slapaf
28th October 2008, 15:09
Hi
I followed the Proftpd/mysql -etch and everything worked fine. Then a few days ago I noticed it had stoppped working. Only thing I can think of doing on the server is apt-get upgrade.
Here is proftpd.log
Oct 28 13:47:54 sds.dk proftpd[2473] sds.dk (87.51.7.99[87.51.7.99]): FTP session opened.
Oct 28 13:47:57 sds.dk proftpd[2473] sds.dk (87.51.7.99[87.51.7.99]): PAM(shop): User not known to the underlying authentication module.
Oct 28 13:47:57 sds.dk proftpd[2473] sds.dk (87.51.7.99[87.51.7.99]): USER shop: Login successful.
Oct 28 13:47:57 sds.dk proftpd[2473] sds.dk (87.51.7.99[87.51.7.99]): Preparing to chroot to directory '/var/www/shop'
Here is auth.log
Oct 28 13:47:54 sds proftpd: (pam_unix) check pass; user unknown
Oct 28 13:47:54 sds proftpd: (pam_unix) authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=87.51.7.99
Here is proftpd.conf:
#
# /etc/proftpd/proftpd.conf -- This is a basic ProFTPD configuration file.
# To really apply changes reload proftpd after modifications.
#
# Includes DSO modules
Include /etc/proftpd/modules.conf
# Set off to disable IPv6 support which is annoying on IPv4 only boxes.
UseIPv6 off
ServerName "Debian"
ServerType standalone
DeferWelcome off
MultilineRFC2228 on
DefaultServer on
ShowSymlinks on
TimeoutNoTransfer 600
TimeoutStalled 600
TimeoutIdle 1200
DisplayLogin welcome.msg
DisplayFirstChdir .message
ListOptions "-l"
DenyFilter \*.*/
tcpNoDelay on
IdentLookups off
UseReverseDNS off
# Port 21 is the standard FTP port.
Port 21
# In some cases you have to specify passive ports range to by-pass
# firewall limitations. Ephemeral ports can be used for that, but
# feel free to use a more narrow range.
# PassivePorts 49152 65534
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 30
# Set the user and group that the server normally runs at.
#User proftpd
#Group nogroup
User ftpuser
Group ftpgroup
# Umask 022 is a good standard umask to prevent new files and dirs
# (second parm) from being group and world writable.
Umask 022 022
# Normally, we want files to be overwriteable.
AllowOverwrite on
# Uncomment this if you are using NIS or LDAP to retrieve passwords:
# PersistentPasswd off
# Be warned: use of this directive impacts CPU average load!
#
# Uncomment this if you like to see progress and transfer rate with ftpwho
# in downloads. That is not needed for uploads rates.
# UseSendFile off
TransferLog /var/log/proftpd/xferlog
SystemLog /var/log/proftpd/proftpd.log
<IfModule mod_tls.c>
#TLSEngine off
</IfModule>
<IfModule mod_quota.c>
#QuotaEngine on
</IfModule>
<IfModule mod_ratio.c>
#Ratios on
</IfModule>
# Delay engine reduces impact of the so-called Timing Attack described in
# http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02
# It is on by default.
<IfModule mod_delay.c>
#DelayEngine off
</IfModule>
<IfModule mod_ctrls.c>
ControlsEngine on
ControlsMaxClients 2
ControlsLog /var/log/proftpd/controls.log
ControlsInterval 5
ControlsSocket /var/run/proftpd/proftpd.sock
</IfModule>
<IfModule mod_ctrls_admin.c>
AdminControlsEngine on
</IfModule>
DefaultRoot ~
Include /etc/proftpd/mysql.conf
RootLogin off
RequireValidShell off
Here is mysql.conf (included in proftpd.conf)
# Force the use of mysql backend
SQLBackend mysql
# The passwords in MySQL are using its own PASSWORD function
SQLAuthTypes Backend
SQLAuthenticate users* groups*
# details to connect to mysql db
# dbname@host dbuser dbpass
SQLConnectInfo proftpddb@localhost proftpduser xxxxxx
# Let proFTPd know the name of the columns in the user table
# Mind that this need to match the name in you table
SQLUserInfo ftpuser userid passwd uid gid homedir shell
# Let proFTPd know the name of the columns in the group table
# we want it to interact with. Again the names match with those in the db
SQLGroupInfo ftpgroup groupname gid members
# proftpd will dynamicaly create if the homedir does not yet exist
SQLHomedirOnDemand on
# update counter when a user logs in
SQLLog PASS updatecount
SQLNamedQuery updatecount UPDATE "count=count+1, accessed=now() WHERE userid='%u'" ftpuser
# change modified time anytime a user delete a file or upload one
SQLLog STOR,DELE modified
SQLNamedQuery modified UPDATE "modified=now() WHERE userid='%u'" ftpuser
I tried reinstall proftpd-mysql but it didn't help. I also tried remove ftpuser and add again but no luck...
Any ideas of what is wrong ??
I followed the Proftpd/mysql -etch and everything worked fine. Then a few days ago I noticed it had stoppped working. Only thing I can think of doing on the server is apt-get upgrade.
Here is proftpd.log
Oct 28 13:47:54 sds.dk proftpd[2473] sds.dk (87.51.7.99[87.51.7.99]): FTP session opened.
Oct 28 13:47:57 sds.dk proftpd[2473] sds.dk (87.51.7.99[87.51.7.99]): PAM(shop): User not known to the underlying authentication module.
Oct 28 13:47:57 sds.dk proftpd[2473] sds.dk (87.51.7.99[87.51.7.99]): USER shop: Login successful.
Oct 28 13:47:57 sds.dk proftpd[2473] sds.dk (87.51.7.99[87.51.7.99]): Preparing to chroot to directory '/var/www/shop'
Here is auth.log
Oct 28 13:47:54 sds proftpd: (pam_unix) check pass; user unknown
Oct 28 13:47:54 sds proftpd: (pam_unix) authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=87.51.7.99
Here is proftpd.conf:
#
# /etc/proftpd/proftpd.conf -- This is a basic ProFTPD configuration file.
# To really apply changes reload proftpd after modifications.
#
# Includes DSO modules
Include /etc/proftpd/modules.conf
# Set off to disable IPv6 support which is annoying on IPv4 only boxes.
UseIPv6 off
ServerName "Debian"
ServerType standalone
DeferWelcome off
MultilineRFC2228 on
DefaultServer on
ShowSymlinks on
TimeoutNoTransfer 600
TimeoutStalled 600
TimeoutIdle 1200
DisplayLogin welcome.msg
DisplayFirstChdir .message
ListOptions "-l"
DenyFilter \*.*/
tcpNoDelay on
IdentLookups off
UseReverseDNS off
# Port 21 is the standard FTP port.
Port 21
# In some cases you have to specify passive ports range to by-pass
# firewall limitations. Ephemeral ports can be used for that, but
# feel free to use a more narrow range.
# PassivePorts 49152 65534
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 30
# Set the user and group that the server normally runs at.
#User proftpd
#Group nogroup
User ftpuser
Group ftpgroup
# Umask 022 is a good standard umask to prevent new files and dirs
# (second parm) from being group and world writable.
Umask 022 022
# Normally, we want files to be overwriteable.
AllowOverwrite on
# Uncomment this if you are using NIS or LDAP to retrieve passwords:
# PersistentPasswd off
# Be warned: use of this directive impacts CPU average load!
#
# Uncomment this if you like to see progress and transfer rate with ftpwho
# in downloads. That is not needed for uploads rates.
# UseSendFile off
TransferLog /var/log/proftpd/xferlog
SystemLog /var/log/proftpd/proftpd.log
<IfModule mod_tls.c>
#TLSEngine off
</IfModule>
<IfModule mod_quota.c>
#QuotaEngine on
</IfModule>
<IfModule mod_ratio.c>
#Ratios on
</IfModule>
# Delay engine reduces impact of the so-called Timing Attack described in
# http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02
# It is on by default.
<IfModule mod_delay.c>
#DelayEngine off
</IfModule>
<IfModule mod_ctrls.c>
ControlsEngine on
ControlsMaxClients 2
ControlsLog /var/log/proftpd/controls.log
ControlsInterval 5
ControlsSocket /var/run/proftpd/proftpd.sock
</IfModule>
<IfModule mod_ctrls_admin.c>
AdminControlsEngine on
</IfModule>
DefaultRoot ~
Include /etc/proftpd/mysql.conf
RootLogin off
RequireValidShell off
Here is mysql.conf (included in proftpd.conf)
# Force the use of mysql backend
SQLBackend mysql
# The passwords in MySQL are using its own PASSWORD function
SQLAuthTypes Backend
SQLAuthenticate users* groups*
# details to connect to mysql db
# dbname@host dbuser dbpass
SQLConnectInfo proftpddb@localhost proftpduser xxxxxx
# Let proFTPd know the name of the columns in the user table
# Mind that this need to match the name in you table
SQLUserInfo ftpuser userid passwd uid gid homedir shell
# Let proFTPd know the name of the columns in the group table
# we want it to interact with. Again the names match with those in the db
SQLGroupInfo ftpgroup groupname gid members
# proftpd will dynamicaly create if the homedir does not yet exist
SQLHomedirOnDemand on
# update counter when a user logs in
SQLLog PASS updatecount
SQLNamedQuery updatecount UPDATE "count=count+1, accessed=now() WHERE userid='%u'" ftpuser
# change modified time anytime a user delete a file or upload one
SQLLog STOR,DELE modified
SQLNamedQuery modified UPDATE "modified=now() WHERE userid='%u'" ftpuser
I tried reinstall proftpd-mysql but it didn't help. I also tried remove ftpuser and add again but no luck...
Any ideas of what is wrong ??