| View previous topic :: View next topic |
| Author |
Message |
fatcatserver
n00b
Joined: 11 Nov 2004
Posts: 1
|
 Posted: Thu Nov 11, 2004 12:57 pm Post subject: Proftp use PAM faild !! |
 |
|
Using virtual user for proftp with PAM
After USE="pam" emerge proftpd
Part of proftpd -l result is
| Code: | mod_auth_unix.c
mod_auth_file.c
mod_auth.c
mod_auth_pam.c
|
Part of /etc/proftpd/proftpd.conf
| Code: | RequireValidShell off
AuthPAM on
AuthPAMConfig proftp
|
Virtual user account and password in account.txt
| Code: |
eeeeee
ere
abcdefg
123
|
The db file generate by db4.1_load
command is
| Code: | | db4.1_load -T -f account.txt -t hash account.db |
The PAM config file in /etc/pam.d/proftp
| Code: | auth required /lib/security/pam_listfile.so item=user sense=deny file=/etc/ftpusers onerr=succeed
account required /lib/security/pam_userdb.so db=/etc/proftpd/account
session required /lib/security/pam_pwdb.so |
At server side
Then connect to proftp server. At server side the output debug info is
| Code: | - warning: AuthPAMAuthoritative is deprecated
fatcat - ProFTPD 1.2.10 (stable) (built Sun Nov 7 19:54:39 Local time zone must be set--see zic manual page 2004) standalone mode STARTUP
fatcat (attack[10.0.0.2]) - FTP session opened.
fatcat (attack[10.0.0.2]) - no such user 'abcdefg'
fatcat (attack[10.0.0.2]) - USER abcdefg: no such user found from attack [10.0.0.2] to 10.0.0.1:21 |
That look like the PAM module doesn't find out the username form db file. |
|
| Back to top |
|
 |
mxc
Guru
Joined: 05 Mar 2003
Posts: 442
Location: South Africa
|
|
| Back to top |
|
|
|
Networking & Security
