Timo Huebel | 1 Apr 20:57 2004
Picon

Server removes uploaded files

Hi,

since there is this "atomic uploads" feature in pure-ftpd, it sometimes 
removes the temporary-upload-file (this .pure-ftpdXXX thingy) when i 
shut down the server. is there i special way i have to shut down 
pure-ftpd so that this temp-file remains there? currently it simply gets 
killed when shutting down the whole machine.

Running pure-ftpd 1.0.18 on OpenBSD 3.4.

Bye,
Timo
Pollack, David | 1 Apr 21:32 2004

SSL/TLS problem

Hi - anytime I try to make an SSL/TLS connection to my pure-ftpd server,
using coreftp, I get the following errror:

 Apr  1 14:29:30 ftp pure-ftpd: (? <at> 198.31.57.6) [ERROR] SSL/TLS
[/etc/ssl/private/pure-ftpd.pem]: error:00000000:lib(0):func(0):reason(0)

The configure script:

  $ ./configure --with-tls --with-certfile=/etc/ssl/private/pure-ftpd.pem
--with-puredb --with-pam --with-quotas --with-throttling -
-with-virtualchroot --with-cookie --with-altlog

And the server starts up thru xinetd:

service ftps
{ 
    socket_type = stream 
    server = /usr/local/sbin/pure-ftpd 
    server_args = -A -C 10 -E -k 90 -s -u 100 -Y 2 -O
stats:/var/log/pureftpsd.log 
    protocol = tcp 
    user = root 
    wait = no
    disable = no 
}

Any assitance would be appreciated. 

thanks
(Continue reading)

gr.g | 1 Apr 21:24 2004
Picon

Directory listings with symbolic links

Hello,

I'm having a bit of trouble with FTP clients that read 'too much' into 
directory listings returned by PureFTPd when those listings contain 
symbolic links.

For example, the symbolic link...

lrwxrwxrwx    1 0        0              56 Feb 26 13:28 Kid Koala - 
Scratch Happyland -> /usr/music/mp3/Kid Koala - Scratch Happyland

is correctly followed when 'Good' FTP clients (I'm thinking of Panic's 
Transmit) make requests to go into the directory by issuing...

"CWD Kid Koala - Scratch Happyland"

My problem is with Windows' Explorer's built-in "FTP Explorer" and OS 
X's Finder similar function - they try to go into the 'real' 
/usr/music/ ... source folder, and as I am using pure-ftpd's chroot'ing 
functions, it inevitably fails.

Is there a way for PureFTPd to _only_ return the symbolic links' names, 
without using the additional, potentially confusing "-> real_dir" 
notation?

Thanks in advance!

Greg Sadetsky
Quebec City
(Continue reading)

Jedi/Sector One | 1 Apr 22:37 2004

Re: Server removes uploaded files

On Thu, Apr 01, 2004 at 08:57:26PM +0200, Timo Huebel wrote:
> since there is this "atomic uploads" feature in pure-ftpd, it sometimes 
> removes the temporary-upload-file (this .pure-ftpdXXX thingy) when i 
> shut down the server. is there i special way i have to shut down 
> pure-ftpd so that this temp-file remains there?

  There's an ugly way to do this : pkill -s 9 pure-ftpd

--

-- 
 __  /*-    Frank DENIS (Jedi/Sector One) <j at 42-Networks.Com>    -*\  __
 \ '/    <a href="http://www.PureFTPd.Org/"> Secure FTP Server </a>    \' /
  \/  <a href="http://www.Jedi.Claranet.Fr/"> Misc. free software </a>  \/
Jedi/Sector One | 1 Apr 22:41 2004

Re: Directory listings with symbolic links

On Thu, Apr 01, 2004 at 02:24:59PM -0500, gr.g wrote:
> Is there a way for PureFTPd to _only_ return the symbolic links' names, 
> without using the additional, potentially confusing "-> real_dir" 
> notation?

  The problem if you this, is that it will break almost every other client :)

  What if in a directory, you have a self link (".") called "pub" and then a
client tries to recursively fetch that directory? It will copy "pub" and
then recurse to "pub" and then recurse to "pub" and then recurse to "pub"
and then recurse to "pub" and then recurse to "pub"...

