ftp problem

Discussion in 'Installation/Configuration' started by mikej, Jul 22, 2012.

Thread Status:
Not open for further replies.
  1. mikej

    mikej New Member

    Having a problem after creating an FTP user it is not allowing it to log in.

    This is a Virtual server
    this is from the auth log.

    Jul 22 15:32:02 web sshd[1988]: input_userauth_request: invalid user wolfordrealty [preauth]
    Jul 22 15:32:02 web sshd[1988]: pam_unix(sshd:auth): check pass; user unknown
    Jul 22 15:32:02 web sshd[1988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.1.15.2
    Jul 22 15:32:05 web sshd[1988]: Failed password for invalid user wolfordrealty from 10.1.15.2 port 1861 ssh2
    Jul 22 15:32:05 web sshd[1988]: fatal: Read from socket failed: Connection reset by peer [preauth]


    I checked in the databse ftp users and the user is there.

    I tried deleting and remaking the user in ispconfig and still same results.
     
  2. Ben

    Ben Active Member Moderator

    Are you talking about ftp or ssh? As you can see, the log entries are reported by your ssh deamon.

     
  3. mikej

    mikej New Member

    We;; ot seems the ftp server won;t even start , here is the error when I try and restart the service



    root@web:/# service pure-ftpd-mysql restart
    Restarting ftp server: /usr/sbin/pure-ftpd-wrapper: Invalid configuration file /etc/pure-ftpd/conf/DEADJOE: No corresponding directive
    root@web:/#
     
  4. Ben

    Ben Active Member Moderator

    What did you already do to solve the error? E.g. checking what the error message "No corresponding directive" means and afterwards what's inside the file "/etc/pure-ftpd/conf/DEADJOE".
     
  5. mikej

    mikej New Member

    well after lookin at that file a second time, first time i did not see what it shows now, it seems that was just a file made from a bad session. So I removed the file. but now I am getting this error in the syslog.


    Jul 24 07:28:16 web pure-ftpd: (?@?) [ERROR] Sorry, but that file doesn't exist: [/etc/ssl/private/pure-ftpd.pem]


    checked on it and it is there. I had put in the free SSL from startcom and linked the pure-ftpd.pem to the main .pem file like the instructions said.
     
  6. falko

    falko Super Moderator Howtoforge Staff

    What's the output of
    Code:
    ls -la /etc/ssl/private/
    ?
     
  7. mikej

    mikej New Member

    Here is the info

    drwx--x--- 2 root ssl-cert 4096 Jul 21 08:59 .
    drwxr-xr-x 4 root root 4096 Jul 18 07:11 ..
    lrwxrwxrwx 1 root root 48 Jul 21 08:59 pure-ftpd.pem -> /usr/local/ispconfig/interface/ssl/ispserver.pem
    -rw------- 1 root root 3119 Jul 18 11:55 pure-ftpd.pem_bak
    -rw-r----- 1 root ssl-cert 1704 Jul 18 11:35 ssl-cert-snakeoil.key
     
  8. falko

    falko Super Moderator Howtoforge Staff

    What's the output of
    Code:
    ls -la /usr/local/ispconfig/interface/ssl/
    ?
     
  9. mikej

    mikej New Member

    Here is the info


    root@web:/home/svicweb# ls -la /usr/local/ispconfig/interface/ssl/
    total 44
    drwxr-x--- 2 ispconfig ispconfig 4096 Jul 19 20:22 .
    drwxr-x--- 7 ispconfig ispconfig 4096 Jul 18 12:40 ..
    -rw-r--r-- 1 root root 2857 Jul 19 20:21 ispserver.crt
    -rwxr-x--- 1 ispconfig ispconfig 2110 Jul 19 19:16 ispserver.crt_bak
    -rwxr-x--- 1 ispconfig ispconfig 1740 Jul 19 19:20 ispserver.csr
    -rwxr-x--- 1 ispconfig ispconfig 3272 Jul 19 19:20 ispserver.key
    -rwxr-x--- 1 ispconfig ispconfig 3311 Jul 19 19:13 ispserver.key.secure
    -rw------- 1 root root 0 Jul 24 17:14 ispserver.pem
    -rw-r--r-- 1 root root 2760 May 6 2008 startssl.ca.crt
    -rw-r--r-- 1 root root 4972 Jul 19 20:22 startssl.chain.class1.server.crt
    -rw-r--r-- 1 root root 2212 Apr 17 2010 startssl.sub.class1.server.ca.crt
     
  10. falko

    falko Super Moderator Howtoforge Staff

    The file is empty.
     
