Hi Pedram,
Sorry for the missing attachment. I think the network server dropped it for
some reasons. I'll copy the config file below.
Basically I set up a DHCP server along with a FTP server (on the same box),
so when our SUT is booted, it'll get ip address and the FTP serve ip address
from the DHCP server. Then it'll download the required configuration file
from the FTP server.
I had the PURE-FTPD set up but there was no file downloading during SUT
device restart. One guy from the SUT device team thought PURE-FTPD may have
SSL/TLS enabled while the SUT device doesn't support SSL/TLS yet and he
wanted to set up another FTP server which functions under "normal" condition
i.e. without SSL/TLS being enabled.
That was the background story. I've confirmed that the "normal" and "secure"
categories that were mentioned by the person were related to the SSL/TLS.
I'm trying to figure out why the file downloading not happening with
PURE-FTPD? BTW, we have another DHCP server running with Redhat Linux and
the FTP server there is running just fine.
To answer your questions:
a. I can start PURE-FTPD (from Linux CLI) and I can check it's running. I'm
not sure about the virtual user or system user. Do I need to set up
database? I just wanted to set up a FTP server and download the config file
to the device, that's it. I can't afford too much time on this.
b&c. I haven't tried uploading file. But I know downloading file was NOT
working. The very same SUT device could get ip address from the same Linux
box where FTP server is located.
Also, I just installed TFTP server on this Linux box, and it was working
fine i.e. file downloading was okay.
d. Explained above.
Here's the PURE-FTPD configuration file (sorry for the long email):
==========
# Config file for /etc/init.d/pure-ftpd
##Comment variables out to disable its features, or change the values in
it... ##
## This variable must be uncommented in order for the server to start ##
IS_CONFIGURED="yes"
## FTP Server,Port (separated by comma) ##
## If you prefer host names over IP addresses, it's your choice :
## SERVER="-S ftp.rtchat.com,21"
## IPv6 addresses are supported.
## !!! WARNING !!!
## Using an invalid IP will result in server not starting and reporting
## a good start. Work is being done to solve that in:
## http://bugs.gentoo.org/show_bug.cgi?id=75861
#SERVER="-S 192.168.0.1,21"
SERVER="-S 70.150.217.199,21"
## Number of simultaneous connections in total, and per ip ##
MAX_CONN="-c 30"
MAX_CONN_IP="-C 10"
## Start daemonized in background ##
DAEMON="-B"
## Don't allow uploads if the partition is more full then this var ##
DISK_FULL="-k 90%"
## If your FTP server is behind a NAT box, uncomment this ##
#USE_NAT="-N"
## Authentication (others are 'pam', ...)##
## Further infos in the README file.
AUTH="-l unix"
## Change the maximum idle time. (in minutes. default 15)
#TIMEOUT="-I <timeout>'"
## Use that facility for syslog logging. It defaults to 'ftp'
## Logging can be disabled with '-f none' .
#LOG="-f facility"
## Misc. Others ##
MISC_OTHER="-Y 0 -A -x -j -R -B"
#
# Use these inside $MISC_OTHER
# More can be found on "http://pureftpd.sourceforge.net/README"
#
# -A [ chroot() everyone, but root ]
# -e [ Only allow anonymous users ]
# -E [ Only allow authenticated users. Anonymous logins are prohibited. ]
# -i [ Disallow upload for anonymous users, whatever directory perms are ]
# -j [ If the home directory of a user doesn't exist, auto-create it ]
# -M [ Allow anonymous users to create directories. ]
# -R [ Disallow users (even non-anonymous ones) usage of the CHMOD command ]
# -x [ In normal operation mode, authenticated users can read/write
# files beginning with a dot ('.'). Anonymous users can't, for
security reasons
# (like changing banners or a forgotten .rhosts). When '-x' is used,
authenticated
# users can download dot-files, but not overwrite/create them, even
if they own
# them. ]
# -X [ This flag is identical to the previous one (writing
# dot-files is prohibited), but in addition, users can't even *read*
files and
# directories beginning with a dot (like "cd .ssh"). ]
# -D [ List files beginning with a dot ('.') even when the client doesn't
# append the '-a' option to the list command. A workaround for badly
# configured FTP clients. ]
# -G [ Disallow renaming. ]
# -d [ Send various debugging messages to the syslog. ONLY for DEBUG ]
# -F <fortune file> [ Display a fortune cookie on login. Check the README
file ]
# -H [ By default, fully-qualified host names are logged. The '-H' flag
avoids host names resolution. ]
==========
-----Original Message-----
Sent: Tuesday, January 10, 2006 4:27 PM
Subject: RE: [pureftpd] Question on PURE-FTP
Hi Jim,
As I said I'm unsure as to what you meant, and yes you are
right. ssl/tls will be disabled by default and unless you
have configured it will not be enabled (btw I didn't get any
attachments from you)
could you explain what you are trying to do again? what is
failing? you mentioned "why couldn't PURE-FTPD download the
file that I was expecting?" what file?
a) are you able to start pure-ftpd and login to it (do you
have virtual users or system users)
b) are you able to upload files to your ftp?
c) are you able to download files off the ftp?
d) get the individual who made the comment about 'secure' and
'normal' to elaborate on his comment.
-----Original Message-----
Sent: Tuesday, January 10, 2006 3:27 PM
Subject: RE: [pureftpd] Question on PURE-FTP
Hi Pedram,
Thanks for the info.
1. By reading http://www.pureftpd.org/README.TLS, it seems
that PURE-FTPD will disable the SSL/TLS by default i.e. my
system should NOT have SSL/TLS enabled (to the best of my
knowledge) unless specifically done by someone.
2. Even with --tls=1/2 added, but without the SSL security
certificate, SSL/TLS should not be able to function as
designed i.e. the PURE-FTPD will function as non-secured.
3. With 1) and 2) being ruled out (is my assumption
correct?), why couldn't PURE-FTPD download the file that I
was expecting? Do I miss the directory path for the PURE-FTPD
to locate the file? The config file doesn't include this
info. Is /var/ftp the default FTP directory for PURE-FTPD?
I've attached the PURE-FTPD config file, please take a look
if I missed anything.
Many thanks.
Jim
-----Original Message-----
Sent: Monday, January 09, 2006 5:48 PM
Subject: RE: [pureftpd] Question on PURE-FTP
When you talk about normal and secure only two things come to mind.
Normal: no encryption
Secure: with encryption
a) SSL/TLS encryption layer disabled (default)
b) accepts both none encrypted and encrypted sessions
c) only accepts SSL/TLS sessions
from what you have mentioned, you may have compiled PURE-FTPD with
(--with-tls)
and you are running PURE-FTPD with (--tls=2)
if this is so, you can fix the problem by running PURE-FTPD with
--tls=1 or 0 (http://www.pureftpd.org/README.TLS for more info)
or if you are running PURE-FTPD with the config file
(/usr/local/etc/pure-ftpd.config) Scroll down, and change the
TLS 2
to
TLS 0 or 1 (review the above page)
I hope that helped, I was unclear as to what you meant by normal I
only assumed you meant this.
-----Original Message-----
Sent: Monday, January 09, 2006 5:23 PM
To: 'DervishD'
Subject: RE: [pureftpd] Question on PURE-FTP
Hi Folks,
First of all, thanks for the reply.
I got the PURE-FTPD set up and somebody told me that one of our
devices only supports "normal" login and file transfer vs
the "secure"
way. So unless I could find a way to change the PURE-FTPD
to "normal"
category, I would not be able to continue my work with the
PURE-FTPD.
(I've sent out email to the person who used the terms and
haven't got
reply yet. Here is the excerpt which the "normal"
and "secure" categories were first mentioned: "The login and file
transfer is divided into two categories ..secure and normal.")
Please let me know if this helps to clarify.
I'm going through RFC959 to see if the document can shed some light.
Thanks again for the help.
Jim
-----Original Message-----
Sent: Monday, January 09, 2006 5:05 PM
To: Jim Li
Subject: Re: [pureftpd] Question on PURE-FTP
Hi Jim :)
Could anyone help me on if PURE-FTPD supports "normal" mode
in terms
of login and file transfer? I.e. does PURE-FTPD support
only the
"secure" mode?
I don't know what you mean with "normal" and "secure"
mode. Can you ellaborate on that? Probably there's a way of using
"normal" mode in pure-ftpd (although it may involve
patching), but I
need to know what do you mean by "normal"
and "secure" modes ;)
Raúl Núñez de Arenas Coronado
--
Linux Registered User 88736 | http://www.dervishd.net
http://www.pleyades.net & http://www.gotesdelluna.net It's
my PC and
I'll cry if I want to...
---------------------------------------------------------------------
---------------------------------------------------------------------
---------------------------------------------------------------------
---------------------------------------------------------------------
---------------------------------------------------------------------
To post a new message, e-mail: ***@pureftpd.org
To unsubscribe, e-mail: list-***@pureftpd.org
For additional commands, e-mail: list-***@pureftpd.org