I have been told by our 3rd Party Support that there is a BUG (HP are
investigating) in the latest 6.5 version of FTP. Although it is reading
the FTPACCES file it is not doing anything with the contents.
regards,
Robert W.Mills
Business Systems Development Analyst
Group Information Systems & Technology
Pinnacle Arvato
DDI: +44 (0)20 8309 3604
-----Original Message-----
From: HP-3000 Systems Discussion [mailto:[log in to unmask]] On
Behalf Of Legault, Raymond D
Sent: 01 August 2007 15:07
To: [log in to unmask]
Subject: Re: [HP3000-L] Problem with FTPACCES.ARPA.SYS
Importance: High
http://jazz.external.hp.com/papers/Securing-FTP-Whitepaper.html#_Toc1678
55930
Robert
I believe you need the beta patch for this to work. File Transfer
Protocol [A0012H14]
Ray
-----Original Message-----
From: Robert Mills [mailto:[log in to unmask]]
Sent: Tuesday, July 31, 2007 4:51 AM
Subject: Problem with FTPACCES.ARPA.SYS
Greetings to the -L,
Have just installed the latest version of FTP (A0012F12) that is
available on our version of the O/S (6.5).
Created a user on the e3000 and an FTPACCES file. FTP'd to the e3000
from Windows XP and it looks as if the CHROOT in my FTPACCES is not
working. Any suggestions?
NOTE: IP Addresses and USER.ACCOUNT names have been replaced by dummy
values.
**** Contents of FTPACCES.ARPA.SYS:
CHROOT user.account /ACCOUNT/BIS
**** Contents of SETPARMS.ARPA.SYS:
POSIX=ON
PASSWORD=ON
CONSOLE_LOGGING=ON
PERMISSIONS_RENAME=ON
PERMISSIONS_DELETE=ON
PERMISSIONS_OVERWRITE=ON
LOG_COMMANDS=ON
LOG_TRANSFERS=ON
DEBUG_PASS=OFF
SITE_STREAM=OFF
SITE_CHMOD=ON
SITE_CHOWN=ON
**** Contents of FTPHELLO.ARPA.SYS:
Unauthorized access is strictly prohibited.
**** Contents of FTPLOG00.ARPA.SYS:
2007/07/31:12.17.36:#J3:JINETD,MANAGER.SYS:10.128.240.220:S:USER
user.account:
2007/07/31:12.17.42:#J3:BIS.PIN2000:10.128.240.220:S:XPWD:
2007/07/31:12.20.04:#J3:BIS.PIN2000:10.128.240.220:S:QUIT:
**** LISTUSER output:
USER: USER.ACCOUNT
HOME GROUP: PUB PASSWORD: **
MAX PRI : 150 LOC ATTR: $00000000
LOGON CNT : 0
CAP: UV,SF,IA,BA
**** Results from checking user was ok:
HP3000 Release: C.65.00 User Version: C.65.00 TUE, JUL 31,
2007, 12:29 PM
MPE/iX HP31900 C.25.06 Copyright Hewlett-Packard 1987. All rights
reserved.
user.account: pwd
/ACCOUNT/PUB
user.account: chgroup bis
user.account: pwd
/ACCOUNT/BIS
user.account:
**** Windows XP screen dump:
H:\>ftp nnn.nnn.nnn.nnn
Connected to nnn.nnn.nnn.nnn.
220 HP ARPA FTP Server [A0012F12] (C) Hewlett-Packard Co. 2000 [PASV
SUPPORT]
User (nnn.nnn.nnn.nnn:(none)): user.account
331 Password required for USER.ACCOUNT. Syntax: userpass
Password:
230-Unauthorized access is strictly prohibited.
230 User logged on
ftp> pwd
257 "/ACCOUNT/PUB" is the current directory.
ftp>
regards,
Robert W.Mills
Business Systems Development Analyst
Group Information Systems & Technology
Pinnacle Arvato
DDI: +44 (0)20 8309 3604
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
|