Tom Eastep
2002-Sep-23 15:01 UTC
[Shorewall-users] Blacklist and FTP Passive Mode - Continue
jgarcian@retevision.es wrote:> Res, > > I continued testing my FTP and don''t works correctly... 8( > > #ftp myserver.domain.com > Connected myserver.domain.com > 220- -= MYSERVER =- > 220-You are user number 2 of 5 allowed. > 220-Local time is now 16:46 and the load is 0.03. Server port: 21. > 220-This is a private system - No anonymous login > 220 You will be disconnected after 5 minutes of inactivity. > 500 Security extensions not implemented > 500 Security extensions not implemented > KERBEROS_V4 rejected as an authentication type > Name (myserver.domain.com:jordi): jordi > 331 User jordi OK. Password required > Password: > 230-Your bandwidth usage is restricted > 230-User jordi has group access to: ftp > 230 OK. Current restricted directory is / > Remote system type is UNIX.Now do the same thing after you turn on debugging here!!!! -Tom> Using binary mode to transfer files. > ftp> ls -l > 227 Entering Passive Mode (62,57,X,X,27,108) > 150 Accepted data connection > drwxr-xr-x 4 0 ftp 4096 Aug 11 20:49 Appz.Linux > drwxr-xr-x 17 0 ftp 8192 Aug 22 18:48 Appz.Windows > 226-Options: -l > 226 13 matches total > ftp> cd Appz.Linux > 250 OK. Current directory is /Appz.Linux > ftp> ls -l > 421 Service not available, remote server has closed connection > Passive mode refused. Turning off passive mode. > No control connection for command: Transport endpoint is not connected > > In my /var/log/messages only I see: > Sep 23 16:54:33 cosmos pure-ftpd: (jordi@mypc.domain.com) [INFO] Logout - > CPU time spent: 0.030 seconds. > > > Jordi > > > > La información incluida en el presente correo electrónico es CONFIDENCIAL, > siendo para el uso exclusivo del destinatario arriba mencionado. Si usted > lee este mensaje y no es el destinatario señalado, el empleado o el agente > responsable de entregar el mensaje al destinatario, o ha recibido esta > comunicación por error, le informamos que está totalmente prohibida > cualquier divulgación, distribución o reproducción de esta comunicación, y > le rogamos que nos lo notifique, nos devuelva el mensaje original a la > dirección arriba mencionada y borre el mensaje. > Gracias. > > > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@shorewall.net > http://www.shorewall.net/mailman/listinfo/shorewall-users-- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
jgarcian@retevision.es
2002-Sep-23 15:10 UTC
[Shorewall-users] Blacklist and FTP Passive Mode - Continue
Res,
I continued testing my FTP and don''t works correctly... 8(
#ftp myserver.domain.com
Connected myserver.domain.com
220- -=3D MYSERVER =3D-
220-You are user number 2 of 5 allowed.
220-Local time is now 16:46 and the load is 0.03. Server port: 21.
220-This is a private system - No anonymous login
220 You will be disconnected after 5 minutes of inactivity.
500 Security extensions not implemented
500 Security extensions not implemented
KERBEROS_V4 rejected as an authentication type
Name (myserver.domain.com:jordi): jordi
331 User jordi OK. Password required
Password:
230-Your bandwidth usage is restricted
230-User jordi has group access to: ftp
230 OK. Current restricted directory is /
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls -l
227 Entering Passive Mode (62,57,X,X,27,108)
150 Accepted data connection
drwxr-xr-x 4 0 ftp 4096 Aug 11 20:49 Appz.Linux
drwxr-xr-x 17 0 ftp 8192 Aug 22 18:48 Appz.Windows
226-Options: -l
226 13 matches total
ftp> cd Appz.Linux
250 OK. Current directory is /Appz.Linux
ftp> ls -l
421 Service not available, remote server has closed connection
Passive mode refused. Turning off passive mode.
No control connection for command: Transport endpoint is not connected
In my /var/log/messages only I see:
Sep 23 16:54:33 cosmos pure-ftpd: (jordi@mypc.domain.com) [INFO] Logout -
CPU time spent: 0.030 seconds.
Jordi
La informaci=F3n incluida en el presente correo electr=F3nico es CONFIDENCIAL,
siendo para el uso exclusivo del destinatario arriba mencionado. Si usted
lee este mensaje y no es el destinatario se=F1alado, el empleado o el agente
responsable de entregar el mensaje al destinatario, o ha recibido esta
comunicaci=F3n por error, le informamos que est=E1 totalmente prohibida
cualquier divulgaci=F3n, distribuci=F3n o reproducci=F3n de esta comunicaci=F3n,
y
le rogamos que nos lo notifique, nos devuelva el mensaje original a la
direcci=F3n arriba mencionada y borre el mensaje.
Gracias.
jgarcian@retevision.es
2002-Sep-23 15:43 UTC
[Shorewall-users] Blacklist and FTP Passive Mode - Continue
> 331 User jordi OK. Password required > Password: > 230-Your bandwidth usage is restricted > 230-User jordi has group access to: ftp > 230 OK. Current restricted directory is / > Remote system type is UNIX.Now do the same thing after you turn on debugging here!!!! I have turn on debugging in pure-ftpd. Jordi