014

[Proftpd-user] directory creation issue

I'm having a problem where chrooted (within proftpd) users are not able to create directories called etc or lib within their chrooted home directories.  There is no issue with creating directories called usr, var, root, boot, and opt; but etc and lib are being blocked.


1403207491 username [2014/06/19 15:51:31] username remote_ip: C="LIST" D=/full/path/to/homedir/ B=1693 S=226
1403207493 username [2014/06/19 15:51:33] username remote_ip: C="MKD etc" D=/full/path/to/homedir/etc B=- S=550
1403207493 username [2014/06/19 15:51:33] username remote_ip: C="MKD etc" F=/etc B=- S=550 T=-
1403207499 username [2014/06/19 15:51:39] username remote_ip: C="MKD lib" D=/full/path/to/homedir/lib B=- S=550
1403207499 username [2014/06/19 15:51:39] username remote_ip: C="MKD lib" F=/lib B=- S=550 T=-
1403207510 username [2014/06/19 15:51:50] username remote_ip: C="MKD ./etc" D=/full/path/to/homedir/./etc B=- S=550
1403207510 username [2014/06/19 15:51:50] username remote_ip: C="MKD ./etc" F=/etc B=- S=550 T=-
1403207513 username [2014/06/19 15:51:53] username remote_ip: C="CWD wp" D=/full/path/to/homedir/wp B=- S=250
1403207513 username [2014/06/19 15:51:53] username remote_ip: C="PWD" B=- S=257
1403207513 username [2014/06/19 15:51:53] username remote_ip: C="PWD" D= B=- S=257
1403207515 username [2014/06/19 15:51:55] username remote_ip: C="MKD etc" D=/full/path/to/homedir/etc B=- S=257
1403207515 username [2014/06/19 15:51:55] username remote_ip: C="MKD etc" F=/wp/etc B=- S=257 T=-

Is this some security mechanism built into the code or is there a configuration option that I can use to override this behavior?

I don't have any explicit path filters that include either 'etc' or 'lib'.

Maarten Broekman

------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions
Find What Matters Most in Your Big Data with HPCC Systems
Open Source. Fast. Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Scott Sesher | 17 Jun 18:33 2014

[Proftpd-user] multiple anonymous users and the anonymous user

I have multiple anonymous users setup something like this;

<Anonymous ~OTA>
  RequireValidShell             off
  User                          OTA
  Group                         ota
  UserAlias                     anonymous OTA
  # Limit the maximum number of anonymous logins
  MaxClients                    25
CaseIgnore                      on
</Anonymous>

<Anonymous ~PEGASUS>
  RequireValidShell             off
  User                          PEGASUS
  Group                         1x
  UserAlias                     anonymous PEGASUS
  # Limit the maximum number of anonymous logins
  MaxClients                    25
CaseIgnore                      on
</Anonymous>

...

If I login as the anonymous users (rather than one of the users defined)
I end up as whatever user is defined last in the config file.

Is there a way to prevent someone from logging in with the anonymous
users, but still be able to login anonymously using one the the
configured users?

-- sas

------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions
Find What Matters Most in Your Big Data with HPCC Systems
Open Source. Fast. Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Maarten Broekman | 17 Jun 19:08 2014

[Proftpd-user] STAT command response causes client issues on 1.3.6 rc1 (git repo version)

When issuing a STAT command to the server, the client receives 2 responses:  one contains the 212 response with directories + 1 file, the other contains the 213 response with the rest of the files.  This seems to also cause disconnects for the clients.

For FileZilla, this doesn't seem like such a big issue as you have to enter the STAT command as a raw FTP command.  However, CyberDuck seems to use STAT instead of MLSD to retrieve the contents of the directory.  As a result, CyberDuck displays the directory list and then dies.  However, from the output from FileZilla, it looks like two responses are actually happening and that might be the actual cause of the CyberDuck issues.  Ncftp outputs the 213 response after the _next_ command is issued.

