LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 04-18-2004, 07:30 PM   #1
Morg666
LQ Newbie
 
Registered: Apr 2004
Posts: 4

Rep: Reputation: 0
ftp + root


Hi everybody,

It's a little bit odd, by I got my reasons. I would like to log in through ftp like a root, but that is disabled and I don't know, how to permit it. I'm know, it's a huge security risk, anyway, I'd like to know it, if possible.

Thank you
 
Old 04-19-2004, 12:42 AM   #2
Inexactitude
Member
 
Registered: Oct 2003
Distribution: Slackware 12.2, Ubuntu 9.04
Posts: 477

Rep: Reputation: 30
Well, it depends on what ftp server you're using. In proftpd, there is some kind permitrootlogin directive in the conf file. Tell us what server you're using, and then I can go see if I can help you out. And by the way, this really isn't recommended, because passwords are sent across the network plain text.
 
Old 04-19-2004, 10:57 AM   #3
Morg666
LQ Newbie
 
Registered: Apr 2004
Posts: 4

Original Poster
Rep: Reputation: 0
Yes, I'm using proftpd server. I have edited the config file, but I cannot find such option like permitrootlogin. Shall I add it there? Well, I'm hoping, you mean the same config file which I do. /etc/proftpd.conf
 
Old 04-19-2004, 04:41 PM   #4
Inexactitude
Member
 
Registered: Oct 2003
Distribution: Slackware 12.2, Ubuntu 9.04
Posts: 477

Rep: Reputation: 30
IN the proftpd.conf file, right below "UseFtpUsers" is the RootLogin directive. So just put RottLogin yes in the file, and you should be set.
 
Old 04-19-2004, 06:56 PM   #5
Morg666
LQ Newbie
 
Registered: Apr 2004
Posts: 4

Original Poster
Rep: Reputation: 0
There is nowhere in the config file "UseFtpUsers". Can you be more specific?
 
Old 04-19-2004, 09:11 PM   #6
Inexactitude
Member
 
Registered: Oct 2003
Distribution: Slackware 12.2, Ubuntu 9.04
Posts: 477

Rep: Reputation: 30
Well, that's strange, maybe it''s just something I put in. Anyway, what use the find feature in your text editor to search for RootLogin. In the case that it isn't there, I guess you could just add RootLogin yes to your proftpd.conf file. Also, maybe you can post your conf file, becuase if you don't have an FtpUsers directive in your conf file, you may have a few more problems, like no default root.
 
Old 04-20-2004, 06:32 AM   #7
Morg666
LQ Newbie
 
Registered: Apr 2004
Posts: 4

Original Poster
Rep: Reputation: 0
Ok, here is the config file. Just adding it somewhere doesn't help. I hope you can find a better solution:

# This is a basic ProFTPD configuration file.
# It establishes a single server and a single anonymous login.
# It assumes that you have a user/group "nobody" and "ftp"
# for normal/anonymous operation.

ServerName "ProFTPD Default Installation"
#ServerType standalone
ServerType inetd
DefaultServer on

# Port 21 is the standard FTP port.
Port 21
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022

# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 30

# Set the user and group that the server normally runs at.
User nobody
Group nogroup

# This next option is required for NIS or NIS+ to work properly:
#PersistentPasswd off

SystemLog /var/log/proftpd.log
TransferLog /var/log/xferlog

# Normally, we want files to be overwriteable.
<Directory /*>
AllowOverwrite on
</Directory>

# A basic anonymous FTP server configuration.
# To enable this, remove the user ftp from /etc/ftpusers.
<Anonymous /root/public/ftp>
RequireValidShell off
User ftp
Group ftp
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous ftp

# Limit the maximum number of anonymous logins
MaxClients 50

# We want 'welcome.msg' displayed at login, and '.message' displayed
# in each newly chdired directory.
DisplayLogin welcome.msg
DisplayFirstChdir .message

# Limit WRITE everywhere in the anonymous chroot
<Limit WRITE>
DenyAll
</Limit>

# An upload directory that allows storing files but not retrieving
# or creating directories.
<Directory upload/*>
<Limit WRITE>
AllowAll
</Limit>
AllowOverwrite on
</Directory>

</Anonymous>
 
Old 04-20-2004, 06:19 PM   #8
Inexactitude
Member
 
Registered: Oct 2003
Distribution: Slackware 12.2, Ubuntu 9.04
Posts: 477

Rep: Reputation: 30
Okay, I didn't know we were dealing with anonymous ftp here. Anyway, after the </anonymous>, add <Global>. Inside this tag, put RootLogin on, and then close it with </Global>.

Hopefully, this will finally do the trick. Good luck.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
can't ftp as root to mandrake 10 burns1000 Linux - Software 4 10-18-2004 04:02 PM
ftp to root rixride00 Linux - Newbie 7 04-02-2004 04:05 PM
ftp as root lenlutz Red Hat 3 02-18-2004 05:08 PM
VSFTP....1 ftp root for all pmaxhammond Linux - Networking 2 10-30-2003 11:31 AM
WU-FTP root restriction atlantislim Linux - Security 6 09-05-2002 07:26 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 06:37 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration