Ftp Administration in Solaris11

3/15/2015 Administration:FTPADMINISTRATIONinsolaris11

data:text/htmlcharset=utf8,%3Ch3%20class%3D%22posttitle%20entrytitle%22%20itemprop%3D%22name%22%20style%3D%22margin%3A%200.75em 1/8

FTPADMINISTRATIONinsolaris11ftpcmd&Files:/usr/lib/inet/proftpd/etc/proftpd.conf/etc/ftpusers/usr/bin/ftpwho/usr/bin/ftpcount/usr/bin/ftptop/usr/sbin/ftpshut/var/log/xferlog/var/run/proftpd.pid/var/run/proftpd.scoreboard

root@solaris2:/usr/lib/inet#svcadmenableftproot@solaris2:/usr/lib/inet#ftp0ftp:connect:Connectionrefusedftp>byeroot@solaris2:/usr/lib/inet#svcsftpSTATESTIMEFMRImaintenance14:54:56svc:/network/ftp:defaultroot@solaris2:/usr/lib/inet#svcsdftpSTATESTIMEFMRIonlineDec_27svc:/network/loopback:defaultonlineDec_27svc:/network/physical:upgradeonlineDec_27svc:/network/physical:defaultonlineDec_27svc:/system/nameservice/cache:defaultonlineDec_27svc:/network/service:defaultonlineDec_27svc:/system/filesystem/local:defaultroot@solaris2:/usr/lib/inet#svcadmclearftproot@solaris2:/usr/lib/inet#svcsftpSTATESTIMEFMRImaintenance14:55:26svc:/network/ftp:default

root@solaris2:~#svcsxvftpsvc:/network/ftp:default(FTPserver)State:maintenancesinceDecember30,201303:06:39PMUTCReason:Startmethodfailedrepeatedly,lastexitedwithstatus1.See:http://support.oracle.com/msg/SMF8000KSSee:manM/usr/share/mans1MproftpdSee:file://usr/share/doc/proftpd/See:/var/svc/log/networkftp:default.logImpact:Thisserviceisnotrunning.Youhavenewmailin/var/mail/rootroot@solaris2:~#more/var/svc/log/networkftp:default.log[Nov116:58:14Rereadingconfiguration.][Dec3014:54:56Enabled.]



[Dec3014:54:56Executingstartmethod("/usr/lib/inet/proftpd").]warning:unabletodetermineIPaddressof'solaris2'error:novalidserversconfiguredFatal:errorprocessingconfigurationfile'/etc/proftpd.conf'[Dec3014:54:56Method"start"exitedwithstatus1.][Dec3014:54:56Executingstartmethod("/usr/lib/inet/proftpd").]

Nowichange/etc/hostsfileip&hostnameasfollowsroot@solaris2:~#cat/etc/hosts##Copyright2009SunMicrosystems,Inc.Allrightsreserved.#Useissubjecttolicenseterms.##Internethosttable#::1localhost127.0.0.1localhostloghost10.66.10.108solaris2

root@solaris2:~#svcsftpSTATESTIMEFMRImaintenance15:06:39svc:/network/ftp:defaultroot@solaris2:~#svcadmclearftproot@solaris2:~#svcsftpSTATESTIMEFMRIoffline*15:08:53svc:/network/ftp:defaultroot@solaris2:~#svcsftpSTATESTIMEFMRIonline15:08:59svc:/network/ftp:default

root@solaris2:~#cat/etc/proftpd.confServerName"FTPserver"ServerIdentoffServerTypestandaloneDefaultServeronPort21Umask022#TopreventDoSattacks,setthemaximumnumberofchildprocesses#to30.Ifyouneedtoallowmorethan30concurrentconnections#atonce,simplyincreasethisvalue.NotethatthisONLYworks#instandalonemode,ininetdmodeyoushoulduseaninetdserver#thatallowsyoutolimitmaximumnumberofprocessesperservice#(suchasxinetd).MaxInstances30#Settheuserandgroupunderwhichtheserverwillrun.#Userftp#Groupftp#Normally,wewantfilestobeoverwriteable.AllowOverwriteon#BaruseofSITECHMODbydefault.



DenyAll

#MakePAMthefinalauthorityonwhatgetsauthenticated.AuthOrdermod_auth_pam.c*mod_auth_unix.c#Usesystemlibrariesforuserlookups.PersistentPasswdoff#Rootloginmustbeenabledexplicitly.Itisnotpermittedbydefault.#Allowitonlyifyouknowwhatyouaredoing.#RootLoginonRootLoginonDisplayConnect/etc/issue

root@solaris2:~#ftp10.66.10.108Connectedto10.66.10.108.220::ffff:10.66.10.108FTPserverreadyName(10.66.10.108:root):root331PasswordrequiredforrootPassword:530Loginincorrect.Loginfailed.RemotesystemtypeisUNIX.Usingbinarymodetotransferfiles.ftp>pwd530PleaseloginwithUSERandPASS

root@solaris2:~#cat/etc/ftpusers##ListofusersdeniedaccesstotheFTPserver,seeftpusers(4).##rootdaemonbinsysadmlpuucpnuucpdladmnetadmnetcfgsmmspgdmxvmmysqlopenldapwebservdnobodynoaccessnobody4



aiuserunknownftpdhcpserv

root@solaris2:~#ftp0Connectedto0.0.0.0.220::ffff:127.0.0.1FTPserverreadyName(0:root):root331PasswordrequiredforrootPassword:230UserrootloggedinRemotesystemtypeisUNIX.Usingbinarymodetotransferfiles.ftp>pwd257"/root"isthecurrentdirectoryftp>bye221Goodbye.

root@solaris2:~#ftpwhostandaloneFTPdaemon[24541],upfor22minnousersconnectedroot@solaris2:~#ftpcountMasterproftpdprocess24541:0users

C:\Users\chittibabu.miriyala>ftp10.66.10.108Connectedto10.66.10.108.220::ffff:10.66.10.108FTPserverreadyUser(10.66.10.108:(none)):root331PasswordrequiredforrootPassword:230Userrootloggedinftp>

root@solaris2:~#ftpwhostandaloneFTPdaemon[24541],upfor23min24597root[0m12s]0m6sidleServiceclass1user

root@solaris2:~#ftpcountMasterproftpdprocess24541:Serviceclass1user

TocreateAnonymoususer:root@solaris2:~#passwdsftpftpLKroot@solaris2:~#passwdftp



WARNING:changingaccountinreserveduidrange:ftp.NewPassword:ReenternewPassword:passwd:passwordsuccessfullychangedforftproot@solaris2:~#passwdsftpftpLKroot@solaris2:~#passwduftpWARNING:changingaccountinreserveduidrange:ftp.passwd:passwordinformationchangedforftproot@solaris2:~#passwdsftpftpPSroot@solaris2:~#ftp0Connectedto0.0.0.0.220::ffff:127.0.0.1FTPserverreadyName(0:root):ftp331PasswordrequiredforftpPassword:530Loginincorrect.Loginfailed.RemotesystemtypeisUNIX.Usingbinarymodetotransferfiles.ftp>bye221Goodbye.

root@solaris2:~#vi/etc/ftpusershastftpuserroot@solaris2:~#ftp0Connectedto0.0.0.0.220::ffff:127.0.0.1FTPserverreadyName(0:root):ftp331PasswordrequiredforftpPassword:230UserftploggedinRemotesystemtypeisUNIX.Usingbinarymodetotransferfiles.ftp>bye221Goodbye.

root@solaris2:~#ftpwhostandaloneFTPdaemon[24541],upfor35min24639ftp[0m57s]0m53sidle24649root[0m8s]0m3sidleServiceclass2users

ForavirtualhostthatisusingafixedIPaddress,usethefollowingdirective.YoumayaddmultipleIPaddressesseparatedbyspacesifneeded.

ServerName"MyvirtualFTPserver"



Toprovideanonymousftpaccesstoyoursite,usethesedirectives:#DenyloginaccessDenyAll#AllowanonymousloginsAllowAll....ftpshutdown:TheftpshutcommandclosesdowntheFTPserverataparticulartime.IfyouwanttostopservingFTPonly,butnotstopthedaemon(soitcanreporttheserviceisnotavailabletoclients)thenusethisprocedure.Theftpshutcommandwillblockconnectionsandstopthecurrentconnection,butnotshutdowntheserverdaemonitself.root@solaris2:~#ftpshutnowNote:time:Shutdowntimethatisspecifiedbythewordnowforimmediateshutdown,orinoneoftwoformats(+numberorHHMM)forafutureshutdown

root@solaris2:~#cat/etc/shutmsg2013123015505100100005goingdownat%sroot@solaris2:~#svcsftpSTATESTIMEFMRIonline15:08:59svc:/network/ftp:defaultroot@solaris2:~#ftp0Connectedto0.0.0.0.500FTPservershutdown(goingdownatMonDec3015:50:512013)pleasetryagainlaterftp>bye

torestartftp:

root@solaris2:~#ftprestart/usr/sbin/ftpshut:/etc/shutmsgremovedroot@solaris2:~#ftp0Connectedto0.0.0.0.220::ffff:127.0.0.1FTPserverreadyName(0:root):root331PasswordrequiredforrootPassword:230UserrootloggedinRemotesystemtypeisUNIX.Usingbinarymodetotransferfiles.ftp>

root@solaris2:~#useraddmtest



80blocksroot@solaris2:~#passwdtestNewPassword:ReenternewPassword:passwd:passwordsuccessfullychangedfortestroot@solaris2:~#loginsxltesttest100staff10/export/home/test/usr/bin/bashPS123013111root@solaris2:~#dfhFilesystemSizeUsedAvailableCapacityMountedonrpool/export/home/test9.8G35K3.5G1%/export/home/test

root@solaris2:~#ftp0Connectedto0.0.0.0.220::ffff:127.0.0.1FTPserverreadyName(0:root):test331PasswordrequiredfortestPassword:230UsertestloggedinRemotesystemtypeisUNIX.Usingbinarymodetotransferfiles.ftp>bye221Goodbye.

root@solaris2:~#/usr/lib/inet/proftpdVCompiletimeSettings:Version:1.3.3g(maint)Platform:SOLARIS2(SOLARIS2_11)[unavailable]Built:TueApr23201315:59:08PDTBuiltWith:configure'CC=/ws/on11updatetools/SUNWspro/sunstudio12.1/bin/cc''CXX=/ws/on11updatetools/SUNWspro/sunstudio12.1/bin/CC''prefix=/usr''mandir=/usr/share/man''bindir=/usr/bin''libdir=/usr/lib''sbindir=/usr/sbin''CFLAGS=m32xO4xtarget=ultra2xarch=sparcvisxchip=ultra2Qoptioncgxregs=no0x1.3a2c000000000p1022pplW2,xwrap_intxmemalign=8smtI/usr/include/kerberosv5DHAVE_KRB5_H=1DKRB5_DLLIMP=DHAVE__GETGRPSBYMEMBER''LDFLAGS=zguidance=nolazyloadznolazyloadlbsm''install_user=ul''install_group=gk''sysconfdir=/etc''localstatedir=/var/run''libexecdir=/usr/lib/proftpd''enableipv6''enablectrls''enablefacl''enablenls''enabledso''enableopenssl''disablestatic''withmodules=mod_solaris_audit:mod_solaris_priv''withshared=mod_facl:mod_wrap:mod_tls:mod_auth_gss:mod_gss''enablebuffersize=16384'CFLAGS:m32xO4xtarget=ultra2xarch=sparcvisxchip=ultra2Qoptioncgxregs=no0x1.3a2c000000000p1022pplW2,xwrap_intxmemalign=8smtI/usr/include/kerberosv5DHAVE_KRB5_H=1DKRB5_DLLIMP=DHAVE__GETGRPSBYMEMBER



LDFLAGS:L$(top_srcdir)/libzguidance=nolazyloadznolazyloadlbsmLIBS:lsendfilelseclintllssllcryptolssllcryptolpamlsupplsocketlnsllresolvldlFiles:ConfigurationFile:/etc/proftpd.confPidFile:/var/run/proftpd.pidScoreboardFile:/var/run/proftpd.scoreboardHeaderDirectory:/usr/include/proftpdSharedModuleDirectory:/usr/lib/proftpdFeatures:Autoshadowsupport+Controlssupport+cursessupportDevelopersupport+DSOsupport+IPv6support+LargefilesupportLastlogsupportncursessupport+NLSsupport+OpenSSLsupport+POSIXACLsupport+Shadowfilesupport+Sendfilesupport+TracesupportTunableOptions:PR_TUNABLE_BUFFER_SIZE=16384PR_TUNABLE_DEFAULT_RCVBUFSZ=8192PR_TUNABLE_DEFAULT_SNDBUFSZ=8192PR_TUNABLE_GLOBBING_MAX_MATCHES=100000PR_TUNABLE_GLOBBING_MAX_RECURSION=8PR_TUNABLE_HASH_TABLE_SIZE=40PR_TUNABLE_NEW_POOL_SIZE=512PR_TUNABLE_SCOREBOARD_BUFFER_SIZE=80PR_TUNABLE_SCOREBOARD_SCRUB_TIMER=30PR_TUNABLE_SELECT_TIMEOUT=30PR_TUNABLE_TIMEOUTIDENT=10PR_TUNABLE_TIMEOUTIDLE=600PR_TUNABLE_TIMEOUTLINGER=30PR_TUNABLE_TIMEOUTLOGIN=300PR_TUNABLE_TIMEOUTNOXFER=300PR_TUNABLE_TIMEOUTSTALLED=3600PR_TUNABLE_XFER_SCOREBOARD_UPDATES=10

Ftp Administration in Solaris11

Documents

Transcript of Ftp Administration in Solaris11