I haven't tested on a version between 1.3.4a and 1.3.6rc1 yet.  On 1.3.4a, the server responds with a 211 response instead of one 212 response and one 213 response.

--Maarten

Ncftp debug output on 1.3.4a:
ncftp / > quote stat /
> quote stat /

Cmd: stat /
211: Status of /:
      drwxr-x---   4 3738472  15000        4096 Jun 17 12:59 .
      drwxr-x---   4 3738472  15000        4096 Jun 17 12:59 ..
      -rwxr-xr-x   1 3738472  15000           3 Dec 10  2012 .membership
      -rw-r--r--   1 0        0               0 Jun 17 12:59 bar
      -rw-r--r--   1 0        0               0 Jun 17 12:59 foo
      d-wxr-xr-T   3 3738472  15000        4096 Dec 12  2012 public_html
      drwxr-xr-x   2 3738472  15000        4096 Jun 17 05:56 stats
     End of status
Status of /:
 drwxr-x---   4 3738472  15000        4096 Jun 17 12:59 .
 drwxr-x---   4 3738472  15000        4096 Jun 17 12:59 ..
 -rwxr-xr-x   1 3738472  15000           3 Dec 10  2012 .membership
 -rw-r--r--   1 0        0               0 Jun 17 12:59 bar
 -rw-r--r--   1 0        0               0 Jun 17 12:59 foo
 d-wxr-xr-T   3 3738472  15000        4096 Dec 12  2012 public_html
 drwxr-xr-x   2 3738472  15000        4096 Jun 17 05:56 stats
End of status


Ncftp debug output on 1.3.6rc1:
ncftp / > quote stat /
> quote stat /

Cmd: stat /
212: Status of /:
      drwxr-x---   4 3738472  15000        4096 Jun 17 12:59 .
      drwxr-x---   4 3738472  15000        4096 Jun 17 12:59 ..
      d-wxr-xr-T   3 3738472  15000        4096 Dec 12  2012 public_html
      drwxr-xr-x   2 3738472  15000        4096 Jun 17 05:56 stats
      End of status
     -rwxr-xr-x   1 3738472  15000           3 Dec 10  2012 .membership
Status of /:
 drwxr-x---   4 3738472  15000        4096 Jun 17 12:59 .
 drwxr-x---   4 3738472  15000        4096 Jun 17 12:59 ..
 d-wxr-xr-T   3 3738472  15000        4096 Dec 12  2012 public_html
 drwxr-xr-x   2 3738472  15000        4096 Jun 17 05:56 stats
 End of status
-rwxr-xr-x   1 3738472  15000           3 Dec 10  2012 .membership
ncftp / > ls
> ls

Cmd: OPTS MLST type;size;modify;UNIX.mode;perm;UNIX.owner;UNIX.group;
213: -rw-r--r--   1 0        0               0 Jun 17 12:59 bar
     -rw-r--r--   1 0        0               0 Jun 17 12:59 foo
Cmd: PASV
Cannot parse PASV response: OPTS MLST type;size;modify;UNIX.mode;perm;UNIX.owner;UNIX.group;
Cannot parse PASV response: OPTS MLST type;size;modify;UNIX.mode;perm;UNIX.owner;UNIX.group;
200: OPTS MLST type;size;modify;UNIX.mode;perm;UNIX.owner;UNIX.group;
Cmd: MLSD
227: Entering Passive Mode (192,168,153,47,207,124).


Trace logging from FileZilla:

Trace: CFtpControlSocket::OnReceive()

Response: 212-Status of /:

Trace: CFtpControlSocket::OnReceive()

Response: drwxr-x---  21 2829011  15000        4096 Jun 16 18:34 .

Response: drwxr-x---  21 2829011  15000        4096 Jun 16 18:34 ..

