From owner-freebsd-questions@FreeBSD.ORG Sun Nov 11 20:44:29 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 77C8616A419 for ; Sun, 11 Nov 2007 20:44:29 +0000 (UTC) (envelope-from beech@freebsd.org) Received: from freebsd.alaskaparadise.com (freebsd.alaskaparadise.com [208.79.80.117]) by mx1.freebsd.org (Postfix) with ESMTP id 34B6413C49D for ; Sun, 11 Nov 2007 20:44:28 +0000 (UTC) (envelope-from beech@freebsd.org) Received: from 137-42-178-69.gci.net (137-42-178-69.gci.net [69.178.42.137]) by freebsd.alaskaparadise.com (Postfix) with ESMTP id 065162383637; Sun, 11 Nov 2007 20:26:49 +0000 (UTC) From: Beech Rintoul To: freebsd-questions@freebsd.org Date: Sun, 11 Nov 2007 11:26:40 -0900 User-Agent: KMail/1.9.7 References: <31fbaca90711110424o51986759o9445fd367e7dca5b@mail.gmail.com> In-Reply-To: <31fbaca90711110424o51986759o9445fd367e7dca5b@mail.gmail.com> X-Face: jC2w\k*Q1\0DA2Q0Eh&BrP/Rt2M,^2O#R07VoT98m*>miQF9%Bi9vy`F6cPjwEe?m,)=?utf-8?q?2=0A=09X=3FM=5C=3AOE9QgZ?="xT3/n3,3MJ7N=Cfkmi%f(w^~X"SUxn>; 27NO; C+)g[7J`$G*SN>{<=?utf-8?q?O=3Bg7=7C=0A=09o=7D=265A=5D4?=@7D`=Eb@Zs1Ln814?]|k@'bG=.Ca"[|8+_.OsNAo8!#?4u MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200711111126.44437.beech@freebsd.org> Cc: Riccardo Giuntoli Subject: Re: FreeBSD pam.d proftpd problem X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Beech Rintoul List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Nov 2007 20:44:29 -0000 On Sunday 11 November 2007, Riccardo Giuntoli said: > Hi there, > > i use proftpd as my ftp solution in other three production servers > with no problem. Last week we buy out fourth server, and i started > to install and configure FreeBSD as usual. After upgrade the > sources and the ports i've got: > > [taglio@tsunami]/home/taglio(106): uname -a > FreeBSD tsunami.chroot.eu 6.3-PRERELEASE FreeBSD 6.3-PRERELEASE #0: > Fri Nov 9 12:15:54 EST 2007 > taglio@tsunami.chroot.eu:/usr/obj/usr/src/sys/TSUNAMI i386 > [taglio@tsunami ]/home/taglio(107): > > And i've installed proftpd: > > [taglio@tsunami]/home/taglio(107): proftpd -v > - ProFTPD Version 1.3.1 > [taglio@tsunami]/home/taglio(108): > > For an initial simple configuration with no vhosts i've edited > /usr/local/etc/proftpd.conf like this: > > [taglio@tsunami]/usr/local/etc(110): cat proftpd.conf > ServerName "Chroot tsunami hosting" > ServerType standalone > DefaultServer on > ScoreboardFile /var/run/proftpd.scoreboard > Port 21 > Umask 022 > MaxInstances 30 > User nobody > Group nogroup > DefaultRoot ~/www > AllowOverwrite on > > DenyAll > > TimeoutIdle 0 > TimeoutLinger 0 > TimeoutLogin 0 > TimeoutNoTransfer 0 > TimeoutSession 0 > TimeoutStalled 0 > [taglio@tsunami ]/usr/local/etc(111): > > and in /etc/pam.d/ftpd i've got this: > > [taglio@tsunami]/usr/local/etc(111): cat /etc/pam.d/ftpd > ftpd auth required pam_unix.so try_first_pass > ftpd account required pam_unix.so try_first_pass > ftpd session required pam_permit.so > [taglio@tsunami]/usr/local/etc(112): > > After checking syntax and have started the proftpd daemon i've got > this problem : > > [taglio@tsunami]/usr/local/etc(112): ftp localhost > Trying 127.0.0.1... > Connected to localhost.chroot.eu. > 421 Service not available, remote server has closed connection. > ftp> > > That i've got also on external interfaces. > > Can someone help me with some ideas? > > Thank you in advance, best regards, Riccardo Giuntoli Have you checked the following? FreeBSD ------- To use PAM with ProFTPD, you must edit /etc/pam.conf and add the following lines (if they are not already present): ftpd auth required pam_unix.so try_first_pass ftpd account required pam_unix.so try_first_pass ftpd session required pam_permit.so In your proftpd.conf, you'll need to set AuthPAMConfig to 'ftpd'. PAM authentication should now work properly. Beech -- --------------------------------------------------------------------------------------- Beech Rintoul - FreeBSD Developer - beech@FreeBSD.org /"\ ASCII Ribbon Campaign | FreeBSD Since 4.x \ / - NO HTML/RTF in e-mail | http://www.freebsd.org X - NO Word docs in e-mail | Latest Release: / \ - http://www.FreeBSD.org/releases/6.2R/announce.html ---------------------------------------------------------------------------------------