Package: proftpd Version: 1.2.10-15sarge1 Severity: normal Proftpd ignore settings from /etc/pam.d/proftpd if they aren't standard.
Example. Standard situation and You are trying to login with user listed in /etc/ftpusers ------------ /etc/pam.d/profptd: auth required pam_listfile.so item=user sense=deny file=/etc/ftpusers /var/log/auth.log PAM-listfile: Refused user vincent for service proftpd knr.foo.com (aaxf48.adsl.foo.com[183.64.31.68]) - USER vincent (Login failed): User in /etc/ftpusers. ------------ Not standard situation (just different file name: not "ftpusers" but "ftpusers.deny") /etc/ftpusers does not exist. ------------ /etc/pam.d/profptd: auth required pam_listfile.so item=user sense=deny file=/etc/ftpusers.deny /var/log/auth.log PAM-listfile: Refused user vincent for service proftpd knr.foo.com (aaxf48.adsl.foo.com[183.64.31.68]) - USER vincent: Login successful. ------------ And the most weired case. Different name but /etc/ftpusers exist and user is listed there. But there is no words abut it in /etc/pam.d/profptd ------------ /etc/pam.d/profptd: auth required pam_listfile.so item=user sense=deny file=/etc/ftpusers.deny /var/log/auth.log PAM-listfile: Refused user vincent for service proftpd knr.foo.com (aaxf48.adsl.foo.com[183.64.31.68]) - USER vincent (Login failed): User in /etc/ftpusers. ------------ In all cases proftpd.conf is exacly the same. No changes. In my opinion some bug. Best regards, Vincent -- System Information: Debian Release: 3.1 Architecture: amd64 (x86_64) Kernel: Linux 2.6.8-11-amd64-generic Locale: LANG=pl_PL, LC_CTYPE=pl_PL (charmap=ISO-8859-2) Versions of packages proftpd depends on: ii adduser 3.63 Add and remove users and groups ii debconf 1.4.30.13 Debian configuration management sy ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries an ii libcap1 1:1.10-14 support for getting/setting POSIX. ii libpam0g 0.76-22 Pluggable Authentication Modules l ii libssl0.9.7 0.9.7e-3sarge1 SSL shared libraries ii libwrap0 7.6.dbs-8 Wietse Venema's TCP wrappers libra ii netbase 4.21 Basic TCP/IP networking system ii proftpd-common 1.2.10-15sarge1 Versatile, virtual-hosting FTP dae ii ucf 1.17 Update Configuration File: preserv -- debconf information: * shared/proftpd/warning: * shared/proftpd/inetd_or_standalone: standalone -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
