Hi All, Maybe someone can help me out with this? Upgraded to newest version if ISPConfig today. At the same time (just before the upgrade actually) I changed IP addresses on the machine to those of the running environment. Prior to the upgrade (from 2.0.8 to 2.1.0) I could access the machine with the new addresses etc. As I was only running tests sites prior I had deleted all the sites before the upgrade as well. I then performed the upgrade to ISPConfig. It all seemed to go fine. I log in and create a new site and admin user for the site. This is where my problems start. I can no longer access the server with FTP or Web FTP. I get a login failed error. I tried FTP localhost from the Suse 9.3 box and I get a response. I put in the user and password and I get an error. I even tried the root user and password. Same response. 530 login incorrect ftp:Login failed. I can log into the Suse machine with root just fine. I can see the web site admin user in YAST2. I change passwords in YAST2 and still cannot log into FTP? Anyone know what might need to be done here? I really cannot see why I cannot get into ProFTP remotely or from the local machine with any valid user? Regards Sid
Have you checked the logfiles for errors? In case of proftpd the interesting logs are syslog and xferlog. Have you chnaged your IP Address in ISPConfig under Management > Server > Settings?
FTP Probs I did change the IP in Management > Server > Settings. I also made sure my additional address was correct as was in the Adapter Setup in YAST2. This is my Proftpd.conf file # This is a basic ProFTPD configuration file (rename it to # 'proftpd.conf' for actual use. It establishes a single server # and a single anonymous login. It assumes that you have a user/group # "nobody" and "ftp" for normal operation and anon. ServerName "ProFTPD Default Installation" ServerType standalone DefaultServer on # Port 21 is the standard FTP port. Port 21 # Umask 022 is a good standard umask to prevent new dirs and files # from being group and world writable. Umask 022 # To prevent DoS attacks, set the maximum number of child processes # to 30. If you need to allow more than 30 concurrent connections # at once, simply increase this value. Note that this ONLY works # in standalone mode, in inetd mode you should use an inetd server # that allows you to limit maximum number of processes per service # (such as xinetd). MaxInstances 30 # Set the user and group under which the server will run. User nobody Group nogroup # To cause every FTP user to be "jailed" (chrooted) into their home # directory, uncomment this line. DefaultRoot ~ IdentLookups off ServerIdent on "FTP Server Ready." # Normally, we want files to be overwriteable. AllowOverwrite on # Bar use of SITE CHMOD by default #<Limit SITE_CHMOD> # DenyAll #</Limit> # A basic anonymous configuration, no upload directories. If you do not # want anonymous users, simply delete this entire <Anonymous> section. <Anonymous ~ftp> User ftp Group ftp # We want clients to be able to login with "anonymous" as well as "ftp" UserAlias anonymous ftp # Limit the maximum number of anonymous logins MaxClients 10 # We want 'welcome.msg' displayed at login, and '.message' displayed # in each newly chdired directory. DisplayLogin welcome.msg DisplayFirstChdir .message # Limit WRITE everywhere in the anonymous chroot <Limit WRITE> DenyAll </Limit> </Anonymous> Include /etc/proftpd_ispconfig.conf The messages log shows: (192.168.200.11[192.168.200.11]) - FTP session opened. Oct 24 14:08:24 webserver proftpd[25591]: webserver.domain.com (192.168.200.11[192.168.200.11]) - USER web1_user (Login failed): Invalid shell: '/dev/null' Oct 24 14:08:24 webserver proftpd[25591]: webserver.domain.com (192.168.200.11[192.168.200.11]) - FTP session closed.
The user web1_user has the wrong shell. Have you checked the FTP-Login checkbox in the settings of this website?
Got It It was checked. I unchecked it. Applied Change. Re-checked it and boom - I am in. Thanks a bunch for your help. I was looking all over on this and could not find anything. Thanks for pointing me in the right direction.
Im having problems logging into my ftp outside of ispconfig plz help hi, i get this error message in my log file Apr 26 22:47:14 web proftpd[22175]: 192.168.0.250 (210.211.103.171[210.211.103.171]) - USER pcs_greg (Login failed): Incorrect password. Ive tried unchecking the ftp access and re enabling it and double checking my configs, please somebody help
Maybe you must create the file /etc/pam.d/ftp, as described here for FC 4: http://www.howtoforge.com/perfect_setup_fedora_core_4_p5 However, I didn't need it on FC 5, FTP was working for me right out of the box.
Falko ive made that alteration as you suggested and still get told invalid login with the username and pass i supply it. what else can i do ?
Does Web-FTP work with the same username and password? Are you sure you didn't mix up system users (like web1_someuser) and ISPConfig users (like resellers and customers)?
Hi Falko, Web ftp using isp config works fine with any supplied user name and password. AS soon as i go to a ftp client to login it wont allow it or if i pull up internet explorer and try ftp'ing into my linux box it still wont go.
Hi Falko, thats what i get when i type iptables -l Chain INPUT (policy DROP) target prot opt source destination DROP tcp -- anywhere 127.0.0.0/8 ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT all -- anywhere anywhere DROP all -- BASE-ADDRESS.MCAST.NET/4 anywhere PUB_IN all -- anywhere anywhere PUB_IN all -- anywhere anywhere PUB_IN all -- anywhere anywhere PUB_IN all -- anywhere anywhere DROP all -- anywhere anywhere Chain FORWARD (policy DROP) target prot opt source destination ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED DROP all -- anywhere anywhere Chain OUTPUT (policy ACCEPT) target prot opt source destination PUB_OUT all -- anywhere anywhere PUB_OUT all -- anywhere anywhere PUB_OUT all -- anywhere anywhere PUB_OUT all -- anywhere anywhere Chain INT_IN (0 references) target prot opt source destination ACCEPT icmp -- anywhere anywhere DROP all -- anywhere anywhere Chain INT_OUT (0 references) target prot opt source destination ACCEPT icmp -- anywhere anywhere ACCEPT all -- anywhere anywhere Chain PAROLE (10 references) target prot opt source destination ACCEPT all -- anywhere anywhere Chain PUB_IN (4 references) target prot opt source destination ACCEPT icmp -- anywhere anywhere icmp destination-unreachable ACCEPT icmp -- anywhere anywhere icmp echo-reply ACCEPT icmp -- anywhere anywhere icmp time-exceeded ACCEPT icmp -- anywhere anywhere icmp echo-request PAROLE tcp -- anywhere anywhere tcp dpt:ftp PAROLE tcp -- anywhere anywhere tcp dpt:ssh PAROLE tcp -- anywhere anywhere tcp dpt:smtp PAROLE tcp -- anywhere anywhere tcp dpt:domain PAROLE tcp -- anywhere anywhere tcp dpt:http PAROLE tcp -- anywhere anywhere tcp dpt:hosts2-ns PAROLE tcp -- anywhere anywhere tcp dptop3 PAROLE tcp -- anywhere anywhere tcp dpt:https PAROLE tcp -- anywhere anywhere tcp dpt:ndmp PAROLE tcp -- anywhere anywhere tcp dpt:mysql ACCEPT udp -- anywhere anywhere udp dpt:domain ACCEPT udp -- anywhere anywhere udp dpt:ircd DROP icmp -- anywhere anywhere DROP all -- anywhere anywhere Chain PUB_OUT (4 references) target prot opt source destination ACCEPT all -- anywhere anywhere
That's the ISPConfig firewall, right? What happens if you disable it? What error message do you see in your FTP client?
Please post the output of Code: netstat -tap Please answer this question: What error message do you see in your FTP client?
[root@web ~]# netstat -tap Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address Stat e PID/Program name tcp 0 0 *:mysql *:* LIST EN 1787/mysqld tcp 0 0 *:netbios-ssn *:* LIST EN 7009/smbd tcp 0 0 *:40941 *:* LIST EN 1488/rpc.statd tcp 0 0 *:sunrpc *:* LIST EN 1470/portmap tcp 0 0 *:ndmp *:* LIST EN 2366/perl tcp 0 0 *:hosts2-ns *:* LIST EN 2069/ispconfig_http tcp 0 0 *:ftp *:* LIST EN 24390/proftpd: (acc tcp 0 0 192.168.0.250:domain *:* LIST EN 11304/named tcp 0 0 web.pcspecialist.com:domain *:* LIST EN 11304/named tcp 0 0 *:smtp *:* LIST EN 24480/master tcp 0 0 web.pcspecialist.com.a:rndc *:* LIST EN 11304/named tcp 0 0 *:microsoft-ds *:* LIST EN 7009/smbd tcp 0 0 web.pcspecialist.com.a:smtp web.pcspecialist.com.:38317 TIME _WAIT - tcp 0 0 192.168.0.250:smtp 201-42-215-42.:apparenet-as FIN_ WAIT2 - tcp 0 0 *:imaps *:* LIST EN 1815/dovecot tcp 0 0 *op3s *:* LIST EN 1815/dovecot tcp 0 0 *op3 *:* LIST EN 1815/dovecot tcp 0 0 *:imap *:* LIST EN 1815/dovecot tcp 0 0 *:http *:* LIST EN 11875/httpd tcp 0 0 *:ssh *:* LIST EN 1662/sshd tcp 0 0 localhost:rndc *:* LIST EN 11304/named tcp 0 0 *:https *:* LIST EN 11875/httpd tcp 0 296 ::ffff:192.168.0.250:ssh ::ffff:192.168.0.7:4083 ESTA BLISHED 7277/0 tcp 0 0 ::ffff:192.168.0.250:ssh ::ffff:192.168.:smauth-port ESTA BLISHED 5806/sshd: root@not i keep on getting error 530 and just reprompting for my password and username