Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > General

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1  
Old 17th July 2012, 06:50
Nap Nap is offline
Senior Member
 
Join Date: Oct 2006
Posts: 169
Thanks: 11
Thanked 3 Times in 3 Posts
Default vsftpd and ISPConfig | Users can't log in

Hi,
I've installed ISPConfig on my system, then decided to install vsftpd afterwards. From a configuration point of view, everything installed correctly, and seems to be running ok.
I am just not able to log in with any users and don't understand why.
What have I done wrong, or not done.

Below are the configurations I've setup for the various modules:
1) ISPConfig information
2) Login details supplied to FTP client
3) dbispconfig information
4) vsftpd.conf

1) FTP User added by Client in ISPConfig:
Website: only one website for this client
Username: ftp2_username
password: mypassword
active: is ticked
options: left as per default. points to client2/web2 folder
SAVED

2) Login details supplied to FTP Client:
(Using FireFTP in Firefox)
Code:
Account Name:  Client Domain
Host: clientdomain.com
Login: ftp2_username          (have also tried  ftp2_username@clientcomain.com but no luck)
Password:  mypassword
Anonymous:  left unticked
Connection Type:  Passive Mode ticked
Security: None
Port:  21
Private Key: not able to set (as security is none)
Initial Directories Local:  left blank
Initial Directories remote:  left blank
No Advanced options set.
3) dbispconfig information:
I looked into the ftp_user table and can see an entry for the above mentioned account.
Fields are as follows:
Code:
ftp_user_id: 2
sys_userid: 3
sys_groupid: 3
sys_perm_user: ruid
sys_perm_group: ruid
server_id: 1
parent_domain_id: 2
username: ftp2_username
password:  (MD5 hash)
quota_size: -1
active: Y (ticked)
uid: web2
gid: client2
dir: /var/ww/clients/client2/web2
quota_files: -1
ul_ratio: -1
ul_bandwidth: -1
dl_bandwidth: -1
all other fields are blank

4) vsftpd.conf:
Code:
# Example config file /etc/vsftpd.conf
#
# Lines added by me in accordance to the HowToForge Guide
# 
# Turn on SSL
ssl_enable=YES
#
# Allow anonymous users to use secure SSL connections
allow_anon_ssl=YES
#
# All non-anonymous logins are forced to use a secure SSL connection in order
# to send and receive data on data connections (if YES, locks out non TLS users)
force_local_data_ssl=NO
#
# All non-anonymous logins are forced to use a secure SSL connection in order
# to send the password (if YES, locks out non TLS users)
force_local_logins_ssl=NO
#
# Permit TLS v1 protocol connections. TLS v1 connections are preferred
ssl_tlsv1=YES
#
# Permit SSL v2 protocol connections. TLS v1 connections are preferred
ssl_sslv2=NO
#
# permit SSL v3 protocol connections. TLS v1 connections are preferred
ssl_sslv3=NO
#
# Disable SSL session reuse (required by WinSCP)
require_ssl_reuse=NO
#
# Select which SSL ciphers vsftpd will allow for encrypted SSL connections (required by FileZilla)
ssl_ciphers=HIGH
#
# END OF MY ADDITIONS
#
# The default compiled in settings are fairly paranoid. This sample file
# loosens things up a bit, to make the ftp daemon more usable.
# Please see vsftpd.conf.5 for all compiled in defaults.
#
# READ THIS: This example file is NOT an exhaustive list of vsftpd options.
# Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd's
# capabilities.
#
#
# Run standalone?  vsftpd can run either from an inetd or as a standalone
# daemon started from an initscript.
listen=YES
#
# Run standalone with IPv6?
# Like the listen parameter, except vsftpd will listen on an IPv6 socket
# instead of an IPv4 one. This parameter and the listen parameter are mutually
# exclusive.
#listen_ipv6=YES
#
# Allow anonymous FTP? (Disabled by default)
anonymous_enable=NO
#
# Uncomment this to allow local users to log in.
local_enable=YES
#
# Uncomment this to enable any form of FTP write command.
write_enable=YES
#
# Default umask for local users is 077. You may wish to change this to 022,
# if your users expect that (022 is used by most other ftpd's)
local_umask=022
#
# Uncomment this to allow the anonymous FTP user to upload files. This only
# has an effect if the above global write enable is activated. Also, you will
# obviously need to create a directory writable by the FTP user.
#anon_upload_enable=YES
#
# Uncomment this if you want the anonymous FTP user to be able to create
# new directories.
#anon_mkdir_write_enable=YES
#
# Activate directory messages - messages given to remote users when they
# go into a certain directory.
dirmessage_enable=YES
#
# If enabled, vsftpd will display directory listings with the time
# in  your  local  time  zone.  The default is to display GMT. The
# times returned by the MDTM FTP command are also affected by this
# option.
use_localtime=YES
#
# Activate logging of uploads/downloads.
xferlog_enable=YES
#
# Make sure PORT transfer connections originate from port 20 (ftp-data).
connect_from_port_20=YES
#
# If you want, you can arrange for uploaded anonymous files to be owned by
# a different user. Note! Using "root" for uploaded files is not
# recommended!
#chown_uploads=YES
#chown_username=whoever
#
# You may override where the log file goes if you like. The default is shown
# below.
#xferlog_file=/var/log/vsftpd.log
#
# If you want, you can have your log file in standard ftpd xferlog format.
# Note that the default log file location is /var/log/xferlog in this case.
#xferlog_std_format=YES
#
# You may change the default value for timing out an idle session.
#idle_session_timeout=600
#
# You may change the default value for timing out a data connection.
#data_connection_timeout=120
#
# It is recommended that you define on your system a unique user which the
# ftp server can use as a totally isolated and unprivileged user.
#nopriv_user=ftpsecure
#
# Enable this and the server will recognise asynchronous ABOR requests. Not
# recommended for security (the code is non-trivial). Not enabling it,
# however, may confuse older FTP clients.
#async_abor_enable=YES
#
# By default the server will pretend to allow ASCII mode but in fact ignore
# the request. Turn on the below options to have the server actually do ASCII
# mangling on files when in ASCII mode.
# Beware that on some FTP servers, ASCII support allows a denial of service
# attack (DoS) via the command "SIZE /big/file" in ASCII mode. vsftpd
# predicted this attack and has always been safe, reporting the size of the
# raw file.
# ASCII mangling is a horrible feature of the protocol.
#ascii_upload_enable=YES
#ascii_download_enable=YES
#
# You may fully customise the login banner string:
#ftpd_banner=Welcome to blah FTP service.
#
# You may specify a file of disallowed anonymous e-mail addresses. Apparently
# useful for combatting certain DoS attacks.
#deny_email_enable=YES
# (default follows)
#banned_email_file=/etc/vsftpd.banned_emails
#
# You may restrict local users to their home directories.  See the FAQ for
# the possible risks in this before using chroot_local_user or
# chroot_list_enable below.
chroot_local_user=YES
#
# You may specify an explicit list of local users to chroot() to their home
# directory. If chroot_local_user is YES, then this list becomes a list of
# users to NOT chroot().
#chroot_local_user=YES
#chroot_list_enable=YES
# (default follows)
#chroot_list_file=/etc/vsftpd.chroot_list
#
# You may activate the "-R" option to the builtin ls. This is disabled by
# default to avoid remote users being able to cause excessive I/O on large
# sites. However, some broken FTP clients such as "ncftp" and "mirror" assume
# the presence of the "-R" option, so there is a strong case for enabling it.
#ls_recurse_enable=YES
#
# Debian customization
#
# Some of vsftpd's settings don't fit the Debian filesystem layout by
# default.  These settings are more Debian-friendly.
#
# This option should be the name of a directory which is empty.  Also, the
# directory should not be writable by the ftp user. This directory is used
# as a secure chroot() jail at times vsftpd does not require filesystem
# access.
secure_chroot_dir=/var/run/vsftpd/empty
#
# This string is the name of the PAM service vsftpd will use.
pam_service_name=vsftpd
#
# This option specifies the location of the RSA certificate to use for SSL
# encrypted connections.
rsa_cert_file=/etc/ssl/private/vsftpd.pem
I had force_local_data_ssl and force_local_logins_ssl both set to YES but changed them to NO while I'm trying to get the basics working.

In my /etc folder, where vsftpd.conf is, there is no vsftpd_user file.
I'm not quite sure how vsftpd checks login details against the data in mysql yet.

Last edited by Nap; 17th July 2012 at 07:16. Reason: added more info @ bottom
Reply With Quote
Sponsored Links
 

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
vsftpd mysql & ispconfig gluki General 2 7th March 2011 03:17
How to add vsftpd to ISPConfig 3 puya4ever HOWTO-Related Questions 3 25th May 2010 15:15
Slow download from own FTP (vsftpd + proftpd) Overcrook Installation/Configuration 0 12th January 2010 22:41
add vsftpd to ispconfig kwickcut HOWTO-Related Questions 5 20th December 2009 18:04
vsftpd and ISPConfig teves HOWTO-Related Questions 3 17th October 2006 18:44


All times are GMT +2. The time now is 03:01.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.