Response: drwx------   2 2829011  15000        4096 Nov  2  2012 _private

Response: drwxr-xr-x   2 2829011  15000        4096 Nov  2  2012 _vti_log

Response: drwxr-xr-x   3 2829011  15000        4096 Mar 15  2012 cgi-bin

Response: drwxr-xr-x   2 2829011  15000        4096 Oct 31  2012 images

Response: drwxr-xr-x  16 2829011  15000        4096 Jul  5  2013 joom

Response: drwxr-xr-x   3 2829011  15000       40960 Jun 17 10:34 stats

Response: drwxrwx--x   5 99       15000        4096 Apr 17  2013 store

Response: drwxr-xr-x   2 2829011  15000        4096 Jun 17 10:14 test

Response: drwxr-xr-x   2 2829011  15000        4096 Jun 17 09:52 test test

Response: drwxr-xr-x   2 2829011  15000        4096 Jun 11 11:28 test-15

Response: drwxr-xr-x   2 2829011  15000        4096 Dec 12  2012 user-spam-remover-log

Response: drwxr-xr-x   2 2829011  15000        4096 Nov  2  2012 vti_old

Response: drwxr-xr-x   5 2829011  15000        4096 Feb 19 13:36 wp

Response: drwxr-xr-x   5 2829011  15000        4096 Sep 27  2013 wp-new

Response: End of status

Response: 212 -rw-r--r--   1 2829011  15000         401 Nov  2  2012 .htaccess

Trace: CFtpControlSocket::RawCommandParseResponse

Trace: CFtpControlSocket::ResetOperation(0)

Trace: CControlSocket::ResetOperation(0)

Trace: CFileZillaEnginePrivate::ResetOperation(0)

Response: 213--rwxrwxr-x   1 99       15000           3 Mar 15  2012 .membership

Response: -rw-r--r--   1 2829011  15000        1754 Nov  5  2012 _vti_inf.html

Trace: CFtpControlSocket::OnReceive()

Response: -rwxr-x---   1 2829011  15000        2412 Mar 15  2012 blah

Response: -rw-r--r--   1 2829011  15000         401 Nov  2  2012 htaccess

Response: -rw-r--r--   1 2829011  15010          63 Nov  5  2012 include.php

Response: -rw-r--r--   1 2829011  15000         414 Oct 31  2012 index.html

Response: -rwxr-xr-x   1 2829011  15000          41 Jun 21  2012 index.php

Response: -rwxr-xr-x   1 2829011  15000          22 Oct 31  2012 info.php

Response: -rw-r--r--   1 2829011  15000        2459 Oct 31  2012 postinfo.html

Response: -rw-r--r--   1 2829011  15010         455 Nov  5  2012 test.php

Response: 213 -rw-r--r--   1 2829011  15000        1561 Jun 16 18:34 zzzzx.php

Trace: Unexpected reply, no reply was pending.



Command logging from CyberDuck:

STAT /wp

200 NOOP command successful

CWD /wp

212-Status of /wp:

 drwxr-xr-x   5 2829011  15000        4096 Feb 19 13:36 .

 drwxr-x---  21 2829011  15000        4096 Jun 16 18:34 ..

