From owner-freebsd-stable Fri May 17 14:40:36 2002 Delivered-To: freebsd-stable@freebsd.org Received: from proverbs.outreachnetworks.com (proverbs.outreachnetworks.com [65.196.249.4]) by hub.freebsd.org (Postfix) with SMTP id 3DBDE37B408 for ; Fri, 17 May 2002 14:40:32 -0700 (PDT) Received: (qmail 97139 invoked from network); 17 May 2002 21:40:31 -0000 Received: from unknown (HELO phoncella.outreachnetworks.com) (65.196.249.11) by proverbs.outreachnetworks.com with SMTP; 17 May 2002 21:40:31 -0000 Received: (from elh@localhost) by phoncella.outreachnetworks.com (8.11.6/8.11.6) id g4HLeVo24451 for freebsd-stable@FreeBSD.ORG; Fri, 17 May 2002 17:40:31 -0400 X-Authentication-Warning: phoncella.outreachnetworks.com: elh set sender to elh@outreachnetworks.com using -f Date: Fri, 17 May 2002 17:40:31 -0400 From: "Eric L. Howard" To: FreeBSD Stable List Subject: Re: ftpd issues? Message-ID: <20020517174031.B23987@outreachnetworks.com> Mail-Followup-To: FreeBSD Stable List References: <20020516144322.C16254@outreachnetworks.com> <20020517074603.A98560@blackhelicopters.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20020517074603.A98560@blackhelicopters.org>; from mwlucas@blackhelicopters.org on Fri, May 17, 2002 at 07:46:03AM -0400 X-Favorite-Scripture: Romans 8:18 X-Theocratic-Rule-Advocate: http://www.crossmovement.com X-Registered-Secret-Agent: Agent Double-Naught Seven X-Operating-System: Linux 2.4.7-10 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG At a certain time, now past, Michael Lucas spake thusly: > Eric, > > I don't think anything changed with ftpd in 4.5-p4. I'm not so sure just yet, I'm looking further...and I got an email from someone experiencing the same problem. He loaded up another ftp daemon because of time limits for debugging. > You might start ftpd with -d flag, and then add a line like this to > /etc/syslog.conf: > > ftp.* /var/log/ftpd > > This should give you a better idea of what's wrong, or where > authentication failing. Yeah..that didn't give me any info...but I played around w/ the pam config a bit more. The default for ftpd in /etc/pam.conf looks like (and _doesn't_ work for me): ftpd auth sufficient pam_skey.so ftpd auth requisite pam_cleartext_pass_ok.so #ftpd auth sufficient pam_kerberosIV.so try_first_pass ftpd auth required pam_unix.so try_first_pass I worked up the following - and it works for me...: ftpd auth sufficient pam_skey.so #ftpd auth requisite pam_cleartext_pass_ok.so #ftpd auth sufficient pam_kerberosIV.so try_first_pass ftpd auth required pam_unix.so try_first_pass In fact..multiple combinations of the immediate above work...as long as the pam_cleartext_pass_ok.so module is not included. I have yet to play w/ the control for pam_cleartext_pass_ok.so. > ==ml > > (sheesh... fix problems for a guy back in 1997, and he keeps coming > around years later... ;-) hey!...all that BGP stuff was so new to me back then! I've since broken and fixed much bigger networks :-) ~elh -- Eric L. Howard e l h @ o u t r e a c h n e t w o r k s . c o m ------------------------------------------------------------------------ www.OutreachNetworks.com 313.297.9900 ------------------------------------------------------------------------ Advocate of the Theocratic Rule To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message