免费注册 查看新帖 |

Chinaunix

  平台 论坛 博客 文库
论坛 IT运维 服务器应用 【求助】vsftpd 虚拟用户 db方式
最近访问板块 发新帖
查看: 1989 | 回复: 4
打印 上一主题 下一主题

[FTP] 【求助】vsftpd 虚拟用户 db方式 [复制链接]

zhuryu

论坛徽章:
0
跳转到指定楼层
1 [收藏(0)] [报告]
发表于 2010-05-17 22:55 |只看该作者 |倒序浏览
#uname -a
Linux localhost.localdomain 2.6.18-164.el5 #1 SMP Thu Sep 3 03:33:56 EDT 2009 i686 i686 i386 GNU/Linux

用的是 vsftpd-2.2.0。

# rpm -qa|grep db4
db4-utils-4.3.29-10.el5
db4-4.3.29-10.el5
db4-tcl-4.3.29-10.el5
db4-devel-4.3.29-10.el5

[root@localhost vsftpd-2.2.0]# cat builddefs.h
#ifndef VSF_BUILDDEFS_H
#define VSF_BUILDDEFS_H

#define VSF_BUILD_TCPWRAPPERS
#define VSF_BUILD_PAM
#define VSF_BUILD_SSL

#endif /* VSF_BUILDDEFS_H */

[root@localhost vsftpd]# pwd
/etc/vsftpd
[root@localhost vsftpd]# ll
总计 28
-rw------- 1 root root 12288 05-18 05:27 login.db
-rw-r--r-- 1 root root    26 05-18 05:25 login.txt
-rw-r--r-- 1 root root   187 05-18 06:00 vsftpd.conf

[root@localhost vsftpd]# cat login.txt
admin
admin

[root@localhost vsftpd]# cat vsftpd.conf
guest_enable=yes
guest_username=virtual
listen=yes
write_enable=yes
local_enable=yes
pam_service_name=vsftpd.pam
#user_config_dir=/etc/vsftpd/vsftpd_user_conf
virtual_use_local_privs=yes

[root@localhost pam.d]# pwd
/etc/pam.d
[root@localhost pam.d]# ls -al vsftpd.pam
-rw-r--r-- 1 root root 129 05-18 05:31 vsftpd.pam
[root@localhost pam.d]# cat vsftpd.pam
auth required /lib/security/pam_userdb.so db=/etc/vsftpd/login
account required /lib/security/pam_userdb.so db=/etc/vsftpd/login


# ps -ef |grep vsftpd
root      4266  3633  0 06:01 pts/0    00:00:00 /usr/local/sbin/vsftpd /etc/vsftpd/vsftpd.conf
root     12262  3858  0 06:51 pts/1    00:00:00 grep vsftpd

# ftp localhost
Connected to localhost.localdomain.
220 (vsFTPd 2.2.0)
530 Please login with USER and PASS.
530 Please login with USER and PASS.
KERBEROS_V4 rejected as an authentication type
Name (localhost:root): admin
331 Please specify the password.
Password:                         //admin
530 Login incorrect.
Login failed.
ftp> user
(username) virtual
331 Please specify the password.
Password:                        //123456
230 Login successful.
ftp>





这是怎么回事,一开始以为是包坏了,换了个包,后来以为是系统坏了,换了个系统·······
在原来的系统上,虽然源码包不成功,但是用RPM包装就好使。
blueswxs

论坛徽章:
0
2 [报告]
发表于 2010-05-18 17:55 |只看该作者
/var/log/secure
不成功的时候,可以看看这个文件,看看pam报什么提示。
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
zhuryu

论坛徽章:
0
3 [报告]
发表于 2010-05-18 21:17 |只看该作者
# cat /var/log/secure
May 18 05:00:17 localhost sshd[2849]: Server listening on :: port 22.
May 18 05:00:17 localhost sshd[2849]: error: Bind to port 22 on 0.0.0.0 failed: Address already in use.
May 18 05:02:19 localhost login: pam_unix(login:session): session opened for user root by (uid=0)
May 18 05:02:19 localhost login: ROOT LOGIN ON tty1
May 18 05:02:24 localhost useradd[3157]: new group: name=zhuryu, GID=500
May 18 05:02:24 localhost useradd[3157]: new user: name=zhuryu, UID=500, GID=500, home=/home/zhuryu, shell=/bin/bash
May 18 05:02:33 localhost passwd: pam_unix(passwd:chauthtok): password changed for zhuryu
May 18 05:04:05 localhost sshd[3631]: Accepted password for root from 192.168.163.1 port 30340 ssh2
May 18 05:04:05 localhost sshd[3631]: pam_unix(sshd:session): session opened for user root by (uid=0)
May 18 05:04:08 localhost sshd[3631]: subsystem request for sftp
May 18 05:05:20 localhost sshd[3672]: Accepted password for root from 192.168.163.1 port 30403 ssh2
May 18 05:05:20 localhost sshd[3672]: pam_unix(sshd:session): session opened for user root by (uid=0)
May 18 05:05:20 localhost sshd[3672]: subsystem request for sftp
May 18 05:05:55 localhost sshd[3672]: pam_unix(sshd:session): session closed for user root
May 18 05:17:27 localhost useradd[3714]: new group: name=noboby, GID=501
May 18 05:17:27 localhost useradd[3714]: new user: name=noboby, UID=501, GID=501, home=/home/noboby, shell=/bin/bash
May 18 05:28:38 localhost useradd[4086]: new group: name=virtual, GID=502
May 18 05:28:38 localhost useradd[4086]: new user: name=virtual, UID=502, GID=502, home=/home/virtual, shell=/bin/bash
May 18 05:36:04 localhost userdel[4168]: delete user `zhuryu'
May 18 05:36:04 localhost userdel[4168]: removed group `zhuryu' owned by `zhuryu'
May 18 05:47:41 localhost passwd: pam_unix(passwd:chauthtok): password changed for virtual
May 18 07:01:09 localhost login: pam_unix(login:session): session closed for user root
May 18 07:01:12 localhost sshd[2849]: Received signal 15; terminating.
May 18 07:01:12 localhost sshd[3631]: Exiting on signal 15
May 18 07:01:12 localhost sshd[3631]: pam_unix(sshd:session): session closed for user root
May 18 07:02:35 localhost sshd[2280]: Server listening on :: port 22.
May 18 07:02:35 localhost sshd[2280]: error: Bind to port 22 on 0.0.0.0 failed: Address already in use.
May 18 07:03:10 localhost sshd[2376]: Accepted password for root from 192.168.163.1 port 36149 ssh2
May 18 07:03:10 localhost sshd[2376]: pam_unix(sshd:session): session opened for user root by (uid=0)
May 18 07:08:54 localhost sshd[2376]: pam_unix(sshd:session): session closed for user root
May 18 07:09:01 localhost sshd[2418]: Accepted password for root from 192.168.163.1 port 36453 ssh2
May 18 07:09:01 localhost sshd[2418]: pam_unix(sshd:session): session opened for user root by (uid=0)
May 18 08:42:18 localhost useradd[2512]: new group: name=test, GID=503
May 18 08:42:18 localhost useradd[2512]: new user: name=test, UID=503, GID=503, home=/home/test, shell=/bin/bash
May 18 09:17:44 localhost login: pam_unix(login:session): session opened for user root by LOGIN(uid=0)
May 18 09:17:44 localhost login: ROOT LOGIN ON tty1
May 18 09:17:54 localhost login: pam_unix(login:session): session closed for user root
May 18 09:17:55 localhost sshd[2280]: Received signal 15; terminating.
May 18 09:17:55 localhost sshd[2418]: Exiting on signal 15
May 18 09:17:55 localhost sshd[2418]: pam_unix(sshd:session): session closed for user root
May 19 04:53:19 localhost sshd[2266]: Server listening on :: port 22.
May 19 04:53:19 localhost sshd[2266]: error: Bind to port 22 on 0.0.0.0 failed: Address already in use.
May 19 04:53:23 localhost login: pam_unix(login:session): session opened for user root by LOGIN(uid=0)
May 19 04:53:23 localhost login: ROOT LOGIN ON tty1
May 19 04:54:00 localhost sshd[2404]: Accepted password for root from 192.168.163.1 port 3366 ssh2
May 19 04:54:00 localhost sshd[2404]: pam_unix(sshd:session): session opened for user root by (uid=0)




好像没有关于FTP登陆的信息。我刚刚用虚拟用户登下,还是530错误,然后看的日志。
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
blueswxs

论坛徽章:
0
4 [报告]
发表于 2010-05-19 09:17 |只看该作者
-----------------这是没用那个模块的错误
May 19 09:13:10 ppp vsftpd: pam_unix(vsftpd:auth): check pass; user unknown
May 19 09:13:10 ppp vsftpd: pam_unix(vsftpd:auth): authentication failure; logname= uid=0 euid=0 tty=ftp ruser=ooo rhost=localhost.localdomain
May 19 09:13:10 ppp vsftpd: pam_succeed_if(vsftpd:auth): error retrieving information about user ooo
-----------------


如果你那个没有错误可以这样,在模块后面加个debug参数。


       pam_userdb.so db=/path/database [debug] [crypt=[crypt|none]] [icase]
                     [dump] [try_first_pass] [use_first_pass] [unknown_ok]
                     [key_only]
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
zhuryu

论坛徽章:
0
5 [报告]
发表于 2010-05-19 13:24 |只看该作者
我加了DEBUG,但是还是,没有关于VSFTPD的日志啊
我觉得是不是虚拟用户就没有成功······因为我的本地用户还能登上。
pam_service_name=vsftpd.pam这行注释了,日志里也没vsftpd。
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则 发表回复

  

北京盛拓优讯信息技术有限公司. 版权所有 京ICP备16024965号-6 北京市公安局海淀分局网监中心备案编号:11010802020122 niuxiaotong@pcpop.com 17352615567
未成年举报专区
中国互联网协会会员  联系我们:huangweiwei@itpub.net
感谢所有关心和支持过ChinaUnix的朋友们 转载本站内容请注明原作者名及出处

清除 Cookies - ChinaUnix - Archiver - WAP - TOP