Date: Mon, 20 Nov 2006 18:22:27 -0500 From: Kris Kennaway <kris@obsecurity.org> To: Paul Lathrop <plathrop@squaretrade.com> Cc: freebsd-questions@freebsd.org Subject: Re: FTP_PASSIVE_MODE stumper Message-ID: <20061120232227.GA50543@xor.obsecurity.org> In-Reply-To: <45623692.7040308@squaretrade.com> References: <45623692.7040308@squaretrade.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--VbJkn9YxBvnuCH5J Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Nov 20, 2006 at 03:13:22PM -0800, Paul Lathrop wrote: > I've been banging my head against this for 2 hours. >=20 > My network lives behind an OpenBSD firewall which uses ftp-proxy to=20 > allow active mode FTP connections out to the world. Unfortunately,=20 > passive mode FTP just does not work in our current firewall configuration. >=20 > I'm trying to install some ports on my shiny new FreeBSD 6.1 server.=20 > Unfortunately, the fetch operations time out because they are attempting= =20 > to use passive mode FTP. So, I consult the man pages and discover that=20 > fetch obeys the FTP_PASSIVE_MODE environment variable. I check the=20 > environment and see that FTP_PASSIVE_MODE=3DYES! Excellent! The fetch(3)= =20 > man page says I need to set this to 'no', so I do so and procedd to=20 > install... >=20 > Still times out. >=20 > Hrm. Okay, try 'NO'. No dice. Try removing it from login.conf, running=20 > cap_mkdb, and logging out then back in. Nope, that still doesn't do it.= =20 > Try *changing* it to NO in login.conf, running cap_mkdb, logging out and= =20 > back in. Nope. >=20 > Set it by hand in the shell. Nope. >=20 > Set it in /etc/make.conf. Still not working. >=20 > The only conclusion I can come to is that fetch does not, in fact, obey= =20 > this environment variable. No, it's being requested explicitly by bsd.port.mk in the fetch command line to deal with certain configurations that do not set the env variable. > So, how does one install software from ports in this environment? Override the FETCH_CMD variable in /etc/make.conf, see bsd.port.mk. Kris --VbJkn9YxBvnuCH5J Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQFFYjizWry0BWjoQKURAkO0AKDzrPcFnJHrp0FLM/I2NyrVej2B3wCeO/eP STsvBdwML03e1+eItK9eVKY= =RAAq -----END PGP SIGNATURE----- --VbJkn9YxBvnuCH5J--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061120232227.GA50543>