ispCP - Board - Support
[ERLEDIGT] Zugang zum Webspace ? - Printable Version

+- ispCP - Board - Support (http://www.isp-control.net/forum)
+-- Forum: ispCP Omega International Area (/forum-22.html)
+--- Forum: German Corner (/forum-26.html)
+---- Forum: Archiv (/forum-54.html)
+---- Thread: [ERLEDIGT] Zugang zum Webspace ? (/thread-2676.html)

Pages: 1 2 3

RE: [ERLEDIGT] Zugang zum Webspace ? - tango - 03-28-2008 07:04 PM

hmmm ich werde es mal ausprobieren,
[quota]Vielleicht habe ich da mal ne Lösung...[/quota]
das wehre interesant für den kommenden RC5 Smile

RE: [ERLEDIGT] Zugang zum Webspace ? - joximu - 03-28-2008 07:23 PM

Sollte ab dem nächsten daily dabei sein.

RE: [ERLEDIGT] Zugang zum Webspace ? - Zothos - 03-28-2008 07:58 PM

ispcp sollte eigentlich gar nichts an der hosts drehen... Jedenfalls bin ich der auffassung das jeder der sich Serveradmin schimpft das auch gut selber machen könnte ^^

RE: [ERLEDIGT] Zugang zum Webspace ? - tango - 03-28-2008 10:15 PM

So nun habe ich local das ganze instalationsprozedur durschgeführt, alles verlief reibungslos wie immer.

ich komme leider immernoch nicht per ftp in das Verzeichniss Sad

hier die aktuellen daten:

OS: Debian Etch 32bit
Rechnername= ispcp
Domainname= erdem03.de

hostname= ispcp
hosts=
# 'hosts' file configuration.

127.0.0.1 ispcp.erdem03.de.local localhost
192.168.1.109 ispcp.erdem03.de ispcp
::ffff:192.168.1.109 ispcp.erdem03.de ispcp
::1 ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
ff02::3 ip6-allhosts

proftpd.conf=
Code:
# Includes DSO modules (this is mandatory in proftpd 1.3)
Include /etc/proftpd/modules.conf

# Set off to disable IPv6 support which is annoying on IPv4 only boxes.
UseIPv6                    off

ServerName                 "ispcp.erdem03.de"
ServerType                 standalone
DeferWelcome               off

MultilineRFC2228           on
DefaultServer              on
ShowSymlinks               on

AllowOverwrite             on
UseReverseDNS              off
IdentLookups               off
AllowStoreRestart          on
AllowForeignAddress        on

LogFormat                  traff "%b %u"

TimeoutLogin               120
TimeoutNoTransfer          600
TimeoutStalled             600
TimeoutIdle                1200

DisplayLogin               welcome.msg
DisplayFirstChdir          message

ListOptions                "-l"
#LsDefaultOptions           "-l"

DenyFilter                 \*.*/

DefaultRoot                ~

# Uncomment this if you are using NIS or LDAP to retrieve passwords:
# PersistentPasswd         off

# Port 21 is the standard FTP port.
Port                       21

# In some cases you have to specify passive ports range to by-pass
# firewall limitations. Ephemeral ports can be used for that, but
# feel free to use a more narrow range.
#PassivePorts               49152 65534

# To prevent DoS attacks, set the maximum number of child processes
# to 30.  If you need to allow more than 30 concurrent connections
# at once, simply increase this value.  Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances               30

# Set the user and group that the server normally runs at.
User                       nobody
Group                      nogroup

# Normally, we want files to be overwriteable.

<Directory /*>
  # Umask 022 is a good standard umask to prevent new files and dirs
  # (second parm) from being group and world writable.
  Umask                    022  022
  # Normally, we want files to be overwriteable.
  AllowOverwrite           on
  HideNoAccess             on
</Directory>

<Limit ALL>
  IgnoreHidden             on
</Limit>

# Be warned: use of this directive impacts CPU average load!
#
# Uncomment this if you like to see progress and transfer rate with ftpwho
# in downloads. That is not needed for uploads rates.
# UseSendFile               off

<Global>
  RootLogin                off
  TransferLog              /var/log/proftpd/xferlog
  ExtendedLog              /var/log/proftpd/ftp_traff.log read,write traff
  PathDenyFilter           "\.quota$"
</Global>

#
# SSL via TLS
#
#<IfModule mod_tls.c>
#  TLSEngine                off                           # on for use of TLS
#  TLSLog                   /var/log/proftpd/ftp_ssl.log  # where to log to
#  TLSProtocol              SSLv23                        # SSLv23 or TLSv1
#  TLSOptions               NoCertRequest                 # either to request the certificate or not
#  TLSRSACertificateFile    /etc/proftpd/ssl.crt          # SSL certfile
#  TLSRSACertificateKeyFile /etc/proftpd/ssl.key          # SSL keyfile
#  TLSVerifyClient          off                           # client verification
#</IfModule>

#
# ISPCP Quota management;
#
<IfModule mod_quota.c>
  QuotaEngine              on
  QuotaShowQuotas          on
  QuotaDisplayUnits        Mb

  SQLNamedQuery            get-quota-limit SELECT "name, quota_type, per_session, limit_type, bytes_in_avail, bytes_out_avail, bytes_xfer_avail, files_in_avail, files_out_avail, files_xfer_avail FROM quotalimits WHERE name = '%{0}' AND quota_type = '%{1}'"
  SQLNamedQuery            get-quota-tally SELECT "name, quota_type, bytes_in_used, bytes_out_used, bytes_xfer_used, files_in_used, files_out_used, files_xfer_used FROM quotatallies WHERE name = '%{0}' AND quota_type = '%{1}'"
  SQLNamedQuery            update-quota-tally UPDATE "bytes_in_used = bytes_in_used + %{0}, bytes_out_used = bytes_out_used + %{1}, bytes_xfer_used = bytes_xfer_used + %{2}, files_in_used = files_in_used + %{3}, files_out_used = files_out_used + %{4}, files_xfer_used = files_xfer_used + %{5} WHERE name = '%{6}' AND quota_type = '%{7}'" quotatallies
  SQLNamedQuery            insert-quota-tally INSERT "%{0}, %{1}, %{2}, %{3}, %{4}, %{5}, %{6}, %{7}" quotatallies

  QuotaLock                /var/run/proftpd/tally.lock
  QuotaLimitTable          sql:/get-quota-limit
  QuotaTallyTable          sql:/get-quota-tally/update-quota-tally/insert-quota-tally
</IfModule>

<IfModule mod_ratio.c>
  Ratios                   on
</IfModule>

# Delay engine reduces impact of the so-called Timing Attack described in
# http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02
# It is on by default.
<IfModule mod_delay.c>
  DelayEngine              on
</IfModule>

<IfModule mod_ctrls.c>
  ControlsEngine           on
  ControlsMaxClients       2
  ControlsLog              /var/log/proftpd/controls.log
  ControlsInterval         5
  ControlsSocket           /var/run/proftpd/proftpd.sock
</IfModule>

<IfModule mod_ctrls_admin.c>
  AdminControlsEngine      on
</IfModule>

# ispCP SQL Managment
SQLBackend                 mysql
SQLAuthTypes               Crypt
SQLAuthenticate            on
SQLConnectInfo             ispcp@localhost vftp commodore
SQLUserInfo                ftp_users userid passwd uid gid homedir shell
SQLGroupInfo               ftp_group groupname gid members
SQLMinID                   2000

# A basic anonymous configuration, no upload directories.

# <Anonymous ~ftp>
#   User                   ftp
#   Group                  nogroup
#   # We want clients to be able to login with "anonymous" as well as "ftp"
#   UserAlias              anonymous ftp
#   # Cosmetic changes, all files belongs to ftp user
#   DirFakeUser            on ftp
#   DirFakeGroup           on ftp
#
#   RequireValidShell      off
#
#   # Limit the maximum number of anonymous logins
#   MaxClients             10
#
#   # We want 'welcome.msg' displayed at login, and '.message' displayed
#   # in each newly chdired directory.
#   DisplayLogin           welcome.msg
#   DisplayFirstChdir      .message
#
#   # Limit WRITE everywhere in the anonymous chroot
#   <Directory *>
#     <Limit WRITE>
#       DenyAll
#     </Limit>
#   </Directory>
#
#   # Uncomment this if you're brave.
#   # <Directory incoming>
#   #   # Umask 022 is a good standard umask to prevent new files and dirs
#   #   # (second parm) from being group and world writable.
#   #   Umask              022  022
#   #   <Limit READ WRITE>
#   #     DenyAll
#   #   </Limit>
#   #   <Limit STOR>
#   #     AllowAll
#   #   </Limit>
#   # </Directory>

proftpd -n -d 5

Code:
- mod_ctrls/0.9.4: binding ctrls socket to '/var/run/proftpd/proftpd.sock'
- parsing '/etc/proftpd/proftpd.conf' configuration
- parsing '/etc/proftpd/modules.conf' configuration
- mod_tls/2.1.1: using OpenSSL 0.9.8c 05 Sep 2006
- disabling runtime support for IPv6 connections
- DenyFilter: compiling deny regex '\*.*/'
- <Directory /*>: deferring resolution of path
- PathDenyFilter: compiling deny regex '.quota$'
- <IfModule>: skipping 'mod_quota.c' section at line 124
- <IfModule>: skipping 'mod_ratio.c' section at line 139
- <IfModule>: using 'mod_delay.c' section at line 146
- <IfModule>: using 'mod_ctrls.c' section at line 150
- mod_ctrls/0.9.4: closing ctrls socket '/var/run/proftpd/proftpd.sock' (3)
- <IfModule>: using 'mod_ctrls_admin.c' section at line 158
ispcp.erdem03.de -
ispcp.erdem03.de - Config for ispcp.erdem03.de:
ispcp.erdem03.de - Limit
ispcp.erdem03.de -  IgnoreHidden
ispcp.erdem03.de - /*
ispcp.erdem03.de -  Umask
ispcp.erdem03.de -  DirUmask
ispcp.erdem03.de -  AllowOverwrite
ispcp.erdem03.de -  HideNoAccess
ispcp.erdem03.de -  ShowSymlinks
ispcp.erdem03.de -  AllowStoreRestart
ispcp.erdem03.de -  AllowForeignAddress
ispcp.erdem03.de -  DisplayLogin
ispcp.erdem03.de -  DisplayFirstChdir
ispcp.erdem03.de -  ListOptions
ispcp.erdem03.de -  DenyFilter
ispcp.erdem03.de -  SQLAuthTypes
ispcp.erdem03.de -  SQLAuthenticate
ispcp.erdem03.de -  SQLConnectInfo
ispcp.erdem03.de -  SQLMinID
ispcp.erdem03.de -  RootLogin
ispcp.erdem03.de -  TransferLog
ispcp.erdem03.de -  PathDenyFilter
ispcp.erdem03.de - DeferWelcome
ispcp.erdem03.de - DefaultServer
ispcp.erdem03.de - ShowSymlinks
ispcp.erdem03.de - AllowOverwrite
ispcp.erdem03.de - IdentLookups
ispcp.erdem03.de - AllowStoreRestart
ispcp.erdem03.de - AllowForeignAddress
ispcp.erdem03.de - TimeoutLogin
ispcp.erdem03.de - TimeoutNoTransfer
ispcp.erdem03.de - TimeoutStalled
ispcp.erdem03.de - TimeoutIdle
ispcp.erdem03.de - DisplayLogin
ispcp.erdem03.de - DisplayFirstChdir
ispcp.erdem03.de - ListOptions
ispcp.erdem03.de - DenyFilter
ispcp.erdem03.de - DefaultRoot
ispcp.erdem03.de - UserID
ispcp.erdem03.de - UserName
ispcp.erdem03.de - GroupID
ispcp.erdem03.de - GroupName
ispcp.erdem03.de - DelayEngine
ispcp.erdem03.de - SQLBackend
ispcp.erdem03.de - SQLAuthTypes
ispcp.erdem03.de - SQLAuthenticate
ispcp.erdem03.de - SQLConnectInfo
ispcp.erdem03.de - SQLUserTable
ispcp.erdem03.de - SQLUsernameField
ispcp.erdem03.de - SQLPasswordField
ispcp.erdem03.de - SQLUidField
ispcp.erdem03.de - SQLGidField
ispcp.erdem03.de - SQLHomedirField
ispcp.erdem03.de - SQLShellField
ispcp.erdem03.de - SQLGroupTable
ispcp.erdem03.de - SQLGroupnameField
ispcp.erdem03.de - SQLGroupGIDField
ispcp.erdem03.de - SQLGroupMembersField
ispcp.erdem03.de - SQLMinID
ispcp.erdem03.de - RootLogin
ispcp.erdem03.de - TransferLog
ispcp.erdem03.de - ExtendedLog
ispcp.erdem03.de - PathDenyFilter
ispcp.erdem03.de - mod_ctrls/0.9.4: binding ctrls socket to '/var/run/proftpd/proftpd.sock'
ispcp.erdem03.de - deleting existing scoreboard '/var/run/proftpd/proftpd.scoreboard'
ispcp.erdem03.de - Failed binding to 0.0.0.0, port 21: Address already in use
ispcp.erdem03.de - Check the ServerType directive to ensure you are configured correctly.

ich weis nicht wo das Hacken ist ??[/code][/b]

RE: [ERLEDIGT] Zugang zum Webspace ? - joximu - 03-28-2008 10:19 PM

Antwort auf Port 13:

Mir gings drum, dass der Vorschlag im setup von ispcp mit beiden Situationen klarkommt:
- der Befehl "hostname" bringt einen FQ Hostnamen
- "hostname" bringt nur einen Hostnamen -> hostname -f bringt den FQ Hostnamen.

(es kommt beim Setup von debian drauf an, wie die Situation aussieht - so wie ich das deutsche Debian-Setup während der Installation verstehe, soll man nur einen Hostnamen eingeben, im anderen Schritt dann den Domainnamen -> das führt zu Situation 2, einige Admins schreiben aber während dem Debian Setup schon einen FQ Hostnamen rein -> Situation 1).

Ab sofort prüft ispcp-setup, ob ein Punkt im gefundenen Hostnamen vorkommt. Falls nein -> erneute Abfrage mit "hostname -f" und dann wird *das* als Vorschlag genommen.

/J

RE: [ERLEDIGT] Zugang zum Webspace ? - tango - 03-28-2008 10:26 PM

ich hatte dich schon verstanden, aber das soll ja erst ab morgen mit dem Thrunk kommen, und meinem Problem garnicht helfen Sad

RE: [ERLEDIGT] Zugang zum Webspace ? - joximu - 03-28-2008 10:31 PM

@tango
Nimm mal das PW aus deinem Post...
(mein Post (15) bezog sich auf das von gOOvER... (13) :-)

Was bringt "netstat -tulpe"?
Bzw. hast du den proftp daemon gestoppt, bevor du ihn im debug modus startest?

RE: [ERLEDIGT] Zugang zum Webspace ? - gOOvER - 03-28-2008 10:37 PM

joximu Wrote:(mein Post (15) bezog sich auf das von gOOvER... (13) :-)

Ja hab ich unter meinen Pseudonym Zothos geschrieben. Smile

RE: [ERLEDIGT] Zugang zum Webspace ? - joximu - 03-28-2008 10:40 PM

gOOvER Wrote:
joximu Wrote:(mein Post (15) bezog sich auf das von gOOvER... (13) :-)

Ja hab ich unter meinen Pseudonym Zothos geschrieben. Smile

aaaaaaargh... sorry... Smile

RE: [ERLEDIGT] Zugang zum Webspace ? - tango - 03-28-2008 10:46 PM

joximu Wrote:@tango
Nimm mal das PW aus deinem Post...
(mein Post (15) bezog sich auf das von gOOvER... (13) :-)

Was bringt "netstat -tulpe"?
Bzw. hast du den proftp daemon gestoppt, bevor du ihn im debug modus startest?

Aktive Internetverbindungen (Nur Server)
Proto Recv-Q Send-Q Local Address Foreign Address State Benutzer Inode PID/Program name
tcp 0 0 ispcp.erdem03.de.:60000 *:* LISTEN root 5409 2988/postgrey.pid -
tcp 0 0 ispcp.erdem03.de.:10025 *:* LISTEN root 5779 3155/master
tcp 0 0 ispcp.erdem03.de.:mysql *:* LISTEN mysql 5183 2922/mysqld
tcp 0 0 ispcp.erdem03.de.lo:843 *:* LISTEN root 5901 3211/famd
tcp 0 0 *:submission *:* LISTEN root 5684 3155/master
tcp 0 0 ispcp.erdem03.de.:12525 *:* LISTEN root 5384 2984/policyd-weight
tcp 0 0 *:sunrpc *:* LISTEN root 4496 2547/portmap
tcp 0 0 *:ssmtp *:* LISTEN root 5786 3155/master
tcp 0 0 *:auth *:* LISTEN root 5546 3093/inetd
tcp 0 0 ispcp.erdem03.de.l:9876 *:* LISTEN root 6074 3332/ispcp_daemon
tcp 0 0 *:ftp *:* LISTEN nobody 5968 3236/proftpd: (acce
tcp 0 0 ispcp.erdem03.de:domain *:* LISTEN bind 4993 2805/named
tcp 0 0 ispcp.erdem03.de:domain *:* LISTEN bind 4991 2805/named
tcp 0 0 *:smtp *:* LISTEN root 5680 3155/master
tcp 0 0 ispcp.erdem03.de.lo:953 *:* LISTEN bind 5061 2805/named
tcp 0 0 *:3997 *:* LISTEN statd 5939 3219/rpc.statd
tcp6 0 0 *:pop3 *:* LISTEN root 5523 3082/couriertcpd
tcp6 0 0 *:imap2 *:* LISTEN root 5509 3077/couriertcpd
tcp6 0 0 *:www *:* LISTEN root 6029 3269/apache2
tcp6 0 0 *:domain *:* LISTEN bind 4986 2805/named
tcp6 0 0 *:ssh *:* LISTEN root 5852 3177/sshd
tcp6 0 0 ip6-localhost:953 *:* LISTEN bind 5062 2805/named
udp 0 0 *:1024 *:* bind 5058 2805/named
udp 0 0 *:1027 *:* statd 5934 3219/rpc.statd
udp 0 0 ispcp.erdem03.de:domain *:* bind 4992 2805/named
udp 0 0 ispcp.erdem03.de:domain *:* bind 4990 2805/named
udp 0 0 *:bootpc *:* root 4551 2797/dhclient3
udp 0 0 *:851 *:* root 5924 3219/rpc.statd
udp 0 0 *:sunrpc *:* root 4493 2547/portmap
udp6 0 0 *:1025 *:* bind 5059 2805/named
udp6 0 0 *:domain *:* bind 4985 2805/named