I have been told by our 3rd Party Support that there is a BUG (HP are
investigating) in the latest 6.5 version of FTP. Although it is reading
the FTPACCES file it is not doing anything with the contents. 


regards,
 
Robert W.Mills
Business Systems Development Analyst
Group Information Systems & Technology
Pinnacle Arvato
DDI: +44 (0)20 8309 3604 


-----Original Message-----
From: HP-3000 Systems Discussion [mailto:[log in to unmask]] On
Behalf Of Legault, Raymond D
Sent: 01 August 2007 15:07
To: [log in to unmask]
Subject: Re: [HP3000-L] Problem with FTPACCES.ARPA.SYS
Importance: High

http://jazz.external.hp.com/papers/Securing-FTP-Whitepaper.html#_Toc1678
55930



Robert

I believe you need the beta patch for this to work.  File Transfer
Protocol [A0012H14]  

Ray

-----Original Message-----
From: Robert Mills [mailto:[log in to unmask]]
Sent: Tuesday, July 31, 2007 4:51 AM
Subject: Problem with FTPACCES.ARPA.SYS

Greetings to the -L,
 
Have just installed the latest version of FTP (A0012F12) that is
available on our version of the O/S (6.5).
 
Created a user on the e3000 and an FTPACCES file. FTP'd to the e3000
from Windows XP and it looks as if the CHROOT in my FTPACCES is not
working. Any suggestions?
 
NOTE: IP Addresses and USER.ACCOUNT names have been replaced by dummy
values.
 
**** Contents of FTPACCES.ARPA.SYS:
 
    CHROOT user.account /ACCOUNT/BIS

**** Contents of SETPARMS.ARPA.SYS:
 
    POSIX=ON
    PASSWORD=ON
    CONSOLE_LOGGING=ON
    PERMISSIONS_RENAME=ON
    PERMISSIONS_DELETE=ON
    PERMISSIONS_OVERWRITE=ON
    LOG_COMMANDS=ON
    LOG_TRANSFERS=ON
    DEBUG_PASS=OFF
    SITE_STREAM=OFF
    SITE_CHMOD=ON
    SITE_CHOWN=ON
 
**** Contents of FTPHELLO.ARPA.SYS:
 
    Unauthorized access is strictly prohibited.
 
**** Contents of FTPLOG00.ARPA.SYS:
 
2007/07/31:12.17.36:#J3:JINETD,MANAGER.SYS:10.128.240.220:S:USER
user.account:
2007/07/31:12.17.42:#J3:BIS.PIN2000:10.128.240.220:S:XPWD:
2007/07/31:12.20.04:#J3:BIS.PIN2000:10.128.240.220:S:QUIT:

**** LISTUSER output:
 
    USER: USER.ACCOUNT                                              
    HOME GROUP: PUB                 PASSWORD: **                   
    MAX PRI   : 150                 LOC ATTR: $00000000            
    LOGON CNT : 0                                                  
    CAP: UV,SF,IA,BA
 
**** Results from checking user was ok:
 
    HP3000  Release: C.65.00   User Version: C.65.00   TUE, JUL 31,
2007, 12:29 PM
    MPE/iX  HP31900 C.25.06  Copyright Hewlett-Packard 1987.  All rights
reserved.
 
    user.account: pwd
    /ACCOUNT/PUB
    user.account: chgroup bis
    user.account: pwd
    /ACCOUNT/BIS
    user.account: 

**** Windows XP screen dump:
 
    H:\>ftp nnn.nnn.nnn.nnn
    Connected to nnn.nnn.nnn.nnn.
    220 HP ARPA FTP Server [A0012F12] (C) Hewlett-Packard Co. 2000 [PASV
SUPPORT]
    User (nnn.nnn.nnn.nnn:(none)): user.account
    331 Password required for USER.ACCOUNT.  Syntax: userpass
    Password:
    230-Unauthorized access is strictly prohibited.
    230 User logged on
    ftp> pwd
    257 "/ACCOUNT/PUB" is the current directory.
    ftp>

regards,
 
Robert W.Mills
Business Systems Development Analyst
Group Information Systems & Technology
Pinnacle Arvato
DDI: +44 (0)20 8309 3604 

 

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *