Welcome to novaBBS (click a section below)
|mail  files  register  nodelist  faq  login|
Posted: 1 Day 16 Hours ago by: Paul R SchmidtbleichUsually in my upgrades of Tumbleweed, I may have one conflict which I have been selecting, Keep what I have" though obsolete. With the current notification of updates there are 3-5 apparent conflicts - usually because "something ca
Posted: 8 Days 22 Hours ago by: AndrewI have just updated a kernel on my test machine, if you submitted a bug report it has not been acted upon (yet).
Posted: 16 Days 23 Hours ago by: RickIt appears to be at the moment. I wanted to be able to upload pictures from my cell phone. I just did than. I can also upload/download using my Raspberry Pi. Thanks :-)
Posted: 18 Days 16 Hours ago by: Carlos E.R.Bugzilla. YaST should have written that entry.
Posted: 18 Days 17 Hours ago by: Marco MoockDoes now all work as expected?
Posted: 18 Days 17 Hours ago by: Rickrequire_ssl_reuse=NO solved the 522 issue.
Posted: 18 Days 18 Hours ago by: RickFound the problem. Seems you actually have to use the correct password to log in. New problem. When I try to log in using the Android phone I get: 522 SSL connection faled: session reuse required
Posted: 18 Days 22 Hours ago by: Marco MoockIs the log different for these devices?
Posted: 18 Days 22 Hours ago by: RickI spoke too soon. I can connect using FileZilla from the Site Mnager menu, but not from gFTP or from AndFTP or FTPCafe on 2 cell phones or from the FileZilla QuickConnect. Same login incorrect.
Posted: 18 Days 23 Hours ago by: RickI am the only system user. I do wonder why adding pam_service_name=vsftpd is not more widely documented. I guess if I were really trained to do this stuff I'd have figured it out. Still, I guess it is related to user login databases an
Posted: 18 Days 23 Hours ago by: Marco MoockThis will not help much, but will annoy allowed people wanting to connect because they have to change the port every time.
Posted: 18 Days 23 Hours ago by: RickMUCH progress !! I added pam_service_name=vsftpd to the .conf and I was able to login. I just have to set the user root directories and I think it will work. Oh, yeah ... I changed the ftp port, too.
Posted: 19 Days ago by: Marco MoockNo, you don't need to do it. You just need to make sure that the user accounts on your system have a long password. Additionally, you can restrict the ftp access to certain users. Then there are some login attempts, but these are not a p
Posted: 19 Days ago by: RickLooks like... 18.104.22.168 106.115.15 22.214.171.124 126.96.36.199 188.8.131.52 ... All tried to get in between 8pm last night and 4:30am this morning.I guess I need to go ahead and change the ftp port. I haven't yet.
Posted: 19 Days 5 Hours ago by: Marco MoockMaybe someone tries to attack your server and tries to login. This is a normal behavior if your FTP is accessible from the internet.
Posted: 19 Days 6 Hours ago by: Bit TwisterSnippet follows: $ whois 184.108.40.206 OrgName: DigitalOcean, LLC OrgId: DO-13 Address: 101 Ave of the Americas Address: 10th Floor City: New York StateProv: NY PostalCode: 10013 At a g
Posted: 19 Days 7 Hours ago by: Marco MoockLooks like a public IPv4 address. Is it your?
Posted: 19 Days 15 Hours ago by: RickThu May 5 17:02:01 2022 [pid 31329] CONNECT: Client "xx.xxx.xxx.xxx" Thu May 5 17:02:01 2022 [pid 31329] FTP response: Client "xx.xxx.xxx.xxx", "220 No matter where you go, there you are." Thu May 5 17:06:53 2022 [pid 31966] CONNECT:
Posted: 19 Days 16 Hours ago by: RickFileZilla
Posted: 19 Days 17 Hours ago by: Marco MoockPlease use the SSL debug features in vsftpd, see the manpage for vsftpd.conf. Then check your log files.
Posted: 19 Days 17 Hours ago by: Marco Moockok that means the connection to the user database on the system works. Which client do you use to connect?
Posted: 19 Days 18 Hours ago by: Carlos E.R.Well, try another client instead. Also, you can read the documents in /usr/share/doc/packages/vsftpd/, maybe there is something.
Posted: 19 Days 20 Hours ago by: RickWhen I rmove the ssl from the .conf, and set filezill to use plain ftp, I can login. I can also use "explicit ftp over TLS if available" without ssl enable but get "Insecure server, it does not support FTP over TLS" and am able to log
Posted: 19 Days 21 Hours ago by: RickWhen I remove ssl from the .conf, no security, I can log in.
Posted: 20 Days 1 Hour ago by: Marco MoockThen please test without TLS. The normal FTP login does no require a certificate nor a private key, they are only needed for SSL/TLS.
Posted: 20 Days 1 Hour ago by: Marco MoockSFTP is via SSH and is not FTP. FTPS is FTP inside an SSL or TLS tunnel. This should be controllable via the ssl_enable setting.
Posted: 20 Days 3 Hours ago by: Marco MoockTLSv1 is newer than SSL3.
Posted: 20 Days 3 Hours ago by: Carlos E.R.Wouldn't version 1 be even older and more vulnerable? Anyway, try first with them enabled, as it is not working.
Posted: 20 Days 15 Hours ago by: RickI'm not sure how to disable FTPS... if you mean SFTP, I don't know how to do that either. I have several vsftp.conf files (vdftpd.conf, .ssl, and .ftp). When I test a certain protocol (ftp ssl), I copy that file to vsftpd.conf and re
Posted: 20 Days 15 Hours ago by: RickI have sftp working.
Posted: 20 Days 15 Hours ago by: RickI generated a new certificate. The system recognizes the certificate, and then again says incorrect login.
Posted: 20 Days 21 Hours ago by: RickUsually. I have made several changes without restarting and then had to move back several steps :-)
Posted: 20 Days 21 Hours ago by: AndrewYou could always enable 2 and 3, disabling them again if it works. I assume you are restarting vsftp after config changes.
Posted: 20 Days 21 Hours ago by: Rickdirections on the interent
Posted: 20 Days 21 Hours ago by: Marco Moockok, did you try to disable FTPS and just use plain FTP (just for the test)?
Posted: 21 Days ago by: Marco MoockThese are really old versions that have known vulnerabilities.
Posted: 21 Days 2 Hours ago by: Carlos E.R.You should do your initial testing inside the LAN, avoiding the router. One thing less to figure out. Ok, so the router was a problem. Anonynmous doesn't conflict with system users, you can have both.
Posted: 21 Days 2 Hours ago by: Carlos E.R.Ok, then it is a problem with the certificate, not really with login. Try a different client.
Posted: 21 Days 2 Hours ago by: Carlos E.R.Why do you disable 2 and 3? Maybe that's the problem.
Posted: 21 Days 2 Hours ago by: Carlos E.R.I know that. But this is openSUSE, inetd is deprecated, it is done instead using systemd, via file vsftpd.socket. And it works here.
Posted: 21 Days 3 Hours ago by: AndrewI posted a general guide on how to get vsftp running a couple of days ago (the docs.rockylinux.org link) and one of the things they said was: (there's a link where the word "here" is, but you obviously don't need it)
Posted: 21 Days 16 Hours ago by: RickYes, I know, but I can send/receive files with it and everything should be encrypted. I'd still like to get vsftp working with ssl.
Posted: 21 Days 16 Hours ago by: Marco MoockThat is something completely different to ftp or ftps (FTP over SSL/TLS).
Posted: 21 Days 17 Hours ago by: RickI now have sftp working
Posted: 21 Days 21 Hours ago by: Rickrsa_cert_file=/etc/ssl/private/vsftpd.pem ssl_enable=YES ssl_tlsv1=YES ssl_sslv2=NO ssl_sslv3=NO And agson started getting login incorrect.
Posted: 21 Days 22 Hours ago by: RickI have removed and reinstalled vsftpd. I am using the stock vsftpd.conf file that came with the package. I am not using ssl. I configured vsftpd using YAST and manually. vsftpd is set to start manually as a service. Anonymous is enabled.
Posted: 21 Days 23 Hours ago by: Marco MoockUse Wireshark to check the reply for the unroutable address. To which address did you connect?
Posted: 22 Days ago by: RickI have vsftpd set to run manually. When I work with vsftpd, I start the service manually. I installed it using YAsT. I have configured it using YAsT.
Posted: 22 Days ago by: RickAnonymous: Status: Logged in Status: Retrieving directory listing... Status: Server sent passive reply with unroutable address. Using server address instead. Command: LIST Error: Connection timed out after 20 seconds of inactivity Erro
Posted: 22 Days 2 Hours ago by: Marco MoockThere are 2 possibilities to run an ftp server: With or without inetd. inetd listens on port 21, does the TCP handshake and then starts vsftpd. There is no vsftp service needed. Without inetd, you need a service that runs all the time
Posted: 22 Days 3 Hours ago by: Carlos E.R..... I have not used vsftp in a long time, but I still have it installed. So I tried to connect. Initially I got connection refused. True enough, both the systemd service and sockets are disabled. Starting the service complained that
Posted: 22 Days 3 Hours ago by: Carlos E.R.And you are using your normal user/password pair? Try with anonymous. What release of openSUSE are you using?
Posted: 22 Days 3 Hours ago by: Carlos E.R.They go to the /var/log/messages file, all of it. Only news, mail, firewall, go to a different file each. That's syslog :-) Maybe you meant the journal?
Posted: 22 Days 5 Hours ago by: Marco MoockIs there another file in Suse where logins are being logged? Check the file names in /var/log. Also check the syslog for login attempts.
Posted: 22 Days 12 Hours ago by: RickI have added debug_ssl=YES to vsftpd.conf
Posted: 22 Days 12 Hours ago by: RickI don't have /var/log/auth.log, either.
Posted: 22 Days 12 Hours ago by: RickI have commented out /public_ftp
Posted: 22 Days 14 Hours ago by: Carlos E.R.local_enable=YES local_root=/public_ftp is a bit of a contradiction. With the first, a local user would go to /home/username, but with "local_root" defined, it goes instead to /public_ftp which must exist and be populated, I understa
Posted: 22 Days 14 Hours ago by: Carlos E.R.syslog_enable=YES log_ftp_protocol=YES xferlog_enable=YES debug_ssl=YES see "vsftpd.conf".
Posted: 22 Days 14 Hours ago by: Carlos E.R.He did not say "/etc/log/auth.log". But it will not exist.
Posted: 22 Days 16 Hours ago by: RickI haven't been able to get more verbose logging. I don't find /etc/log/auth.log I added another user name, test password, test. Same results.
Posted: 22 Days 16 Hours ago by: Marco MoockI think we should increase the log level. Additionally, I assume that the login attempt should appear in /var/log/auth.log. Please check that. Another guess: Try a new created test user with a password containing only ASCII chars. Maybe a p
Posted: 22 Days 17 Hours ago by: RickMon May 2 14:52:19 2022 [pid 7526] CONNECT: Client "xx.xxx.xx.xxx" Mon May 2 14:52:19 2022 [pid 7526] FTP response: Client "xx.xxx.xx.xxx", "220 No matter where you go, there you are." Mon May 2 14:52:19 2022 [pid 7526] FTP command:
Posted: 22 Days 17 Hours ago by: Marco MoockThat looks good. Does vsftpd create a special log file unter /var/log? Please check that and check it for log messages.
Posted: 22 Days 18 Hours ago by: Rick
Posted: 22 Days 18 Hours ago by: Marco MoockCheck the /etc/vsftpd.conf. Post the content here, but without commented lines please.
Posted: 22 Days 18 Hours ago by: RickI do not know what use database OpensSuse uses. I have no idea how to find out. I configured vsftpd using YAsT, the "control panel" used by OpenSuse. I log into the system many times a day,
Posted: 22 Days 21 Hours ago by: Andrewhttps://askubuntu.com/questions/354178/what-is-ftp-username-and-password-for-vsftpd#354204 https://askubuntu.com/questions/545600/ftp-refuses-any-and-all-connections-vsftpd?rq=1 Mind you, both of those threads are from years ago. I got t
Posted: 22 Days 21 Hours ago by: Marco MoockAs the message says, the login credentials are not correct. What user database does your service use? How is vsftpd configured on your system? Be aware that user/pass are case-sensitive.
Posted: 23 Days 11 Hours ago by: RickResponse: 530 Login incorrect. Error: Critical error: Could not connect to server My /var/log/vsftp.log: Sun May 1 20:26:57 2022 [pid 12835] CONNECT: Client "xx.xxx.xx.xxx" Sun May 1 20:26:57 2022 [pid 12835] FTP response: Client
70 recent articles found.