From owner-freebsd-questions Sat Sep 29 11:20:14 2001 Delivered-To: freebsd-questions@freebsd.org Received: from klima.physik.uni-mainz.de (klima.Physik.Uni-Mainz.DE [134.93.180.162]) by hub.freebsd.org (Postfix) with ESMTP id E931A37B40F; Sat, 29 Sep 2001 11:19:57 -0700 (PDT) Received: from klima.Physik.Uni-Mainz.DE (klima.Physik.Uni-Mainz.DE [134.93.180.162]) by klima.physik.uni-mainz.de (8.11.6/8.11.4) with ESMTP id f8TIJu505648; Sat, 29 Sep 2001 20:19:56 +0200 (CEST) (envelope-from ohartman@klima.physik.uni-mainz.de) Date: Sat, 29 Sep 2001 20:19:56 +0200 (CEST) From: "Hartmann, O." To: Cc: Subject: FBSD4.4/OPIE/WU-FTP fucked up! Message-ID: <20010929200310.P5492-100000@klima.physik.uni-mainz.de> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Sorry for my harsh words ... but if you could see my face and guess how I loose hairs ... it's saturday evening and no solution ... Yesterday I did one of my 'favourite' cvsupdates into the newest stuff of FBSD 4.4-STABLE. At this time I saw that wu-ftpd port has been updated to subrevision three and I thought this might could be a security leak to be closed by the ports management. I compiled and installed wu-ftpd and fell into serious trouble. When installing wu-ftpd from the ports, each real user who tries to log in gets a message with 331 Response to otp-md5 452 ma4991 ext required for ohartman. and this seems to me to be familiar with OPIE. But we never set up OPIE around here! I tried to compile wu-ftp by hand with only pam support and that works, users can log in. But the trouble is still present. We use one user that logs in within our small LAN onto a very restricted account (.profile is owned by root:wheel and immutable bit set and starts up a restricted bash within this account) to drop data taken from a scientific measurement by ftp. Bevor doing the update both in FBSD and wu-ftpd that worked fine the last 4 months since we set it up. But with the home-brewn- compiled wu-ftpd this user could log in - but is not allowed to overwrite the existing files! I fiddled around with the ftpaccess config file, checked the -a option and all these things, nothing, it is always the same. with the port's installation there is no login possible, with the own compiled wu-ftpd there is a login possible, but not for rhis particular user which needs to overwrite a accumulating file ... Due the fact the wu-ftp sources did not change I think something changed in FreeBSD 4.3 to 4.4 and especially FreeBSD 4.4-STABLE that targets login authentication. Can anyone give a hint or a tip? I would appreciate each help or tip I could get. Last time I had such trouble we searched for two months for a problem with ftp and login and I have had to find out that the existence of the skey.access file influences the login behaviour. At the moment I use the FreeBSD built in ftpd daemon, but this ftpd gives not enough restriction facilities we need (ftp is used only within the LAN and my clients (humans) are very slow using newer techniques, reagrding ssh or similar ... and think of the lots of stupid windows users ...). -- MfG O. Hartmann ohartman@klima.physik.uni-mainz.de ---------------------------------------------------------------- IT-Administration des Institutes fuer Physik der Atmosphaere (IPA) ---------------------------------------------------------------- Johannes Gutenberg Universitaet Mainz Becherweg 21 55099 Mainz Tel: +496131/3924662 (Maschinenraum) Tel: +496131/3924144 FAX: +496131/3923532 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message