Bug#493950: proftpd-mysql: proftp does not use mysql any more

Sebastian Bremicker Thu, 07 Aug 2008 23:43:10 -0700

Hi,

> I suspect you have to specify an AuthOrder directive, as consequence
> of fixing of a security issue post 1.3.0 release, as fixed in 
> 1.3.0-19etch1


using "AuthOrder mod_sql.c" didn't work with 1.3.0.19etch1 or
1.3.0-9.1, this log excerpt is from 1.3.0.19etch1:

Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
AuthOrder in effect, resetting auth module order 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
scrubbing scoreboard 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
ROOT PRIVS at mod_core.c:131 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
RELINQUISH PRIVS at mod_core.c:133 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
ROOT PRIVS at mod_core.c:161 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
RELINQUISH PRIVS at mod_core.c:192 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
performing ident lookup 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
ident lookup returned 'foobar' 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
connected - local  : 83.151.28.113:21 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
connected - remote : 92.201.118.67:36327 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - FTP 
session opened. 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'USER [remote user]' to mod_rewrite 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'USER [remote user]' to mod_tls 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'USER [remote user]' to mod_core 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'USER [remote user]' to mod_core 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'USER [remote user]' to mod_delay 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'USER [remote user]' to mod_auth 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "endpwent" to module mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "endgrent" to module mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching CMD command 'USER [remote user]' to mod_auth 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "getgroups" to module mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - no 
supplemental groups found for user '[remote user]' 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "requires_pass" to module mod_tls 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching POST_CMD command 'USER [remote user]' to mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching POST_CMD command 'USER [remote user]' to mod_delay 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching LOG_CMD command 'USER [remote user]' to mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching LOG_CMD command 'USER [remote user]' to mod_log 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'PASS (hidden)' to mod_rewrite 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'PASS (hidden)' to mod_tls 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'PASS (hidden)' to mod_core 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'PASS (hidden)' to mod_core 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'PASS (hidden)' to mod_wrap 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'PASS (hidden)' to mod_radius 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'PASS (hidden)' to mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "getgroups" to module mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - no 
supplemental groups found for user '[remote user]' 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'PASS (hidden)' to mod_delay 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching PRE_CMD command 'PASS (hidden)' to mod_auth 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "endpwent" to module mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "endgrent" to module mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching CMD command 'PASS (hidden)' to mod_auth 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "getpwnam" to module mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
stashed module 'mod_sql.c' for user '[remote user]' in the authcache 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
retrieved UID 65534 for user '[remote user]' 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "gid2name" to module mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
using module 'mod_auth_pam.c' to authenticate user '[remote user]' 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
using module 'mod_sql.c' from authcache to authenticate user '[remote user]' 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "auth" to module mod_sql 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
using module 'mod_auth_pam.c' to authenticate user '[remote user]' 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
using module 'mod_sql.c' from authcache to authenticate user '[remote user]' 
Aug  7 23:12:58 m12s15 proftpd[30112]: m12s15.vlinux.de ([remote client]) - 
dispatching auth request "check" to module mod_sql 

The proftpd doc was not quite verbose regarding AuthOrder. Do you
have any hint and is this just a configuration issue and not a bug?

Kind regards

Sebastian Bremicker



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#493950: proftpd-mysql: proftp does not use mysql any more

Reply via email to