 drwxr-xr-x   9 2829011  15010        4096 Sep 27  2013 wp-admin

 drwxr-xr-x   6 2829011  15010        4096 Sep 27  2013 wp-content

 drwxr-xr-x  10 2829011  15010        8192 Sep 27  2013 wp-includes

 End of status

212 -rw-r--r--   1 2829011  15010         243 Dec 12  2012 .htaccess

TYPE A

213--rw-r--r--   1 2829011  15010         395 Jan  8  2012 index.php

 -rw-r--r--   1 2829011  15010       19929 Aug  1  2013 license.txt

 -rw-r--r--   1 2829011  15010        7130 Sep 11  2013 readme.html

 -rw-r--r--   1 2829011  15010        4616 Aug  1  2013 wp-activate.php

 -rw-r--r--   1 2829011  15010         271 Jan  8  2012 wp-blog-header.php

 -rw-r--r--   1 2829011  15010        3513 Aug  1  2013 wp-comments-post.php

 -rw-r--r--   1 2829011  15010        3177 Nov  1  2010 wp-config-sample.php

 -rw-r--r--   1 2829011  15010        3486 Dec 12  2012 wp-config.php

 -rw-r--r--   1 2829011  15010        2718 Sep 23  2012 wp-cron.php

 -rw-r--r--   1 2829011  15010        1997 Oct 23  2010 wp-links-opml.php

 -rw-r--r--   1 2829011  15010        2408 Oct 26  2012 wp-load.php

 -rw-r--r--   1 2829011  15010       29751 Aug  1  2013 wp-login.php

 -rw-r--r--   1 2829011  15010        7715 Aug  1  2013 wp-mail.php

 -rw-r--r--   1 2829011  15010        9990 Aug  1  2013 wp-settings.php

 -rw-r--r--   1 2829011  15010       22135 Aug  1  2013 wp-signup.php

 -rw-r--r--   1 2829011  15010        3692 Aug  1  2013 wp-trackback.php

213 -rw-r--r--   1 2829011  15010        2722 Aug  1  2013 xmlrpc.php


------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions
Find What Matters Most in Your Big Data with HPCC Systems
Open Source. Fast. Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
Robin Kearney | 11 Jun 08:50 2014
Picon

[Proftpd-user] possible mod_shaper log rotation bug

Hi,

I’m running proftpd 1.3.5 in production, with mod_shaper enabled.  I’m finding that when I rotate the
log file (as defined in the ShaperLog config option) and issue a HUP to the daemon the log file is not
re-opened. 

You can see me reproduce this below, if mail is messed up then a gist is here 

https://gist.github.com/rk295/79cee2186a775c46f6aa

Initially you’ll see it is happily writing to shaper.log, but once that is moved out of the way and the
daemon HUPed it continues to write to shaper.log.old, not re-opening the new shaper.log. This is what I
see nightly when logrotate comes along to rotate that log :(

% lsof -p 11508  | grep shaper
proftpd 11508 nobody  mem    REG      253,0    77410   1402491 /usr/libexec/proftpd/mod_shaper.so
proftpd 11508 nobody    4w   REG      253,0     4163   1402473 /var/log/ftpd/shaper.log
proftpd 11508 nobody    5u   REG      253,0      120   1402472 /var/log/ftpd/shaper.tab
% cd /var/log/ftpd
% mv shaper.log shaper.log.old
% touch shaper.log
% cat /var/run/proftpd.pid
11508
% kill -HUP 11508
% lsof -p 11508 | grep shaper
proftpd 11508 nobody  mem    REG      253,0    77410   1402491 /usr/libexec/proftpd/mod_shaper.so
proftpd 11508 nobody    1u   REG      253,0      240   1402472 /var/log/ftpd/shaper.tab
proftpd 11508 nobody    4w   REG      253,0    39864   1402473 /var/log/ftpd/shaper.log.old
proftpd 11508 nobody    5u   REG      253,0      240   1402472 /var/log/ftpd/shaper.tab
%% vim /etc/logrotate.d/proftpd
% proftpd  -V
Compile-time Settings:
  Version: 1.3.5 (stable)
  Platform: LINUX [Linux 2.6.18-348.16.1.el5PAE i686]
  Built: Tue Jun 10 2014 20:04:55 BST
  Built With:
    configure  '--host=i686-redhat-linux-gnu' '--build=i686-redhat-linux-gnu'
'--target=i386-redhat-linux' '--program-prefix=' '--prefix=/usr' '--exec-prefix=/usr'
'--bindir=/usr/bin' '--sbindir=/usr/sbin' '--sysconfdir=/etc' '--datadir=/usr/share'
'--includedir=/usr/include' '--libdir=/usr/lib' '--libexecdir=/usr/libexec'
'--localstatedir=/var' '--sharedstatedir=/usr/com' '--mandir=/usr/share/man'
'--infodir=/usr/share/info' '--libexecdir=/usr/libexec/proftpd'
'--localstatedir=/var/run/proftpd' '--disable-strip' '--enable-ctrls' '--enable-dso'
'--enable-facl' '--enable-ipv6' '--enable-nls' '--enable-shadow' '--with-lastlog'
'--with-libraries=/usr/lib/mysql' '--with-includes=/usr/include/mysql'
'--with-pkgconfig=lib/pkgconfig'
'--with-shared=mod_auth_pam:mod_ban:mod_ctrls_admin:mod_exec:mod_facl:mod_load:mod_quotatab:mod_quotatab_file:mod_quotatab_radius:mod_quotatab_sql:mod_radius:mod_ratio:mod_readme:mod_rewrite:mod_shaper:mod_site_misc:mod_sql:mod_wrap2:mod_wrap2_file:mod_wrap2_sql:mod_sql_postgres:mod_ifsession'
'build_alias=i686-redhat-linux-gnu' 'host_alias=i686-redhat-linux-gnu'
'target_alias=i386-redhat-linux' 'CFLAGS=-O2 -g -m32 -march=i386 -mtune=generic
-fasynchronous-unwind-tables' 'CXXFLAGS=-O2 -g -m32 -march=i386 -mtune=generic -fasynchronous-unwind-tables'

