Hi Leude,
neuerliches Problem in der ispcp Neuinstall. Vorab, habe mich durch
http://isp-control.net/documentation/sol...tpd_issues
gelesen und gewühlt. Bezogen auf das Problem aber keine Hilfe gefunden.
#0 - Das Problem
a) im ispcp FTP Zugang anlegen funktioniert "Verzeichnis auswählen" nicht.
b) für den anzulegenden ftp nutzer wird nur die hauptdomain angezeigt, keine der bis dato existierenden subdomains
c) habe einen ftp account erzeugt, dieser KANN sich auch anmelden, bekommt jedoch kein verzeichnis listing?! Ich kann mit dem FTP User auch Ordner erstellen bzw Dateien anlegen - landen dann im root verzeichnis der hauptdomain werden aber im FTP programm trotzdem nicht angezeigt! Weder das manuelle Ordner wechseln als FTP Nutzer funktioniert, noch das angeben eines anderen Ordners als Root Ordner beim anlegen eines FTP Nutzers.
Hier ein fehlerauszug den ich über die erweiterte Funktion "Fehlersuche bei einem FTP Server" des net2ftp tool ermitteln konnte:
Code:
Warning: ftp_chdir() [function.ftp-chdir]: /: No such file or directory in /var/www/ispcp/gui/tools/filemanager/modules/advanced_ftpserver/advanced_ftpserver.inc.php on line 219
Warning: ftp_pwd() [function.ftp-pwd]: PWD: Permission denied in /var/www/ispcp/gui/tools/filemanager/modules/advanced_ftpserver/advanced_ftpserver.inc.php on line 223
FTP Server localhost
FTP Server Port 21
Benutzername plexx@aerisdesign.de
Passwortlänge 7
Passiver Modus
Verzeichnis /
* Verbinden mit dem FTP Server: OK
* Anmelden am FTP Server: OK
* Setzen des passiven Modus: OK
* Prüfe Systemtyp des FTP-Servers: UNIX
* Wechseln in das Verzeichniss /: not OK
* Empfang einer Rohliste der Dateien und Ordnern:
Array ( )
* Empfang einer Rohliste der Dateien und Ordnern:
#1 - Allgemeine Infos
Linux version 2.6.34-gentoo-r6
ispCP Omega 1.0.6 stable
net-ftp/proftpd-1.3.3a
#2 - /etc/proftpd/proftpd.conf
Code:
# ispCP ω (OMEGA) a Virtual Hosting Control Panel
# Copyright (C) 2001-2006 by moleSoftware GmbH - http://www.molesoftware.com
# Copyright (C) 2006-2010 by isp Control Panel - http://ispcp.net
#
# Version: $Id: proftpd.conf 2505 2010-01-06 20:30:53Z nuxwin $
#
# The contents of this file are subject to the Mozilla Public License
# Version 1.1 (the "License"); you may not use this file except in
# compliance with the License. You may obtain a copy of the License at
# http://www.mozilla.org/MPL/
#
# Software distributed under the License is distributed on an "AS IS"
# basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See the
# License for the specific language governing rights and limitations
# under the License.
#
# The Original Code is "VHCS - Virtual Hosting Control System".
#
# The Initial Developer of the Original Code is moleSoftware GmbH.
# Portions created by Initial Developer are Copyright (C) 2001-2006
# by moleSoftware GmbH. All Rights Reserved.
# Portions created by the ispCP Team are Copyright (C) 2006-2010 by
# isp Control Panel. All Rights Reserved.
#
# The ispCP ω Home Page is:
#
# http://isp-control.net
#
# Includes DSO modules (this is mandatory in proftpd 1.3)
#Include /etc/proftpd/modules.conf
# Set off to disable IPv6 support which is annoying on IPv4 only boxes.
UseIPv6 off
ServerName "h896586.serverkompetenz.net"
ServerType standalone
DeferWelcome off
MultilineRFC2228 on
DefaultServer on
ShowSymlinks on
AllowOverwrite on
UseReverseDNS off
#IdentLookups off
AllowStoreRestart on
AllowForeignAddress on
LogFormat traff "%b %u"
TimeoutLogin 120
TimeoutNoTransfer 600
TimeoutStalled 600
TimeoutIdle 1200
DisplayLogin welcome.msg
DisplayChdir message
ListOptions "-l"
#LsDefaultOptions "-l"
DenyFilter \*.*/
DefaultRoot ~
# Uncomment this if you are using NIS or LDAP to retrieve passwords:
# PersistentPasswd off
# Port 21 is the standard FTP port.
Port 21
# In some cases you have to specify passive ports range to by-pass
# firewall limitations. Ephemeral ports can be used for that, but
# feel free to use a more narrow range.
#PassivePorts 49152 65534
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 30
# Set the user and group that the server normally runs at.
User nobody
Group nogroup
# Disable PAM for authentication...
#
AuthPAM off
# Normally, we want files to be overwriteable.
<Directory /*>
# Umask 022 is a good standard umask to prevent new files and dirs
# (second parm) from being group and world writable.
Umask 022 022
# Normally, we want files to be overwriteable.
AllowOverwrite on
HideNoAccess on
</Directory>
<Limit ALL>
IgnoreHidden on
</Limit>
# Be warned: use of this directive impacts CPU average load!
#
# Uncomment this if you like to see progress and transfer rate with ftpwho
# in downloads. That is not needed for uploads rates.
# UseSendFile off
<Global>
RootLogin off
TransferLog /var/log/proftpd/xferlog
ExtendedLog /var/log/proftpd/ftp_traff.log read,write traff
PathDenyFilter "\.quota$"
</Global>
# ClamAV
<IfModule mod_clamav.c>
# Enable virus scanning and removal
ClamAV on
# Specify the UNIX Local Socket
ClamLocalSocket /var/run/clamav/clamd.sock
</IfModule>
#
# SSL via TLS
#
#<IfModule mod_tls.c>
# TLSEngine on # on for use of TLS
# TLSLog /var/log/proftpd/ftp_ssl.log # where to log to
# TLSProtocol SSLv23 # SSLv23 or TLSv1
# TLSOptions NoCertRequest # either to request the certificate or not
# TLSRSACertificateFile /etc/proftpd/ssl.crt # SSL certfile
# TLSRSACertificateKeyFile /etc/proftpd/ssl.key # SSL keyfile
# TLSVerifyClient off # client verification
#</IfModule>
#
# ISPCP Quota management;
#
<IfModule mod_quotatab_sql.c>
QuotaEngine on
QuotaShowQuotas on
QuotaDisplayUnits Mb
SQLNamedQuery get-quota-limit SELECT "name, quota_type, per_session, limit_type, bytes_in_avail, bytes_out_avail, bytes_xfer_avail, files_in_avail, files_out_avail, files_xfer_avail FROM quotalimits WHERE name = '%{0}' AND quota_type = '%{1}'"
SQLNamedQuery get-quota-tally SELECT "name, quota_type, bytes_in_used, bytes_out_used, bytes_xfer_used, files_in_used, files_out_used, files_xfer_used FROM quotatallies WHERE name = '%{0}' AND quota_type = '%{1}'"
SQLNamedQuery update-quota-tally UPDATE "bytes_in_used = bytes_in_used + %{0}, bytes_out_used = bytes_out_used + %{1}, bytes_xfer_used = bytes_xfer_used + %{2}, files_in_used = files_in_used + %{3}, files_out_used = files_out_used + %{4}, files_xfer_used = files_xfer_used + %{5} WHERE name = '%{6}' AND quota_type = '%{7}'" quotatallies
SQLNamedQuery insert-quota-tally INSERT "%{0}, %{1}, %{2}, %{3}, %{4}, %{5}, %{6}, %{7}" quotatallies
QuotaLock /var/run/proftpd/tally.lock
QuotaLimitTable sql:/get-quota-limit
QuotaTallyTable sql:/get-quota-tally/update-quota-tally/insert-quota-tally
</IfModule>
<IfModule mod_ratio.c>
Ratios on
</IfModule>
# Delay engine reduces impact of the so-called Timing Attack described in
# http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02
# It is on by default.
<IfModule mod_delay.c>
DelayEngine on
</IfModule>
<IfModule mod_ctrls.c>
ControlsEngine on
ControlsMaxClients 2
ControlsLog /var/log/proftpd/controls.log
ControlsInterval 5
ControlsSocket /var/run/proftpd/proftpd.sock
</IfModule>
<IfModule mod_ctrls_admin.c>
AdminControlsEngine on
</IfModule>
# ispCP SQL Managment
AuthOrder mod_sql.c
# Activate for proftpd >= 1.3
SQLBackend mysql
SQLAuthTypes Crypt
SQLAuthenticate on
SQLConnectInfo ispcp@localhost vftp <PassRausGenommen>
SQLUserInfo ftp_users userid passwd uid gid homedir shell
SQLGroupInfo ftp_group groupname gid members
SQLMinUserUID 10000
SQLMinUserGID 10000
# A basic anonymous configuration, no upload directories.
# <Anonymous ~ftp>
# User ftp
# Group nogroup
# # We want clients to be able to login with "anonymous" as well as "ftp"
# UserAlias anonymous ftp
# # Cosmetic changes, all files belongs to ftp user
# DirFakeUser on ftp
# DirFakeGroup on ftp
#
# RequireValidShell off
#
# # Limit the maximum number of anonymous logins
# MaxClients 10
#
# # We want 'welcome.msg' displayed at login, and '.message' displayed
# # in each newly chdired directory.
# DisplayLogin welcome.msg
# DisplayFirstChdir .message
#
# # Limit WRITE everywhere in the anonymous chroot
# <Directory *>
# <Limit WRITE>
# DenyAll
# </Limit>
# </Directory>
#
# # Uncomment this if you're brave.
# # <Directory incoming>
# # # Umask 022 is a good standard umask to prevent new files and dirs
# # # (second parm) from being group and world writable.
# # Umask 022 022
# # <Limit READ WRITE>
# # DenyAll
# # </Limit>
# # <Limit STOR>
# # AllowAll
# # </Limit>
# # </Directory>
#
# </Anonymous>
Include /etc/proftpd/ispcp/*
#3 - Proftpd Debug Modus - StartUp
proftpd-debug-startup.txt
#4 - Proftpd Debug Modus - FTP Interaktion
nutzer-interaktion.txt
Code:
ftp> open aerisdesign.de
Verbindung mit aerisdesign.de wurde hergestellt.
220 ProFTPD 1.3.3a Server (h896586.serverkompetenz.net) [81.169.156.130]
Benutzer (aerisdesign.de:(none)): plexx@aerisdesign.de
331 Password required for plexx@aerisdesign.de
Kennwort:
230 User plexx@aerisdesign.de logged in
ftp> dir
200 PORT command successful
150 Opening ASCII mode data connection for file list
226 Transfer complete
ftp> cd plexx
550 plexx: No such file or directory
ftp>
Ich hab wirklich keinen Schimmer woran es liegen kann, dass er kein vernüftiges Dir Listing angezeigt bekommt. besonders weil die fullpath auflösung einen korrekten pfad zurück liefert, im ftp programm jedoch "no such file or directory" kommt.
Die zugehörigen table in der datenbank also ftp_user und ftp_group sind angelegt und auch ordnungsgemäß befüllt. ich glaube sonst würd der login ja auch nicht funktionieren. Gleiches gilt auch für die ordnungsgemäße install der mod_sql - wenn die nicht geladen wäre könnte ich mich ja kaum einloggen oder?
In der oben geposteten proftpd.conf gibts die folgenden einstellungen:
# Set the user and group that the server normally runs at.
User nobody
Group nogroup
dachte, dass es vielleicht daran liegt. Aber auch eine testweise änderung auf root/root hat nichts geändert.
Hoffe ihr könnt mir weiterhelfen!
Gruß