JTM
07-23-2002, 12:28 AM
I just installed proftpd server to replace wuftpd because I want to make sure my server is more secure. I was able to get it started yesterday and connected, but now for some reason I can't get it to start. I have it set up to start through XINETD but for some reason it never does. Can somebody look through my settings and let me know if you can find why it isn't working?
Note: I'm not sure if this is why it isn't working but I do not have any files under /etc/xinetd.d named proftpd. If this could be the problem, how do I get it to show up? I used the default ./configure when installing proftpd.
File: /etc/xinetd.conf
# Simple configuration file for xinetd
#
# Some defaults, and include /etc/xinetd.d/
defaults
{
instances = 25
log_type = FILE /var/log/servicelog
log_on_success = HOST PID
log_on_failure = HOST RECORD
cps = 25 30
}
service ftp
{
disable = no
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/local/sbin/in.proftpd
log_on_success += DURATION USERID
log_on_failure += USERID
nice = 10
bind = MYISPSIPADDRESS
}
service ssh
{
flags = REUSE
protocol = tcp
socket_type = stream
wait = no
user = root
server = /usr/local/sbin/sshd
}
File: /usr/local/etc/proftpd.conf
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.
ServerName "mydomain.com"
ServerType inetd
DefaultServer on
# Port 21 is the standard FTP port.
Port 21
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 30
# Set the user and group that the server normally runs at.
User nobody
Group nobody
# Normally, we want files to be overwriteable.
<Directory /usr/local/private>
AllowOverwrite on
</Directory>
# A basic anonymous configuration, no upload directories.
<Anonymous ~ftp>
User ftp
Group ftp
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous ftp
# Limit the maximum number of anonymous logins
MaxClients 25
# We want 'welcome.msg' displayed at login, and '.message' displayed
# in each newly chdired directory.
DisplayLogin welcome.msg
DisplayFirstChdir .message
# Limit WRITE everywhere in the anonymous chroot
<Limit WRITE>
DenyAll
<Limit WRITE>
DenyAll
</Limit>
</Anonymous>
AllowRetrieveRestart on
AllowStoreRestart on
DefaultTransferMode ascii
IdentLookups off
MaxClients 5
ShowSymlinks on
ShowDotFiles on
AllowOverwrite on
RootLogin off
TimeoutLogin 0
TimeoutNoTransfer 0
TimeoutStalled 0
UseReverseDNS off
Files in.proftpd and proftpd are located in the /usr/sbin directory.
I've tried restarting xinetd with /etc/rc.d/init.d/xinetd restart and it comes up with this error:
/etc/rc.d/init.d/xinetd: config:: command not found
Here's what comes up when I run netstat-at so I know the FTP server is not running:
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 *:mysql *:* LISTEN
tcp 0 0 *:pop3 *:* LISTEN
tcp 0 0 *:10000 *:* LISTEN
tcp 0 0 *:http *:* LISTEN
tcp 0 0 *:ssh *:* LISTEN
tcp 0 0 *:smtp *:* LISTEN
Any ideas?
JTM
Note: I'm not sure if this is why it isn't working but I do not have any files under /etc/xinetd.d named proftpd. If this could be the problem, how do I get it to show up? I used the default ./configure when installing proftpd.
File: /etc/xinetd.conf
# Simple configuration file for xinetd
#
# Some defaults, and include /etc/xinetd.d/
defaults
{
instances = 25
log_type = FILE /var/log/servicelog
log_on_success = HOST PID
log_on_failure = HOST RECORD
cps = 25 30
}
service ftp
{
disable = no
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/local/sbin/in.proftpd
log_on_success += DURATION USERID
log_on_failure += USERID
nice = 10
bind = MYISPSIPADDRESS
}
service ssh
{
flags = REUSE
protocol = tcp
socket_type = stream
wait = no
user = root
server = /usr/local/sbin/sshd
}
File: /usr/local/etc/proftpd.conf
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.
ServerName "mydomain.com"
ServerType inetd
DefaultServer on
# Port 21 is the standard FTP port.
Port 21
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 30
# Set the user and group that the server normally runs at.
User nobody
Group nobody
# Normally, we want files to be overwriteable.
<Directory /usr/local/private>
AllowOverwrite on
</Directory>
# A basic anonymous configuration, no upload directories.
<Anonymous ~ftp>
User ftp
Group ftp
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous ftp
# Limit the maximum number of anonymous logins
MaxClients 25
# We want 'welcome.msg' displayed at login, and '.message' displayed
# in each newly chdired directory.
DisplayLogin welcome.msg
DisplayFirstChdir .message
# Limit WRITE everywhere in the anonymous chroot
<Limit WRITE>
DenyAll
<Limit WRITE>
DenyAll
</Limit>
</Anonymous>
AllowRetrieveRestart on
AllowStoreRestart on
DefaultTransferMode ascii
IdentLookups off
MaxClients 5
ShowSymlinks on
ShowDotFiles on
AllowOverwrite on
RootLogin off
TimeoutLogin 0
TimeoutNoTransfer 0
TimeoutStalled 0
UseReverseDNS off
Files in.proftpd and proftpd are located in the /usr/sbin directory.
I've tried restarting xinetd with /etc/rc.d/init.d/xinetd restart and it comes up with this error:
/etc/rc.d/init.d/xinetd: config:: command not found
Here's what comes up when I run netstat-at so I know the FTP server is not running:
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 *:mysql *:* LISTEN
tcp 0 0 *:pop3 *:* LISTEN
tcp 0 0 *:10000 *:* LISTEN
tcp 0 0 *:http *:* LISTEN
tcp 0 0 *:ssh *:* LISTEN
tcp 0 0 *:smtp *:* LISTEN
Any ideas?
JTM