--

-- 
 __  /*-    Frank DENIS (Jedi/Sector One) <j at 42-Networks.Com>    -*\  __
 \ '/    <a href="http://www.PureFTPd.Org/"> Secure FTP Server </a>    \' /
  \/  <a href="http://www.Jedi.Claranet.Fr/"> Misc. free software </a>  \/
Jedi/Sector One | 1 Apr 22:42 2004

Re: SSL/TLS problem

On Thu, Apr 01, 2004 at 02:32:22PM -0500, Pollack, David wrote:
> Hi - anytime I try to make an SSL/TLS connection to my pure-ftpd server,
> using coreftp, I get the following errror:
>  Apr  1 14:29:30 ftp pure-ftpd: (? <at> 198.31.57.6) [ERROR] SSL/TLS
> [/etc/ssl/private/pure-ftpd.pem]: error:00000000:lib(0):func(0):reason(0)

  What does your pure-ftpd.pem file looks like?

--

-- 
 __  /*-    Frank DENIS (Jedi/Sector One) <j at 42-Networks.Com>    -*\  __
 \ '/    <a href="http://www.PureFTPd.Org/"> Secure FTP Server </a>    \' /
  \/  <a href="http://www.Jedi.Claranet.Fr/"> Misc. free software </a>  \/
Pollack, David | 1 Apr 22:47 2004

RE: SSL/TLS problem

think I found the answer.......

43. TLS and error 00000000.
My TLS-enabled client doesn't work. It outputs something like :
"SSL connect: error:00000000:lib(0):func(0):reason(0)". What does it mean?
This error is not very explicit. You get it from some Unix clients like
LFTP. It actually means that there is a
firewall or a NAT box between a TLS-enabled server and a TLS-enabled client,
but that firewall is unable to
handle encrypted FTP sessions. Unfortunately, there's no simple workaround
against this. Try to switch your
client to active mode and use 1:1 NAT, but SSL/TLS, firewalls and FTP don't
mix very well.

This is from a great pure-ftpd pdf file:

http://mirrors.sunsite.dk/pure-ftpd/doc/readme.pdf

Anyone have any experience setting up pure-ftpd/SSL/TLS behind a checkpoint
FW?
Pollack, David | 1 Apr 22:50 2004

RE: SSL/TLS problem

Pretty normal, I followed the pure-ftpd istructions verbatim

-----Original Message-----
From: Jedi/Sector One [mailto:j <at> pureftpd.org] 
Sent: Thursday, April 01, 2004 3:43 PM
To: list <at> pureftpd.org
Subject: Re: [pureftpd] SSL/TLS problem

On Thu, Apr 01, 2004 at 02:32:22PM -0500, Pollack, David wrote:
> Hi - anytime I try to make an SSL/TLS connection to my pure-ftpd 
> server, using coreftp, I get the following errror:
>  Apr  1 14:29:30 ftp pure-ftpd: (? <at> 198.31.57.6) [ERROR] SSL/TLS
> [/etc/ssl/private/pure-ftpd.pem]: 
> error:00000000:lib(0):func(0):reason(0)

  What does your pure-ftpd.pem file looks like?

--

-- 
 __  /*-    Frank DENIS (Jedi/Sector One) <j at 42-Networks.Com>    -*\  __
 \ '/    <a href="http://www.PureFTPd.Org/"> Secure FTP Server </a>    \' /
  \/  <a href="http://www.Jedi.Claranet.Fr/"> Misc. free software </a>  \/

---------------------------------------------------------------------
To unsubscribe, e-mail: list-unsubscribe <at> pureftpd.org For additional
commands, e-mail: list-help <at> pureftpd.org
Charlie Orford | 2 Apr 07:10 2004
Picon

Support for MySQL 4.1 (new PASSWORD method)

Hello list,
I have been using pure-ftpd (v1.0.18) with mysql 3.23 under Debian 3 
(woody) for some time now with no problems. I store my passwords in 
mysql's PASSWORD format (i.e. 16 char hash) and everything works fine.

Today I upgraded to mysql 4.1 and re-compiled pure-ftpd and now I can no 
longer get pure-ftpd to authenticate my users. I am using the exact same 
database as before and the same config for pure-ftpd. All that has 
changed is the mysql version.

Reading the mysql website it seems they have updated the PASSWORD 
function. It now generates a 41 char hash instead of a 16 char one. Does 
the current version of pure-ftpd work ok with this or will it only work 
with the older PASSWORD format i.e. 16 char hash?

If I change the pure-ftpd authentication mode from 'password' to 'md5' 
and change the password entries for my users to md5 hashes then 
pure-ftpd works fine (this is what I have done until I can find an 
answer as to whether or not pure-ftpd supports mysql's new PASSWORD format).

Thanks,
Charlie
Charlie Orford | 2 Apr 07:14 2004
Picon

Re: Support for MySQL 4.1 (new PASSWORD method)

I should also mention that I have tried changing the passwd column from 
varchar(16) to varchar(41) and updating the passwd entry for each user 
with a new hash calculated with the new mysql PASSWORD function.

Charlie

Gmane