Hi folks, I can't seem to log into my system via vsftpd. All other services using PAM are fine...Am I missing something simple? ftp> user (username) user 331 Please specify the password. Password: 530 Login incorrect. # getenforce Permissive here is the event in /var/log/audit/audit.log: type=USER_AUTH msg=audit(1247235151.569:9781): user pid=21052 uid=0 auid=0 subj=root:system_r:ftpd_t:s0 msg='PAM: authentication acct="user" : exe="/usr/sbin/vsftpd" (hostname=hostname, addr=1.2.3.4, terminal=ftp res=failed)' cat /etc/pam.d/vsftpd #%PAM-1.0 session optional pam_keyinit.so force revoke auth required pam_listfile.so item=user sense=deny file=/etc/vsftpd/ftpusers onerr=succeed auth required pam_shells.so auth include system-auth account include system-auth session include system-auth session required pam_loginuid.so # grep local /etc/vsftpd/vsftpd.conf local_enable=YES local_umask=022 chroot_local_user=YES # getsebool -a | grep ftp allow_ftpd_anon_write --> off allow_ftpd_full_access --> off allow_ftpd_use_cifs --> off allow_ftpd_use_nfs --> off allow_tftp_anon_write --> off ftp_home_dir --> on ftpd_disable_trans --> off ftpd_is_daemon --> on httpd_enable_ftp_server --> off tftpd_disable_trans --> off -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20090710/95b57cfd/attachment-0003.html>
On Fri, Jul 10, 2009 at 3:17 PM, Eugene Vilensky<evilensky at gmail.com> wrote:> Hi folks, > I can't seem to log into my system via > vsftpd.??All?other?services?using?PAM?are?fine...Am?I?missing?something?simple? > ftp> user > (username) user > 331 Please specify the password. > Password: > 530 Login incorrect. > > > # getenforce > Permissive > here?is?the?event?in?/var/log/audit/audit.log: > type=USER_AUTH msg=audit(1247235151.569:9781): user pid=21052 uid=0 auid=0 > subj=root:system_r:ftpd_t:s0 msg='PAM: authentication acct="user" : > exe="/usr/sbin/vsftpd" (hostname=hostname, addr=1.2.3.4, terminal=ftp > res=failed)' > ?cat /etc/pam.d/vsftpd > #%PAM-1.0 > session ? ?optional ? ? pam_keyinit.so ? ?force revoke > auth ? ? ? required pam_listfile.so item=user sense=deny > file=/etc/vsftpd/ftpusers onerr=succeed > auth ? ? ? required pam_shells.so > auth ? ? ? include system-auth > account ? ?include system-auth > session ? ?include system-auth > session ? ?required ? ? pam_loginuid.so > # grep local /etc/vsftpd/vsftpd.conf > local_enable=YES > local_umask=022 > chroot_local_user=YES > # getsebool -a | grep ftp > allow_ftpd_anon_write --> off > allow_ftpd_full_access --> off > allow_ftpd_use_cifs --> off > allow_ftpd_use_nfs --> off > allow_tftp_anon_write --> off > ftp_home_dir --> on > ftpd_disable_trans --> off > ftpd_is_daemon --> on > httpd_enable_ftp_server --> off > tftpd_disable_trans --> off > > > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos > >Is the user's shell listed in /etc/shells?
Possibly Parallel Threads
- SELinux and SETroubleshootd woes in CR
- Update for HowTo: Chroot vsftpd with non-system users
- How to have more than on SELinux context on a directory
- How to have more than on SELinux context on a directory
- How to have more than on SELinux context on a directory