LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices


Reply
  Search this Thread
Old 12-16-2010, 11:41 PM   #1
helcik
LQ Newbie
 
Registered: Dec 2010
Posts: 2

Rep: Reputation: 0
[solved] Slack 13.0 proftpd works only for anonymous


Fresh Slack 13.0 64bit with default proftpd installation allows to log-in the anononymous user only. All the shell users (having valid shell in /etc/passwd) are rejected. Anybody has an idea?

> proftdp -n -d5

dispatching PRE_CMD command 'PASS (hidden)' to mod_tls
dispatching PRE_CMD command 'PASS (hidden)' to mod_core
dispatching PRE_CMD command 'PASS (hidden)' to mod_core
dispatching PRE_CMD command 'PASS (hidden)' to mod_wrap
dispatching PRE_CMD command 'PASS (hidden)' to mod_delay
dispatching PRE_CMD command 'PASS (hidden)' to mod_auth
dispatching CMD command 'PASS (hidden)' to mod_auth
USER test (Login failed): Incorrect password.

Last edited by helcik; 02-07-2011 at 04:40 PM.
 
Click here to see the post LQ members have rated as the most helpful post in this thread.
Old 12-17-2010, 01:05 AM   #2
paulsm4
LQ Guru
 
Registered: Mar 2004
Distribution: SusE 8.2
Posts: 5,863
Blog Entries: 1

Rep: Reputation: Disabled
Check out this link:
http://www.proftpd.org/docs/howto/Authentication.html

And this link:
Quote:
http://www.proftpd.org/docs/faq/faq_full.html#AEN267

1. Why is PAM the default authentication system?

Security, pure and simple. PAM is the most secure (or securable) of the available authentication systems. Many of the issues and configuration hints for PAM are contained in README.PAM which is bundled with the server source and in the various packaged builds. To use /etc/passwd manual compilation will be required with the configure script being run with the --without-pam flag. Unless the PAM subsystem is properly configured authentication will fail.
Bottom line: Make sure mod_auth_unix is enabled.

'Hope that helps
 
Old 12-17-2010, 11:13 AM   #3
volkerdi
Slackware Maintainer
 
Registered: Dec 2002
Location: Minnesota
Distribution: Slackware! :-)
Posts: 2,465

Rep: Reputation: 8373Reputation: 8373Reputation: 8373Reputation: 8373Reputation: 8373Reputation: 8373Reputation: 8373Reputation: 8373Reputation: 8373Reputation: 8373Reputation: 8373
Can someone run a poll about removing ProFTPD from Slackware?

It's been one security hole after another, all while the extremely high-quality vsftpd is right there, waiting to be used. And then there's stuff like this. Which "point release" introduced this breakage?

My suggestion: forget about mod_auth_unix with ProFTPD and use vsftpd instead.
 
3 members found this post helpful.
Old 12-17-2010, 05:16 PM   #4
willysr
Senior Member
 
Registered: Jul 2004
Location: Jogja, Indonesia
Distribution: Slackware-Current
Posts: 4,651

Rep: Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772
It's now running on my SlackBlogs

I hope people will give their votes there

Last edited by willysr; 12-17-2010 at 05:26 PM. Reason: The poll is now running
 
Old 12-17-2010, 07:53 PM   #5
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
Quote:
Originally Posted by volkerdi View Post
use vsftpd instead.
As the score right now is ProFTPd: 35 - VsFTPd: 8 that makes sense.
 
Old 12-18-2010, 03:07 AM   #6
bathory
LQ Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,159
Blog Entries: 1

Rep: Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021Reputation: 2021
Quote:
Originally Posted by unSpawn View Post
As the score right now is ProFTPd: 35 - VsFTPd: 8 that makes sense.
Why not pure-ftpd?
Score:
ProFTPd: 35 - VsFTPd: 8 - Pure-FTPd: 1

Regards

Last edited by bathory; 12-18-2010 at 03:18 AM.
 
Old 12-18-2010, 07:00 AM   #7
rg3
Member
 
Registered: Jul 2007
Distribution: Fedora
Posts: 527

Rep: Reputation: Disabled
If possible, instead of simply removing ProFTPD and leave only vsftpd, I'd replace ProFTPD with Pure-FTPd. I've used it in the past. It's very easy to use, it lets you have virtual users without PAM and has a lot of good features. My 2 cents.
 
Old 12-18-2010, 07:11 AM   #8
mRgOBLIN
Slackware Contributor
 
Registered: Jun 2002
Location: New Zealand
Distribution: Slackware
Posts: 999

Rep: Reputation: 231Reputation: 231Reputation: 231
I've been using pure-ftpd for several years too so I'm with rg3 on this one.
 
Old 12-18-2010, 07:52 AM   #9
Petri Kaukasoina
Senior Member
 
Registered: Mar 2007
Posts: 1,730

Rep: Reputation: 1411Reputation: 1411Reputation: 1411Reputation: 1411Reputation: 1411Reputation: 1411Reputation: 1411Reputation: 1411Reputation: 1411Reputation: 1411
Quote:
Originally Posted by unSpawn View Post
As the score right now is ProFTPd: 35 - VsFTPd: 8 that makes sense.
Your keyword search for vsftpd gives 8 vulnerabilities. Some of them are problems not in vsftpd but in some third party utilities like webmin or blockhosts, some are RedHat specific. The real vsftpd problems are denial of service type and one (from 2004) allowed remote user verify valid usernames.