  11. mikej

    mikej New Member

    so i reset up the pem file and now am getting this error



    Aug 3 22:29:24 web pure-ftpd: (?@?) [ERROR] SSL/TLS [/etc/ssl/private/pure-ftpd.pem](240): error:0906D06C:pEM routines:pEM_read_bio:no start line
     
  12. mikej

    mikej New Member

    I redid the pure-ftpd.pem sym link and now getting this error


    Aug 3 22:42:19 web pure-ftpd: (?@?) [ERROR] Sorry, but that file doesn't exist: [/etc/ssl/private/pure-ftpd.pem]
     
  13. mikej

    mikej New Member

    removed all my mistakes again and redid the pure ftp sym link here is the outputs


    root@web:/etc/ssl/private# ls -la /etc/ssl/private/
    total 16
    drwx--x--- 2 root ssl-cert 4096 Aug 3 22:48 .
    drwxr-xr-x 4 root root 4096 Jul 18 07:11 ..
    lrwxrwxrwx 1 root root 48 Aug 3 22:48 pure-ftpd.pem -> /usr/local/ispconfig/interface/ssl/ispserver.pem
    -rw------- 1 root root 3119 Jul 18 11:55 pure-ftpd.pem_bak
    -rw-r----- 1 root ssl-cert 1704 Jul 18 11:35 ssl-cert-snakeoil.key
    root@web:/etc/ssl/private#


    root@web:/etc/ssl/private# ls -la /usr/local/ispconfig/interface/ssl/
    total 56
    drwxr-x--- 2 ispconfig ispconfig 4096 Aug 3 22:47 .
    drwxr-x--- 7 ispconfig ispconfig 4096 Jul 18 12:40 ..
    -rw-r--r-- 1 root root 2857 Jul 19 20:21 ispserver.crt
    -rwxr-x--- 1 ispconfig ispconfig 2110 Jul 19 19:16 ispserver.crt_bak
    -rwxr-x--- 1 ispconfig ispconfig 1740 Jul 19 19:20 ispserver.csr
    -rwxr-x--- 1 ispconfig ispconfig 3272 Jul 19 19:20 ispserver.key
    -rwxr-x--- 1 ispconfig ispconfig 3311 Jul 19 19:13 ispserver.key.secure
    -rw------- 1 root root 11101 Aug 3 22:32 ispserver.pem
    -rw-r--r-- 1 root root 2760 May 6 2008 startssl.ca.crt
    -rw-r--r-- 1 root root 4972 Jul 19 20:22 startssl.chain.class1.server.crt
    -rw-r--r-- 1 root root 2212 Apr 17 2010 startssl.sub.class1.server.ca.crt


    and the error in syslog

    Aug 3 22:52:19 web pure-ftpd: (?@?) [ERROR] Sorry, but that file doesn't exist: [/etc/ssl/private/pure-ftpd.pem]

    any help appreciated.
     
  14. mikej

    mikej New Member

    Still having issue if anyone has any advice
     
  15. falko

    falko Super Moderator Howtoforge Staff

    I'm sorry, but I have no more ideas... :(
     
  16. deisle

    deisle New Member

    I received the "PEM_read_bio:no start line" error when I did not include the private key in the pure-ftpd.pem file.
    Pure FTP expects the pem file to be named pure-ftpd.pem and to include the private key. Mine uses the following format with a Digicert public certificate:
    -----BEGIN RSA PRIVATE KEY-----
    <the private key that you created for pure-ftp>
    -----END RSA PRIVATE KEY-----
    -----BEGIN CERTIFICATE-----
    <server certificate>
    -----END CERTIFICATE-----
    -----BEGIN CERTIFICATE-----
    <Digicert Intermediate CA (DigicertCA.crt)>
    -----END CERTIFICATE-----
    -----BEGIN CERTIFICATE-----
    <Root CA (TrustedRoot.crt)>
    -----END CERTIFICATE-----
    Probably too late for this thread, but hope this helps others.
     
  17. zbuzanic

    zbuzanic Member

    Old thread but the problem is with ispserver.pem file as I had this too, mine problem was one line:
    -----END RSA PRIVATE KEY----- -----BEGIN CERTIFICATE-----
    I just added one enter and then it worked fine:
    -----END RSA PRIVATE KEY-----
    -----BEGIN CERTIFICATE-----
     
  18. PedroClemo

    PedroClemo New Member

    Really old thread I know but Google led me here.

    I too was getting (?@?) [ERROR] Sorry, but that file doesn't exist: [/etc/ssl/private/pure-ftpd.pem] after installing an updated cert on my RPi and eventually realised it was a formatting error within the file itself.

    I create my PEM like this (and the symlink to '/etc/ssl/private/pure-ftpd.pem'):

    sudo bash -c 'cat /etc/ssl/certs/comodo/domain.key /etc/ssl/certs/comodo/domain.crt /etc/ssl/certs/comodo/domain.ca > /etc/ssl/certs/comodo/domain.pem'

    However for some reason this resulted in the cert and ca cert starting and ending on the same line:
    -----END CERTIFICATE----------BEGIN CERTIFICATE-----
    Once I put a return between them and restarted Pure FTP, everything was fine.
     
  19. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    Please create a new thread.
     
Thread Status:
Not open for further replies.

Share This Page