  CFLAGS: -O2 -g -m32 -march=i386 -mtune=generic -fasynchronous-unwind-tables -Wall
  LDFLAGS: -L$(top_srcdir)/lib  -L/usr/lib/mysql -L/usr/lib
  LIBS: -lacl  -lcap -lsupp -lcrypt -ldl

  Files:
    Configuration File:
      /etc/proftpd.conf
    Pid File:
      /var/run/proftpd/proftpd.pid
    Scoreboard File:
      /var/run/proftpd/proftpd.scoreboard
    Header Directory:
      /usr/include/proftpd
    Shared Module Directory:
      /usr/libexec/proftpd

  Features:
    - Autoshadow support
    + Controls support
    + curses support
    - Developer support
    + DSO support
    + IPv6 support
    + Largefile support
    + Lastlog support
    - Memcache support
    + ncursesw support
    + NLS support
    - OpenSSL support
    - PCRE support
    + POSIX ACL support
    + Shadow file support
    + Sendfile support
    + Trace support

  Tunable Options:
    PR_TUNABLE_BUFFER_SIZE = 1024
    PR_TUNABLE_DEFAULT_RCVBUFSZ = 8192
    PR_TUNABLE_DEFAULT_SNDBUFSZ = 8192
    PR_TUNABLE_GLOBBING_MAX_MATCHES = 100000
    PR_TUNABLE_GLOBBING_MAX_RECURSION = 8
    PR_TUNABLE_HASH_TABLE_SIZE = 40
    PR_TUNABLE_NEW_POOL_SIZE = 512
    PR_TUNABLE_SCOREBOARD_BUFFER_SIZE = 80
    PR_TUNABLE_SCOREBOARD_SCRUB_TIMER = 30
    PR_TUNABLE_SELECT_TIMEOUT = 30
    PR_TUNABLE_TIMEOUTIDENT = 10
    PR_TUNABLE_TIMEOUTIDLE = 600
    PR_TUNABLE_TIMEOUTLINGER = 30
    PR_TUNABLE_TIMEOUTLOGIN = 300
    PR_TUNABLE_TIMEOUTNOXFER = 300
    PR_TUNABLE_TIMEOUTSTALLED = 3600
    PR_TUNABLE_XFER_SCOREBOARD_UPDATES = 10

%
------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions
Find What Matters Most in Your Big Data with HPCC Systems
Open Source. Fast. Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

TJ Saunders | 30 May 17:40 2014

[Proftpd-user] On holiday for two weeks (May 31 - Jun 15)


Just wanted to let folks know that I'm going to be on holiday, starting 
May 31 and returning on June 15.  In that time, I hope to have 
little-to-no access to the Internet.  Apologies in advance for any urgent 
queries/bugs to which there's a delayed response -- I'll deal with emails 
and such when I get back.

Cheers,
TJ

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

   The reasonable man adapts himself to the world: the unreasonable
   man persists in trying to adapt the world to himself.  Therefore
   all progress depends on the unreasonable man.

   	-George Bernard Shaw

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

------------------------------------------------------------------------------
Time is money. Stop wasting it! Get your web API in 5 minutes.
www.restlet.com/download
http://p.sf.net/sfu/restlet
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Dieter Bloms | 30 May 11:38 2014
Picon

[Proftpd-user] SQLLog QUIT works for ftp, but not for sftp sessions

Hello,

I've defined an SQLLog statement like:

SQLLog                  QUIT finishedtransfer
SQLNamedQuery           finishedtransfer FREEFORM "UPDATE ..."

it is executed when I logout from a ftp session, but when I logout from
a sftp session it will not be executed.

>From rfc913 (sftp protocol) I know, that sftp finished the session with
DONE instead of QUIT.

So I inserted a line like

SQLLog                  DONE finishedtransfer
SQLNamedQuery           finishedtransfer FREEFORM "UPDATE ..."

but this SQL statement will not be executed after a logout from a sftp
session.

I don't want to use the EXIT here, because then the SQL statement will
be executed everytime the session ends, even when the session terminates
from an error.
I want to execute the SQL statement on real logouts, only.

So what is the right SQLLog command for sftp, when it should only be
executed, when the user logouts ?

Thank you for a hint!

-- 
Regards

  Dieter

--
I do not get viruses because I do not use MS software.
If you use Outlook then please do not put my email address in your
address-book so that WHEN you get a virus it won't use my address in the
>From field.

------------------------------------------------------------------------------
Time is money. Stop wasting it! Get your web API in 5 minutes.
www.restlet.com/download
http://p.sf.net/sfu/restlet
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html

Ydenda | 24 May 23:38 2014
Picon

[Proftpd-user] SQLShowInfo and SFTP

Hello everyone,

 

I was trying to get SQLShowInfo working together with SFTP, but without success.

I want to display quota information, but it seems not to be able to work in this way.

 

Quota and SQLShowInfo works well with FTP, but I prefer SFTP instead of unsecured file transfer.

 

Normally I would like to inform user about quota change after uploading file. Or deleting file.

Is it possible to display for example current quota usage to SFTP user in his client?

 

Thank you, Ydenda.

 

 

------------------------------------------------------------------------------
"Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE
Instantly run your Selenium tests across 300+ browser/OS combos.
Get unparalleled scalability from the best Selenium testing platform available
Simple to use. Nothing to install. Get started now for free."
http://p.sf.net/sfu/SauceLabs
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html
TJ Saunders | 24 May 22:25 2014

Re: [Proftpd-user] proftpd 1.3.4d question


On Thu, May 22, 2014, at 11:09, Maarten Broekman wrote:
> Sounds good.

FYI, I've filed a bug report for tracking this:

  http://bugs.proftpd.org/show_bug.cgi?id=4063

Please add yourself to the CC list there to be notified of patches,
progress, etc.

Thanks!
TJ

------------------------------------------------------------------------------
"Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE
Instantly run your Selenium tests across 300+ browser/OS combos.
Get unparalleled scalability from the best Selenium testing platform available
Simple to use. Nothing to install. Get started now for free."
http://p.sf.net/sfu/SauceLabs
_______________________________________________
ProFTPD Users List   <proftpd-users <at> proftpd.org>
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html


Gmane