On the other hand, you found lots of severe ProFTPD vulnerabilities allowing remote attackers execute arbitrary code.
 
Old 12-20-2010, 10:57 AM   #10
guanx
Senior Member
 
Registered: Dec 2008
Posts: 1,172

Rep: Reputation: 227Reputation: 227Reputation: 227
Quote:
Originally Posted by volkerdi View Post
Can someone run a poll about removing ProFTPD from Slackware?

It's been one security hole after another, all while the extremely high-quality vsftpd is right there, waiting to be used. And then there's stuff like this. Which "point release" introduced this breakage?

My suggestion: forget about mod_auth_unix with ProFTPD and use vsftpd instead.
From functionality -- prefer proftpd over vsftpd
From security -- prefer sftp over ftp; prefer strict firewall over no firewall

So, no reason to replace proftpd with vsftpd now. (I run service only within organizations, not globally.)
 
Old 12-20-2010, 11:44 AM   #11
sahko
Senior Member
 
Registered: Sep 2008
Distribution: Slackware
Posts: 1,041

Rep: Reputation: Disabled
Quote:
Originally Posted by bathory View Post
Why not pure-ftpd?
Score:
ProFTPd: 35 - VsFTPd: 8 - Pure-FTPd: 1

Regards
Bftpd: 5
 
Old 12-22-2010, 11:17 PM   #12
MadMaverick9
Member
 
Registered: Aug 2010
Posts: 353
Blog Entries: 4

Rep: Reputation: Disabled
To put this thread back on topic:

On my default 13.1 system I simply uncommented proftpd in "/etc/inetd.conf" and I was able to login as any shell user, except for "root", because "root" is listed in "/etc/ftpusers".

It seems that the user helcik is starting proftpd in a non-default way "> proftdp -n -d5"; I don't see a "root" prompt "#", so that may well be the cause of the problem.
 
Old 12-31-2010, 05:49 PM   #13
tallship
Member
 
Registered: Jul 2003
Location: On the Beaches of Super Sunny Southern San Clemente, California USA
Distribution: Slackware - duh!
Posts: 534
Blog Entries: 3

Rep: Reputation: 118Reputation: 118
Exclamation Two sucky polls that don't accurately address the man's question...

Quote:
Originally Posted by mRgOBLIN View Post
I've been using pure-ftpd for several years too so I'm with rg3 on this one.
Man, what a sucky poll!

That's not even what Patrick asked us to put up. Neither poll (Willy's being the other one) addresses Patrick's request in the spirit he asked it, IMO.

Pat asked if someone could put up a poll asking if vsftpd should be the daemon to replace proftpd.

Like @mRgOBLIN, @rg3, and @bathory, I like [and would actually prefer] pure-ftpd too [over that of vsftpd]. That having been said, I like proftpd as well, but that's just because of config related points.

If we're having issues with it - over and over and over again - then perhaps, as Patrick suggests, it's time for a change of guard.

I'm going to run whichever daemon best suits my needs at the time, because I'm a Slacker, and I have choices, but wrt the defaults upon install, vsftpd might as well be the new black (or is that the new blue or red?).

I would really have liked it if the two polls reflected Pat's question the way he posed it, instead of just asking - should we ditch proftpd?

That might lead some people to surmise that Slackware is removing an ftp server as part of a default install (at least one person thought so HERE).

As others have posted as well, I like sftp, although that really isn't even ftp, and to reiterate what I said above again, I use whichever fits my needs, or the needs of my clients, at the moment anyway.

Okay I voted in both polls, and I'm all for ditching proftpd as the default, and as at least one other person in these threads has asked of us, I'm also offering why.

Thanks Pat, for asking (Even though most of us are going to weigh in very heavily on the side of what your personal preferences are anyway

Well Pat, I hope that my input on the matter helps.

Kindest regards,

Last edited by tallship; 12-31-2010 at 06:10 PM. Reason: fix grammar
 
Old 01-01-2011, 12:57 AM   #14
T3slider
Senior Member
 
Registered: Jul 2007
Distribution: Slackware64-14.1
Posts: 2,367

Rep: Reputation: 843Reputation: 843Reputation: 843Reputation: 843Reputation: 843Reputation: 843Reputation: 843
Er...wasn't the point to remove proftpd from a default install so Pat wouldn't have to keep up with the many security patches? There is no 'default' FTP server in Slackware...both servers are commented out in /etc/inetd.conf and vsftpd is actually placed first...so if the question involved merely setting vsftpd as the default FTP server, then what about the current installation would change? Provided that people are aware that Slackware currently ships with two FTP servers, I think the polls are fine.
 
Old 01-01-2011, 02:00 AM   #15
mRgOBLIN
Slackware Contributor
 
Registered: Jun 2002
Location: New Zealand
Distribution: Slackware
Posts: 999

Rep: Reputation: 231Reputation: 231Reputation: 231
Although the removal of proftpd would make vsftpd the default by default. =)
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Proftpd + anonymous uploads Chrizzieej Linux - Software 0 01-21-2007 11:29 AM
anonymous proftpd gabsik Linux - Security 7 04-25-2006 07:57 PM
proftpd only works in standalone mode, not inetd mode (slack 10.2) yimboli Linux - Newbie 9 01-24-2006 12:49 PM
Proftpd Anonymous login sxp03m Red Hat 0 10-28-2003 06:55 AM
Anonymous ProFTPd access tisource Linux - Networking 2 03-04-2003 09:13 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 06:09 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration