ProFTPd Problems [RESOLVED] - Haeber - 05-15-2008 01:12 PM
I've read a dozen of threads about proftpd problems, but no one had helped to find the solution.
Problems:
proftp seems to be down, no connections are possible, but the daemon runs
I use debian.etch.
netstat -tulpen | grep :21
Code:
tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 65534 4118594 6497/proftpd: (acce
proftpd -n -d 5
Code:
- mod_ctrls/0.9.4: binding ctrls socket to '/var/run/proftpd/proftpd.sock'
- parsing '/etc/proftpd/proftpd.conf' configuration
- parsing '/etc/proftpd/modules.conf' configuration
- mod_tls/2.1.1: using OpenSSL 0.9.8c 05 Sep 2006
- disabling runtime support for IPv6 connections
- DenyFilter: compiling deny regex '\*.*/'
- <Directory /*>: deferring resolution of path
- <Directory ~/>: deferring resolution of path
- PathDenyFilter: compiling deny regex '^/(backups|cgi-bin|htdocs|errors|logs|phptmp|statistics)/?$'
- PathDenyFilter: compiling deny regex '.quota$'
- <IfModule>: using 'mod_tls.c' section at line 115
- <IfModule>: skipping 'mod_quota.c' section at line 128
- <IfModule>: skipping 'mod_ratio.c' section at line 143
- <IfModule>: using 'mod_delay.c' section at line 150
- <IfModule>: using 'mod_ctrls.c' section at line 154
- mod_ctrls/0.9.4: closing ctrls socket '/var/run/proftpd/proftpd.sock' (3)
- <IfModule>: using 'mod_ctrls_admin.c' section at line 162
domain-xxx.tld -
domain-xxx.tld - Config for domain-xxx.tld:
domain-xxx.tld - Limit
domain-xxx.tld - IgnoreHidden
domain-xxx.tld - ~/
domain-xxx.tld - PathDenyFilter
domain-xxx.tld - ShowSymlinks
domain-xxx.tld - AllowOverwrite
domain-xxx.tld - AllowStoreRestart
domain-xxx.tld - AllowForeignAddress
domain-xxx.tld - DisplayLogin
domain-xxx.tld - DisplayFirstChdir
domain-xxx.tld - ListOptions
domain-xxx.tld - DenyFilter
domain-xxx.tld - SQLAuthTypes
domain-xxx.tld - SQLAuthenticate
domain-xxx.tld - SQLConnectInfo
domain-xxx.tld - SQLMinID
domain-xxx.tld - RootLogin
domain-xxx.tld - TransferLog
domain-xxx.tld - /*
domain-xxx.tld - Umask
domain-xxx.tld - DirUmask
domain-xxx.tld - AllowOverwrite
domain-xxx.tld - HideNoAccess
domain-xxx.tld - ShowSymlinks
domain-xxx.tld - AllowStoreRestart
domain-xxx.tld - AllowForeignAddress
domain-xxx.tld - DisplayLogin
domain-xxx.tld - DisplayFirstChdir
domain-xxx.tld - ListOptions
domain-xxx.tld - DenyFilter
domain-xxx.tld - SQLAuthTypes
domain-xxx.tld - SQLAuthenticate
domain-xxx.tld - SQLConnectInfo
domain-xxx.tld - SQLMinID
domain-xxx.tld - RootLogin
domain-xxx.tld - TransferLog
domain-xxx.tld - PathDenyFilter
domain-xxx.tld - DeferWelcome
domain-xxx.tld - DefaultServer
domain-xxx.tld - ShowSymlinks
domain-xxx.tld - AllowOverwrite
domain-xxx.tld - IdentLookups
domain-xxx.tld - AllowStoreRestart
domain-xxx.tld - AllowForeignAddress
domain-xxx.tld - TimeoutLogin
domain-xxx.tld - TimeoutNoTransfer
domain-xxx.tld - TimeoutStalled
domain-xxx.tld - TimeoutIdle
domain-xxx.tld - DisplayLogin
domain-xxx.tld - DisplayFirstChdir
domain-xxx.tld - ListOptions
domain-xxx.tld - DenyFilter
domain-xxx.tld - DefaultRoot
domain-xxx.tld - UserID
domain-xxx.tld - UserName
domain-xxx.tld - GroupID
domain-xxx.tld - GroupName
domain-xxx.tld - TLSEngine
domain-xxx.tld - TLSLog
domain-xxx.tld - TLSOptions
domain-xxx.tld - TLSRSACertificateFile
domain-xxx.tld - TLSRSACertificateKeyFile
domain-xxx.tld - TLSVerifyClient
domain-xxx.tld - DelayEngine
domain-xxx.tld - SQLBackend
domain-xxx.tld - SQLAuthTypes
domain-xxx.tld - SQLAuthenticate
domain-xxx.tld - SQLConnectInfo
domain-xxx.tld - SQLUserTable
domain-xxx.tld - SQLUsernameField
domain-xxx.tld - SQLPasswordField
domain-xxx.tld - SQLUidField
domain-xxx.tld - SQLGidField
domain-xxx.tld - SQLHomedirField
domain-xxx.tld - SQLShellField
domain-xxx.tld - SQLGroupTable
domain-xxx.tld - SQLGroupnameField
domain-xxx.tld - SQLGroupGIDField
domain-xxx.tld - SQLGroupMembersField
domain-xxx.tld - SQLMinID
domain-xxx.tld - RootLogin
domain-xxx.tld - TransferLog
domain-xxx.tld - ExtendedLog
domain-xxx.tld - PathDenyFilter
domain-xxx.tld - mod_ctrls/0.9.4: binding ctrls socket to '/var/run/proftpd/proftpd.sock'
domain-xxx.tld - mod_tls/2.1.1: passphrase locked into memory
domain-xxx.tld - deleting existing scoreboard '/var/run/proftpd/proftpd.scoreboard'
domain-xxx.tld - Failed binding to 0.0.0.0, port 21: Address already in use
domain-xxx.tld - Check the ServerType directive to ensure you are configured correctly.
domain-xxx.tld - mod_tls/2.1.1: scrubbing 1 passphrase from memory
Maybe it has something to do with this
Code:
domain-xxx.tld - Failed binding to 0.0.0.0, port 21: Address already in use
But I don't know what to do to solve this problem.
Any hints?
RE: ProFTPd Problems - Haeber - 05-15-2008 01:22 PM
the proftpd.conf
RE: ProFTPd Problems - BeNe - 05-15-2008 03:56 PM
Stop all your FTP Server.
Then start in Debug Mode and try to connnect,you will see what happend
Greez BeNe
RE: ProFTPd Problems - Haeber - 05-15-2008 10:18 PM
proftpd -n -d 5:
Code:
- mod_ctrls/0.9.4: binding ctrls socket to '/var/run/proftpd/proftpd.sock'
- parsing '/etc/proftpd/proftpd.conf' configuration
- parsing '/etc/proftpd/modules.conf' configuration
- mod_tls/2.1.1: using OpenSSL 0.9.8c 05 Sep 2006
- disabling runtime support for IPv6 connections
- DenyFilter: compiling deny regex '\*.*/'
- <Directory /*>: deferring resolution of path
- <Directory ~/>: deferring resolution of path
- PathDenyFilter: compiling deny regex '^/(backups|cgi-bin|htdocs|errors|logs|phptmp|statistics)/?$'
- PathDenyFilter: compiling deny regex '.quota$'
- <IfModule>: using 'mod_tls.c' section at line 115
- <IfModule>: skipping 'mod_quota.c' section at line 128
- <IfModule>: skipping 'mod_ratio.c' section at line 143
- <IfModule>: using 'mod_delay.c' section at line 150
- <IfModule>: using 'mod_ctrls.c' section at line 154
- mod_ctrls/0.9.4: closing ctrls socket '/var/run/proftpd/proftpd.sock' (3)
- <IfModule>: using 'mod_ctrls_admin.c' section at line 162
domain-xxx.tld -
domain-xxx.tld - Config for domain-xxx.tld:
domain-xxx.tld - Limit
domain-xxx.tld - IgnoreHidden
domain-xxx.tld - ~/
domain-xxx.tld - PathDenyFilter
domain-xxx.tld - ShowSymlinks
domain-xxx.tld - AllowOverwrite
domain-xxx.tld - AllowStoreRestart
domain-xxx.tld - AllowForeignAddress
domain-xxx.tld - DisplayLogin
domain-xxx.tld - DisplayFirstChdir
domain-xxx.tld - ListOptions
domain-xxx.tld - DenyFilter
domain-xxx.tld - SQLAuthTypes
domain-xxx.tld - SQLAuthenticate
domain-xxx.tld - SQLConnectInfo
domain-xxx.tld - SQLMinID
domain-xxx.tld - RootLogin
domain-xxx.tld - TransferLog
domain-xxx.tld - /*
domain-xxx.tld - Umask
domain-xxx.tld - DirUmask
domain-xxx.tld - AllowOverwrite
domain-xxx.tld - HideNoAccess
domain-xxx.tld - ShowSymlinks
domain-xxx.tld - AllowStoreRestart
domain-xxx.tld - AllowForeignAddress
domain-xxx.tld - DisplayLogin
domain-xxx.tld - DisplayFirstChdir
domain-xxx.tld - ListOptions
domain-xxx.tld - DenyFilter
domain-xxx.tld - SQLAuthTypes
domain-xxx.tld - SQLAuthenticate
domain-xxx.tld - SQLConnectInfo
domain-xxx.tld - SQLMinID
domain-xxx.tld - RootLogin
domain-xxx.tld - TransferLog
domain-xxx.tld - PathDenyFilter
domain-xxx.tld - DeferWelcome
domain-xxx.tld - DefaultServer
domain-xxx.tld - ShowSymlinks
domain-xxx.tld - AllowOverwrite
domain-xxx.tld - IdentLookups
domain-xxx.tld - AllowStoreRestart
domain-xxx.tld - AllowForeignAddress
domain-xxx.tld - TimeoutLogin
domain-xxx.tld - TimeoutNoTransfer
domain-xxx.tld - TimeoutStalled
domain-xxx.tld - TimeoutIdle
domain-xxx.tld - DisplayLogin
domain-xxx.tld - DisplayFirstChdir
domain-xxx.tld - ListOptions
domain-xxx.tld - DenyFilter
domain-xxx.tld - DefaultRoot
domain-xxx.tld - UserID
domain-xxx.tld - UserName
domain-xxx.tld - GroupID
domain-xxx.tld - GroupName
domain-xxx.tld - TLSEngine
domain-xxx.tld - TLSLog
domain-xxx.tld - TLSOptions
domain-xxx.tld - TLSRSACertificateFile
domain-xxx.tld - TLSRSACertificateKeyFile
domain-xxx.tld - TLSVerifyClient
domain-xxx.tld - DelayEngine
domain-xxx.tld - SQLBackend
domain-xxx.tld - SQLAuthTypes
domain-xxx.tld - SQLAuthenticate
domain-xxx.tld - SQLConnectInfo
domain-xxx.tld - SQLUserTable
domain-xxx.tld - SQLUsernameField
domain-xxx.tld - SQLPasswordField
domain-xxx.tld - SQLUidField
domain-xxx.tld - SQLGidField
domain-xxx.tld - SQLHomedirField
domain-xxx.tld - SQLShellField
domain-xxx.tld - SQLGroupTable
domain-xxx.tld - SQLGroupnameField
domain-xxx.tld - SQLGroupGIDField
domain-xxx.tld - SQLGroupMembersField
domain-xxx.tld - SQLMinID
domain-xxx.tld - RootLogin
domain-xxx.tld - TransferLog
domain-xxx.tld - ExtendedLog
domain-xxx.tld - PathDenyFilter
domain-xxx.tld - mod_ctrls/0.9.4: binding ctrls socket to '/var/run/proftpd/proftpd.sock'
domain-xxx.tld - mod_tls/2.1.1: passphrase locked into memory
domain-xxx.tld - deleting existing scoreboard '/var/run/proftpd/proftpd.scoreboard'
domain-xxx.tld - Failed binding to 0.0.0.0, port 21: Address already in use
domain-xxx.tld - Check the ServerType directive to ensure you are configured correctly.
domain-xxx.tld - mod_tls/2.1.1: scrubbing 1 passphrase from memory
If I stop proftpd, "netstat -tulpen | grep :21" still says that port 21 is listen:
Code:
tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 65534 4118594 6497/proftpd: (acce
I don't know what do you mean with connect in debug mode, cause I cannot connect to it.
RE: ProFTPd Problems - gOOvER - 05-15-2008 10:42 PM
Haeber Wrote:I don't know what do you mean with connect in debug mode, cause I cannot connect to it.
Enable Debug and TRY to connect.
RE: ProFTPd Problems - Haeber - 05-16-2008 12:07 AM
gOOvER Wrote:Haeber Wrote:I don't know what do you mean with connect in debug mode, cause I cannot connect to it.
Enable Debug and TRY to connect.
Sorry but I don't know what I have to do. If I start proftpd with "proftpd -n d 5" I only get the posted output. If I telnet ftp://domain-xxx.tld I get the following message:
Code:
telnet: ftp://domain-xxx.tld: Temporary failure in name resolution
ftp://domain-xxx.tld: Host name lookup failure
Could you please help me with a more detailed shell-command sequence? Furthermore it seams that proftpd produced no new log entries.
RE: ProFTPd Problems - kilburn - 05-16-2008 01:35 AM
When you run proftpd in debug mode (-n -d5) it runs directly on the shell (not as daemon) and prints all the output to the screen instead of writing to the log.
What you have to do is launch proftpd in one shell, leave it there running and use another shell to try to connect, using an FTP client (not telnet!). You can also try to connect using your desktop's FTP client directly...
The shell running proftpd will display the complete debug info about the connection try, so if you post this output here maybe we'll be able to help.
RE: ProFTPd Problems - Haeber - 05-16-2008 02:23 AM
The problem is, that there is no output to the shell (no stderr etc.), there is only the posted output directly after i startet the debug mode, not more. This does not change if i try to connect from a ftp client, it seems as if propftd would not be active.
RE: ProFTPd Problems - kilburn - 05-16-2008 03:08 AM
Quote:domain-xxx.tld - Failed binding to 0.0.0.0, port 21: Address already in use
You already had a running proftpd... kill it (/etc/init.d/proftpd stop or killall -s09 /usr/sbin/proftpd if it doesn't work) before starting the debug one.
RE: ProFTPd Problems - Haeber - 05-16-2008 05:11 AM
Great thanks for this tip.
Now the output, if I want to connect:
Code:
domain-xxx.tld (1.2.3.4[1.2.3.4]) - FTP session requested from unknown class
domain-xxx.tld (1.2.3.4[1.2.3.4]) - FTP session closed.
pseudonym legend:
1.2.3.4: the (static) ip of the client
domain-xxx.tld: the domain which uses proftpd
|