LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 02-13-2011, 09:38 PM   #1
quanta
Member
 
Registered: Aug 2007
Location: Vietnam
Distribution: RedHat based, Debian based, Slackware, Gentoo
Posts: 724

Rep: Reputation: 101Reputation: 101
proftpd: unable to open incoming connection: Transport endpoint is not connected?


Hi,

Sometime, I got the error messages as I mentioned in the subject:
Quote:
Feb 14 07:46:48 x proftpd[27487]: x - Fatal: unable to open incoming connection: Transport endpoint is not connected
I'm sure there are some clients connect to server at that time. What does this mean exactly? Why did it happen?

Below is my configuration file:
Code:
ServerName			"ProFTPD server"
ServerIdent			on "FTP Server ready."
ServerAdmin			root@localhost
DefaultServer			on

VRootEngine			on
DefaultRoot			~ !adm
VRootAlias			etc/security/pam_env.conf /etc/security/pam_env.conf

AuthPAMConfig			proftpd
AuthOrder			mod_auth_pam.c* mod_auth_unix.c

UseReverseDNS			off

User				nobody
Group				nobody

MaxInstances			20

UseSendfile			off

LogFormat default "٪h ٪l ٪u ٪t \"٪r\" ٪s ٪b"
LogFormat auth "٪v [٪P] ٪h ٪t \"٪r\" ٪s"
LogFormat write "٪h ٪l ٪u ٪t \"٪r\" ٪s ٪b"

TransferLog /var/log/proftpd/proftpd.xferlog
ExtendedLog /var/log/proftpd/proftpd.access_log WRITE,READ write
ExtendedLog /var/log/proftpd/proftpd.auth_log AUTH auth


<IfDefine TLS>
  TLSEngine			on
  TLSRequired			on
  TLSRSACertificateFile		/etc/pki/tls/certs/proftpd.pem
  TLSRSACertificateKeyFile	/etc/pki/tls/certs/proftpd.pem
  TLSCipherSuite		ALL:!ADH:!DES
  TLSOptions			NoCertRequest
  TLSVerifyClient		off
  TLSLog			/var/log/proftpd/tls.log
</IfDefine>

<IfDefine DYNAMIC_BAN_LISTS>
  LoadModule			mod_ban.c
  BanEngine			on
  BanLog			/var/log/proftpd/ban.log
  BanTable			/var/run/proftpd/ban.tab
  BanOnEvent			MaxLoginAttempts 2/00:10:00 01:00:00
  BanControlsACLs		all allow user ftpadm
</IfDefine>

<Global>
  Umask				022
  IdentLookups			off
  AllowOverwrite		yes
  <Limit ALL SITE_CHMOD>
    AllowAll
  </Limit>
</Global>

<IfDefine ANONYMOUS_FTP>
  <Anonymous ~ftp>
    User			ftp
    Group			ftp
    AccessGrantMsg		"Anonymous login ok, restrictions apply."
    UserAlias			anonymous ftp
    MaxClients			10 "Sorry, max %m users -- try again later"

    DisplayLogin		/welcome.msg
    DisplayChdir		.message
    DisplayReadme		README*

    DirFakeUser			on ftp
    DirFakeGroup		on ftp

    <Limit WRITE SITE_CHMOD>
      DenyAll
    </Limit>

    <Directory uploads/*>
      AllowOverwrite		no
      <Limit READ>
        DenyAll
      </Limit>

      <Limit STOR>
        AllowAll
      </Limit>
    </Directory>

    WtmpLog			off

   ExtendedLog			/var/log/proftpd/access.log WRITE,READ default
   ExtendedLog			/var/log/proftpd/auth.log AUTH auth
  </Anonymous>
</IfDefine>
 
Old 02-14-2011, 01:41 AM   #2
bathory
LQ Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,220
Blog Entries: 1

Rep: Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074
Hi,

At a first place you don't have a ServerType directive in proftpd.conf.
Also you miss the leading slash in the path of VRootAlias (/etc/security/pam_env.conf /etc/security/pam_env.conf)
And check the logs in /var/log to see if you find anything.

Regards
 
Old 02-14-2011, 06:13 AM   #3
quanta
Member
 
Registered: Aug 2007
Location: Vietnam
Distribution: RedHat based, Debian based, Slackware, Gentoo
Posts: 724

Original Poster
Rep: Reputation: 101Reputation: 101
Quote:
Originally Posted by bathory View Post
Hi,

At a first place you don't have a ServerType directive in proftpd.conf.
Although the docs on ProFTPD homepage said the ServerType directive is mandatory but I think there's no need to set in the configuration file. By default on CentOS, ProFTPD run in standalone mode.
Quote:
Originally Posted by bathory View Post
Also you miss the leading slash in the path of VRootAlias (/etc/security/pam_env.conf /etc/security/pam_env.conf)
That line is default in my configuration file.
Quote:
Originally Posted by bathory View Post
And check the logs in /var/log to see if you find anything.
There are no more details in auth_log, xferlog, ...

Last edited by quanta; 02-14-2011 at 06:16 AM.
 
Old 02-14-2011, 08:15 AM   #4
bathory
LQ Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,220
Blog Entries: 1

Rep: Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074Reputation: 2074
Yeah, by default proftpd is running standalone in centos, because it's started through the service command. You can however add the ServerType directive.
Regarding the VRootAlias, I guess you have an /etc/.. directory under the chroot dir.
As for the error, without logs it could be a script kiddie probing your ftp server.

Regards
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
System Log error: xinetd -Transport endpoint is not connected then Linux - General 2 01-02-2008 09:36 AM
getpeername failed. Error was Transport endpoint is not connected humbletech99 Linux - Networking 0 06-06-2006 01:47 PM
xinetd[25588]: warning: can't get client address: Transport endpoint is not connected Niceman2005 Linux - General 0 04-16-2006 10:12 PM
blastcl3- transport endpoint not connected?? help please lectrix Linux - Software 0 11-05-2003 11:14 AM
blastcl3: errno=107,Transport endpoint is not connected?? Help please. lectrix Linux - Networking 0 11-05-2003 10:25 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 07:11 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration