vsFTPd 530 Permission denied external login
Hi folks,
I have installed and configured vsFTPd on my fedora 14 server. When I connect to in through my local network everything works just fine. The problems occurs when I connect through the internet. When I use an computer that is outside my local network, for example a friends computer, I get the following: Quote:
Is there anyone who can help me? |
@ Reply
It appears to me that as soon as you login it is trying to change the directory to default but it is unable to do so.
Paste your vsftpd.conf file and selinux status. To get selinux status and booleans for ftp type the following commands: Code:
setstatus Code:
getsebool -a | grep ftp |
Below the requested information:
Response by getsebool -a | grep ftp: Code:
allow_ftpd_anon_write --> off Code:
SELinux status: enabled Code:
# Config file /etc/vsftpd/vsftpd.conf |
@ Reply
Is there anything in your iptables that is denying any external users to connect?
Try to access the ftp server externally and once it fails paste the output of the following command: Code:
tail /var/log/messages |
tail /var/logs/messages gives me the following:
Code:
Oct 13 23:46:29 server setroubleshoot: SELinux is preventing the http daemon from reading users' home directories. For complete SELinux messages. run sealert -l 96babc23-afb4-4773-b1ac-5a5482cf4bb9 I still have the same problem. Where can I view the iptables? |
@ Reply
Try this, turn on the following boolean: httpd_enable_ftp_server
Following command will enable it: Code:
setsebool -P httpd_enable_ftp_server=on Restart vsftpd service and then give it a try. You can check the iptables using the following command: Code:
service iptables status Code:
cat /etc/iptables |
I dit the command you said and below is the result. There is no chance.
Code:
[root@server /]# getsebool -a | grep httpd Code:
[root@server /]# service iptables status |
@ Reply
Sorry the syntax will be
Code:
setsebool -P httpd_enable_ftp_server on To stop iptables: Code:
service iptables stop Code:
service iptables start |
Okay. I disabled iptables and restarted the ftp server. This did not solve the problem.
|
@ Reply
Alright. The best way that I can think now to track down the issue is to take a tcp dump. If you are trying to FTP this machine externally via Windows you can use Wireshark tool. If you are trying to FTP this machine externally via linux then you can use tcpdump.
|
Try putting /bin/bash in /etc/shells file. It states in the /etc/shells file that ftp daemons require a listing of shells to be in this file.
|
if you're trying to connect as root try this, /etc/vsftpd/ftpusers and ect/vsftpd/users_list and comment out root... this worked for me
|
@ Reply
Hi dthaler and oppiet30,
OP didn't respond after 14th Ocotober' 2011. I would say it is pointless to post a reply on a thread which has been inactive for last 2 months. Posting in a dead thread is useless as it generates an unnecessary email notification to all people who are subscribed to this thread. |
All times are GMT -5. The time now is 10:25 AM. |