On Thu, Aug 07, 2008 at 11:40:37AM +0200, Sebastian Bremicker wrote:
> Hi,
>
>> Please include your complete configuration.
>
> ok, this is /etc/proftpd/modules.conf:
>
> --------------------------- cut here ----------------------
>
> #
> # This file is used to manage DSO modules and features.
> #
>
> # This is the directory where DSO modules reside
>
> ModulePath /usr/lib/proftpd
>
> # Allow only user root to load and unload modules, but allow everyone
> # to see which modules have been loaded
>
> ModuleControlsACLs insmod,rmmod allow user root
> ModuleControlsACLs lsmod allow user *
>
> LoadModule mod_ctrls_admin.c
> LoadModule mod_tls.c
> LoadModule mod_sql.c
> LoadModule mod_ldap.c
> LoadModule mod_sql_mysql.c
> #LoadModule mod_sql_postgres.c
> LoadModule mod_quotatab.c
> LoadModule mod_quotatab_file.c
> LoadModule mod_quotatab_ldap.c
> LoadModule mod_quotatab_sql.c
> LoadModule mod_radius.c
> LoadModule mod_wrap.c
> LoadModule mod_rewrite.c
>
> # keep this module the last one
> LoadModule mod_ifsession.c
>
> --------------------------- cut here ----------------------
>
> and this is /etc/proftpd/proftpd.conf without comment lines and
> anonymized credentials:
>
> --------------------------- cut here ----------------------
>
> Include /etc/proftpd/modules.conf
>
> ServerName "Debian"
> ServerType inetd
> DeferWelcome off
>
> ShowSymlinks on
> MultilineRFC2228 on
> DefaultServer on
> ShowSymlinks on
> AllowOverwrite on
>
> TimeoutNoTransfer 600
> TimeoutStalled 600
> TimeoutIdle 1200
>
> DisplayLogin welcome.msg
> DisplayFirstChdir .message
> ListOptions "-l"
>
> DenyFilter \*.*/
>
> DelayEngine Off
>
> Port 21
>
> MaxInstances 30
>
> User nobody
> Group nogroup
>
> RequireValidShell off
> DefaultRoot ~
>
> SQLConnectInfo database dbuser dbpasswd
> SQLAuthenticate users
> SQLAuthTypes backend
> SQLUserInfo users userid passwd uid gid homedir shell
> SQLGroupInfo groups groupname gid members
> SQLLog PASS updatecount
> SQLNamedQuery updatecount UPDATE "count=count+1 WHERE
> userid='%u'" users
> SQLHomedirOnDemand on
> SQLUserWhereClause "closed = '0'"
> SQLMinUserGID 33
> SQLMinUserUID 33
>
> AuthPAM off
>
> <Directory /*>
> Umask 022 022
>
> AllowOverwrite on
> </Directory>
>
> --------------------------- cut here ----------------------
> and to make it complete etc/xinetd.d/proftpd
> --------------------------- cut here ----------------------
> service ftp
> {
> socket_type = stream
> wait = no
> server = /usr/sbin/proftpd
> user = root
> }
> --------------------------- cut here ----------------------
>
> Like I said, all this works with the previous proftpd 1.3.0-9.1 but not
> with proftpd 1.3.0-19etch1.
>
> I added "AuthPAM off" after the first occurance of PAM error in daemon
> log, but this only leads to the PAM error not being displayed and seems
> to make no further difference to mysql usage.
>
> Kind regards
>
> Sebastian Bremicker
I suspect you have to specify an AuthOrder directive, as consequence
of fixing of a security issue post 1.3.0 release, as fixed in
1.3.0-19etch1
--
Francesco P. Lovergine
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
