Current time: 11-17-2024, 08:18 AM Hello There, Guest! (LoginRegister)


Thread Closed 
 
Thread Rating:
  • 0 Votes - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
[ERLEDIGT]ProftpD User aus passwd und mySQL ?
Author Message
Mazze Offline
Junior Member
*

Posts: 39
Joined: Feb 2009
Reputation: 0
Post: #1
[ERLEDIGT]ProftpD User aus passwd und mySQL ?
Hi,

wie kann ich ProftpD sagen das er user aus der passwd raus nehmen soll und die für ISPCP aus der mySQL DB ? Da ich 3 User mit Homeverzeichniss angelegt habe die aber kein FTP zugang bestitzen.

Vg.
Marcel

PS: Alles standart gelassen hier mal die proftpd.conf:

Code:
#
# ispCP ω (OMEGA) a Virtual Hosting Control System
#
# @copyright    2001-2006 by moleSoftware GmbH
# @copyright    2006-2009 by ispCP | http://isp-control.net
# @version        SVN: $Id: proftpd1.3.conf.lenny 1871 2009-07-28 13:14:57Z nuxwin $
# @link            http://isp-control.net
# @author        ispCP Team
#
# @license
#   This program is free software; you can redistribute it and/or modify it under
#   the terms of the MPL General Public License as published by the Free Software
#   Foundation; either version 1.1 of the License, or (at your option) any later
#   version.
#   You should have received a copy of the MPL Mozilla Public License along with
#   this program; if not, write to the Open Source Initiative (OSI)
#   http://opensource.org | osi@opensource.org
#
################################################################################​
# Includes DSO modules (this is mandatory in proftpd 1.3)
Include /etc/proftpd/modules.conf

# Set off to disable IPv6 support which is annoying on IPv4 only boxes.
UseIPv6                    off

AllowForeignAddress         on
UseIPv6             off

ServerName                 "srv01.gms24.info"
ServerType                 standalone
DeferWelcome               off

MultilineRFC2228           on
DefaultServer              on
ShowSymlinks               on

AllowStoreRestart          on
AllowForeignAddress        on

LogFormat                  traff "%b %u"

TimeoutLogin               120
TimeoutNoTransfer          600
TimeoutStalled             600
TimeoutIdle                1200

DisplayLogin               welcome.msg
DisplayChdir          message

ListOptions                "-l"
#LsDefaultOptions           "-l"

DenyFilter                 \*.*/


# Uncomment this if you are using NIS or LDAP to retrieve passwords:
# PersistentPasswd         off

# Port 21 is the standard FTP port.
Port                       21

# In some cases you have to specify passive ports range to by-pass
# firewall limitations. Ephemeral ports can be used for that, but
# feel free to use a more narrow range.
#PassivePorts               49152 65534

# To prevent DoS attacks, set the maximum number of child processes
# to 30.  If you need to allow more than 30 concurrent connections
# at once, simply increase this value.  Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances               30

# Set the user and group that the server normally runs at.
User                       nobody
Group                      nogroup

# Normally, we want files to be overwriteable.
<Directory /*>
  # Umask 022 is a good standard umask to prevent new files and dirs
  # (second parm) from being group and world writable.
  Umask                    022  022
  # Normally, we want files to be overwriteable.
  AllowOverwrite           on
  HideNoAccess             on
</Directory>

<Limit ALL>
  IgnoreHidden             on
</Limit>

# Be warned: use of this directive impacts CPU average load!
#
# Uncomment this if you like to see progress and transfer rate with ftpwho
# in downloads. That is not needed for uploads rates.
# UseSendFile               off

<Global>
  RootLogin                off
  TransferLog              /var/log/proftpd/xferlog
  ExtendedLog              /var/log/proftpd/ftp_traff.log read,write traff
  PathDenyFilter           "\.quota$"
</Global>

# Loading required modules
<IfModule !mod_sql.c>
  LoadModule               mod_sql.c
  AuthOrder                mod_sql.c
</IfModule>
<IfModule !mod_sql_mysql.c>
  LoadModule               mod_sql_mysql.c
</IfModule>
<IfModule !mod_quotatab.c>
  LoadModule               mod_quotatab.c
</IfModule>
<IfModule !mod_quotatab_sql.c>
  LoadModule               mod_quotatab_sql.c
</IfModule>


#
# SSL via TLS
#
#<IfModule mod_tls.c>
#  TLSEngine                off                           # on for use of TLS
#  TLSLog                   /var/log/proftpd/ftp_ssl.log  # where to log to
#  TLSProtocol              SSLv23                        # SSLv23 or TLSv1
#  TLSOptions               NoCertRequest                 # either to request the certificate or not
#  TLSRSACertificateFile    /etc/proftpd/ssl.crt          # SSL certfile
#  TLSRSACertificateKeyFile /etc/proftpd/ssl.key          # SSL keyfile
#  TLSVerifyClient          off                           # client verification
#</IfModule>

