you may tell me that this is ot for this list, but the pure-ftpd mailing
list is as inactive as can be.
I installed Fedora 9 from the live-CD. then, using
System/Administration/Add-Remove Software, I installed pure-ftpd.
Here, all authentication uses pam-ldap which works fine for login, ssh, ...
But with pure-ftpd it just does not work.
in ldap I created a user called taxi just to be flexible to change
[taxi@vidigal ~]$ id taxi
uid=1084(taxi) gid=1000(webdesign) groups=1000(webdesign)
when i do an ssh logon to taxi:
[myuser@rosetta ~]$ ssh taxi@vidigal
Last login: Wed May 28 13:02:29 2008
that is: pam-ldap for user taxi works fine. user taxi also has a valid
home-directory on the ftp-server.
when, however, I do an ftp-login I get:
[myuser@rosetta ~]$ ftp vidigal.lan
Connected to vidigal.lan (192.168.97.17).
220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 11:39. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
Name (vidigal.lan:cellino): taxi
331 User taxi OK. Password required
530 Login authentication failed
Remote system type is UNIX.
Using binary mode to transfer files.
auth include system-auth
auth required pam_shells.so
auth required pam_nologin.so
account include system-auth
password include system-auth
session include system-auth
we do not use the /etc/ftpusers file sofar, the file does not exist. so
the first step in the auth-sequence must succeed.
[taxi@vidigal ~]$ cat /etc/pam.d/system-auth
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth required pam_env.so
auth sufficient pam_unix.so nullok try_first_pass
auth requisite pam_succeed_if.so uid >= 500 quiet
auth sufficient pam_ldap.so use_first_pass
auth required pam_deny.so
I checked to see if the pure-ftpd does an ldap-request, when I try to
ftp-login: yes he does and he gets a positive reply from the
ldap-server, when doing the bind with the authentication parameters for
the login failure then must be caused by additional pam.d/pure-ftpd
so I checked to see, whether the shell of taxi (/bin/bash) is in
/etc/shells. yes it is.
and there is no /etc/nologin file on the ftp-server.
has anyone got an idea, how I have to change the environment in order to
make pure-ftpd accept pam authentication?
changing to another ftp-server is no option, because i need the
virtual-ftp-accounts provided by pure-ftpd.
thanks for any information
fedora-list mailing list
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list