Koozali.org: home of the SME Server

Legacy Forums => Experienced User Forum => Topic started by: Derek on January 03, 2004, 05:38:54 AM

Title: FXP wont work with SME 6.0
Post by: Derek on January 03, 2004, 05:38:54 AM

Accidently had posted this to the suggestions forum, my apologies


Below is my proftpd.conf file, I cannot get fxp to work, buddy is trying to fxp from a Serv-U machine to this one and gets the following error.

200 PORT Command successful.
STOR midnight.txt
RETR midnight.txt
150 Opening ASCII mode data connection for midnight.txt (7249 bytes).
425-Using UL/DL ratio 1/4, counting bytes over all sessions
Current UL/DL ratio credit 428388480 Kbytes
425 Cannot open data connection
I dont know where the ratio stuff comes in but this is the message he gets. I tried to fxp from another machine to my server and it transfered 0 byte files but only half the files i selected and after that it just timed out.
I had the configuration listed below working fine with v5.5 but somereason it wont work now with v6.03 although the restart/resume uploads seems to work. Please help its been 3 hours trying to fix this.

Derek




#------------------------------------------------------------
# DO NOT MODIFY THIS FILE! It is updated automatically by the
# SME Server software. Instead, modify the source template in
# an /etc/e-smith/templates-custom directory. For more
# information, see http://www.e-smith.org/custom/
#
# copyright (C) 1999-2003 Mitel Networks Corporation
#------------------------------------------------------------



AllowForeignAddress on #Allow FXP (ftp to ftp transfers)
AllowStoreRestart on #Allow Upload Resumes
###AllowRetrieve Restart on #Allow Download ResumesDefaultRoot /home/e-smith/files/users/
DefaultRoot /home/e-smith/files/users/
DefaultRoot /home/e-smith/files/users/
DefaultRoot /home/e-smith/files/ibays/
DefaultRoot /home/e-smith/files/users/
DefaultRoot /home/e-smith/files/users/
DefaultRoot /home/e-smith/files/users/

DefaultRoot /home/e-smith/files
DefaultServer on
DenyFilter \*.*/
DisplayFirstChdir .message
DisplayLogin welcome.msg
Group public
IdentLookups off
MaxInstances 30
ScoreboardFile /var/run/proftpd/scoreboard
ServerAdmin admin@mydomain.com
ServerIdent off
ServerName "ProFTPD e-smith installation"
ServerType inetd
UseFtpUsers on
UseReverseDNS off
User
public
Port 1111


DenyAll


DenyAll



AllowAll



AllowOverwrite on
Umask 007

AllowAll




AllowOverwrite on
GroupOwner shared
Umask 027

AllowAll

Title: Re: FXP wont work with SME 6.0
Post by: Charlie Brady on January 05, 2004, 04:09:33 PM

Derek wrote:

> I cannot get fxp to work,

It doesn't work for security reasons. See below.

> buddy is trying to fxp from a Serv-U machine to this one and
> gets the following error.
>
> 200 PORT Command successful.
> STOR midnight.txt
> RETR midnight.txt
> 150 Opening ASCII mode data connection for midnight.txt (7249
> bytes).
> 425-Using UL/DL ratio 1/4, counting bytes over all sessions
> Current UL/DL ratio credit 428388480 Kbytes
> 425 Cannot open data connection

Allowing FXP to work opens the server to an "ftp bounce attack". You can read the details here (as well as hints on how to undo the protection):

http://www.castaglia.org/proftpd/doc/contrib/ProFTPD-mini-HOWTO-FXP.html

Charlie

Title: Re: FXP wont work with SME 6.0
Post by: Derek on January 05, 2004, 09:41:01 PM

sorry i didnt post this earlier but, i had configured the 05allowforeignaddress, in the custom templates. I had this information in my 5.5 installation and it worked fine
yet i have now installed v6 and done what i believe is the same configuration and fxp will not work. This is what has me stumped. Any ideas on what i could be doing wrong?