I cant ftp as root

binary_0011 · 07-27-2006, 11:41 PM

it is very stange isn't it? I can ftp as other account ( andy, henson, peter..etc..) , I can ftp as anonymous. But I cant ftp as root.

is there anything i can check?

Thanks.

xode · 07-27-2006, 11:50 PM

If I remember correctly, at least some linuxes will not allow ftp as root for security reasons.

sambyte · 07-28-2006, 12:49 AM

the security measures are such that root cannot ftp by default

to change the setting open the file vi /etc/vsftpd.ftpusers

and see that root is included in that list. this file only blocks access to ftp daemon . so in order to enable root to ftp simply remove root from that file and check ...

binary_0011 · 07-28-2006, 01:31 AM

Quote:

Originally Posted by sambyte

the security measures are such that root cannot ftp by default

to change the setting open the file vi /etc/vsftpd.ftpusers

and see that root is included in that list. this file only blocks access to ftp daemon . so in order to enable root to ftp simply remove root from that file and check ...

did that. i also did a service vsftpd restart , it still doesn't work.

i wasn't even prompt with a password and it said denied :

C:\Documents and Settings\myhost.somthing>ftp 198.123.218.127
Connected to 198.123.218.127.
220 (vsFTPd 2.0.1)
User (16.149.218.127

none)): root
530 Permission denied.
Login failed.

sambyte · 07-28-2006, 05:00 AM

Hello,

ALso check the file /etc/shells ,your shell must be listed in /etc/shells.
But by the look of it seems that the option userlist_deny=YES is set in the /etc/vsftpd/vsftpd.conf file. remove that entry from that file and check

hope this helps

b0uncer · 07-28-2006, 05:10 AM

Why on earth would you want to ftp as root? Creating a new user for ftp'ing stuff, and perhaps a script for chmod'ing the needed files OR using a special group for accessing them does not take long, but adds to the security. Remember that ftp is not a secure protocol, and if you allow root ftp, then you actually allow anybody who gets to know the root password, to ftp-download your whole system. OR put some nifty rootkits on your machine, compromizing it completely without you even knowing it. Sounds nice? And I can tell you, stealing a root password is not even difficult, especially if your system's security is overall as low as in this case.

Root account should be used just and only for maintenance. sudo can be used, restricted, to grant the needed rights for needed users, and groups and file permissions can be used to achieve the needed freedom for stuff like ftp.

I really really hope you aren't really going to let root do ftp. Really.

binary_0011 · 07-30-2006, 09:42 PM

Quote:

Originally Posted by b0uncer

Why on earth would you want to ftp as root?

dont worry, this is not a production server. I just wanted to test something on this server before moving it to production.

binary_0011 · 07-30-2006, 10:38 PM

i can ftp as root now. But i can only access my home drive and above. How do I access etc , var folder and etc?

Thanks.

sambyte · 07-30-2006, 11:48 PM

hello,
use the command like lcd /home/, /var etc.....
it will take you to your other directories....

cd changes the directory in the server whereas lcd changes the directory in your local machine....

bye