#
# ISPCP Quota management;
#
<IfModule mod_quotatab.c>
  QuotaEngine              on
  QuotaShowQuotas          on
  QuotaDisplayUnits        Mb

  SQLNamedQuery            get-quota-limit SELECT "name, quota_type, per_session, limit_type, bytes_in_avail, bytes_out_avail, bytes_xfer_avail, files_in_avail, files_out_avail, files_xfer_avail FROM quotalimits WHERE name = '%{0}' AND quota_type = '%{1}'"
  SQLNamedQuery            get-quota-tally SELECT "name, quota_type, bytes_in_used, bytes_out_used, bytes_xfer_used, files_in_used, files_out_used, files_xfer_used FROM quotatallies WHERE name = '%{0}' AND quota_type = '%{1}'"
  SQLNamedQuery            update-quota-tally UPDATE "bytes_in_used = bytes_in_used + %{0}, bytes_out_used = bytes_out_used + %{1}, bytes_xfer_used = bytes_xfer_used + %{2}, files_in_used = files_in_used + %{3}, files_out_used = files_out_used + %{4}, files_xfer_used = files_xfer_used + %{5} WHERE name = '%{6}' AND quota_type = '%{7}'" quotatallies
  SQLNamedQuery            insert-quota-tally INSERT "%{0}, %{1}, %{2}, %{3}, %{4}, %{5}, %{6}, %{7}" quotatallies

  QuotaLock                /var/run/proftpd/tally.lock
  QuotaLimitTable          sql:/get-quota-limit
  QuotaTallyTable          sql:/get-quota-tally/update-quota-tally/insert-quota-tally
</IfModule>

<IfModule mod_ratio.c>
  Ratios                   on
</IfModule>

# Delay engine reduces impact of the so-called Timing Attack described in
# http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02
# It is on by default.
<IfModule mod_delay.c>
  DelayEngine              on
</IfModule>

<IfModule mod_ctrls.c>
  ControlsEngine           on
  ControlsMaxClients       2
  ControlsLog              /var/log/proftpd/controls.log
  ControlsInterval         5
  ControlsSocket           /var/run/proftpd/proftpd.sock
</IfModule>

<IfModule mod_ctrls_admin.c>
  AdminControlsEngine      on
</IfModule>

# ispCP SQL Managment
SQLBackend                 mysql
SQLAuthTypes               Crypt
SQLAuthenticate            on
SQLConnectInfo             ispcp@localhost vftp *HIDDENbyBeNe*
SQLUserInfo                ftp_users userid passwd uid gid homedir shell
SQLGroupInfo               ftp_group groupname gid members
SQLMinUserUID              2000
SQLMinUserGID              2000

# A basic anonymous configuration, no upload directories.

# <Anonymous ~ftp>
#   User                   ftp
#   Group                  nogroup
#   # We want clients to be able to login with "anonymous" as well as "ftp"
#   UserAlias              anonymous ftp
#   # Cosmetic changes, all files belongs to ftp user
#   DirFakeUser            on ftp
#   DirFakeGroup           on ftp
#
#   RequireValidShell      off
#
#   # Limit the maximum number of anonymous logins
#   MaxClients             10
#
#   # We want 'welcome.msg' displayed at login, and '.message' displayed
#   # in each newly chdired directory.
#   DisplayLogin           welcome.msg
#   DisplayFirstChdir      .message
#
#   # Limit WRITE everywhere in the anonymous chroot
#   <Directory *>
#     <Limit WRITE>
#       DenyAll
#     </Limit>
#   </Directory>
#
#   # Uncomment this if you're brave.
#   # <Directory incoming>
#   #   # Umask 022 is a good standard umask to prevent new files and dirs
#   #   # (second parm) from being group and world writable.
#   #   Umask              022  022
#   #   <Limit READ WRITE>
#   #     DenyAll
#   #   </Limit>
#   #   <Limit STOR>
#   #     AllowAll
#   #   </Limit>
#   # </Directory>
#
# </Anonymous>
Include /etc/proftpd/ispcp/*
AllowOverwrite on
UseReverseDNS off
IdentLookups off
DefaultRoot ~
(This post was last modified: 10-08-2009 07:29 AM by ZooL.)
08-27-2009 04:47 PM
Find all posts by this user
BeNe Offline
Moderator
*****
Moderators

Posts: 5,899
Joined: Jan 2007
Reputation: 68
Post: #2
RE: ProftpD User aus passwd und mySQL ?
Dazu musst Du das PAM-Module einschalten.
Am besten dann mal debuggen ob er auch PAM-Usern sucht.
Sonst legst die User halt in der ispCP DB selber an und nutzt nach wie vor nur die DB.

Greez BeNe
08-27-2009 05:13 PM
Visit this user's website Find all posts by this user
Mazze Offline
Junior Member
*

Posts: 39
Joined: Feb 2009
Reputation: 0
Post: #3
RE: ProftpD User aus passwd und mySQL ?
bene wenn ich in der db gehe und ein user anlege und sag z.B. das verzeischniss /home/defcon/server/ dann zeigt er mir nur die inhalte an aber keine ordner !!! Darum dachte ich das ich den vom interface angelegten user aus der passwd nehme. dachte ich mir
08-28-2009 05:58 PM
Find all posts by this user
BeNe Offline
Moderator
*****
Moderators

Posts: 5,899
Joined: Jan 2007
Reputation: 68
Post: #4
RE: ProftpD User aus passwd und mySQL ?
Und was sagt der Debug dazu ?
Wahrscheinlich wrong UID/GID oder Permissions denied ?!
Ich weis nicht ob das PAM-Modul per default läuft. Würde ich mal in der modules.conf prüfen und dann einfach mal testen.

Greez BeNe
08-28-2009 06:05 PM
Visit this user's website Find all posts by this user
Mazze Offline
Junior Member
*

Posts: 39
Joined: Feb 2009
Reputation: 0
Post: #5
RE: ProftpD User aus passwd und mySQL ?
hmm also ich google mich dumm und dämmlich aber finde keine seite wo ich das auth_mod_pam finde.

kann mir da mal wer weiter helfen, unter apt-cache search proftpd pam zeigt er auch nichts an
08-30-2009 06:47 PM
Find all posts by this user
grisu Offline
Junior Member
*

Posts: 64
Joined: Jun 2009
Reputation: 0
Post: #6
RE: ProftpD User aus passwd und mySQL ?
Hallo

Bei mir ist es standardmässig ENABLED. Also kann problemlos zusätzlich mit shell-user einloggen, ohne etwas geändert zu haben. Du kannst ja mal suchen, ob die auth_Order direktive das irgendwie verhindert und mod_auth_unix bzw. allenfalls mod_auth_pam nicht berücksichtigt werden... (was bei mir eben nicht der fall ist).
Hier findest du weitere Infos:
http://www.castaglia.org/proftpd/doc/con...html#order
(This post was last modified: 09-01-2009 08:57 PM by grisu.)
09-01-2009 08:56 PM
Find all posts by this user
Mazze Offline
Junior Member
*

Posts: 39
Joined: Feb 2009
Reputation: 0
Post: #7
RE: ProftpD User aus passwd und mySQL ?
grisu schaut aus als würde es am fehlenden auth_unix fehlen.

nur wenn ich das suche:

RT0173:~# apt-cache search proftpd-mod
proftpd - versatile, virtual-hosting FTP daemon
proftpd-basic - versatile, virtual-hosting FTP daemon - binaries
proftpd-mod-ldap - versatile, virtual-hosting FTP daemon - LDAP module
proftpd-mod-mysql - versatile, virtual-hosting FTP daemon - MySQL module
proftpd-mod-pgsql - versatile, virtual-hosting FTP daemon - PostgreSQL module
RT0173:~#

findet er das nicht. hat mal wer einen apt-source server das ich den mod bekommeo der eine url wo ich das dingen finde ? ich glaube ich oder google ist zu doof das modul zu finden. habe es auch nicht in /usr/lib/proftpd.. drin stehen als mod.
09-03-2009 03:17 AM
Find all posts by this user
Mazze Offline
Junior Member
*

Posts: 39
Joined: Feb 2009
Reputation: 0
Post: #8
RE: ProftpD User aus passwd und mySQL ?
keiner einen server ?
09-05-2009 11:11 PM
Find all posts by this user
ZooL Offline
Moderator
*****
Moderators

Posts: 3,429
Joined: Jan 2007
Reputation: 79
Post: #9
RE: ProftpD User aus passwd und mySQL ?
schnüffel doch mal hier Wink

Auth Informationen

Wink

greetz
09-06-2009 06:02 PM
Visit this user's website Find all posts by this user
Mazze Offline
Junior Member
*

Posts: 39
Joined: Feb 2009
Reputation: 0
Post: #10
RE: ProftpD User aus passwd und mySQL ?
Das problem ist ja das ich erstmal nur die Module suche. Die muss ich doch irrgendwie installiert bekommen. das configurieren in der config später klappt. nur halt das modul installen schaffe ich nicht Sad Jemand eine IDEE ? Ode rein ausführliches HowTo ? Weil sonst komme ich einfach nicht weiter Sad
(This post was last modified: 09-30-2009 11:28 PM by Mazze.)
09-06-2009 11:41 PM
Find all posts by this user
Thread Closed 


Forum Jump:


User(s) browsing this thread: 2 Guest(s)