Hello, I have recently installed RC3, opting to perform a flash replacement on my DNS323. I previously had fun_plug and was running pure-ftpd (simple out of the box ftp server). I discovered early on a major issue I had was hackers trying to get in on the standard port 21 which upon discovery, I changed to some obscure port (>1024). Well, after flipping to Alt-F, it took me a while to figure out how to run vsftpd via inetd on a non-standard port (modified /etc/services), however I now have other problems - while vsftpd is great out of the box (v 3.0.2) with Alt-F, I am unable to customize the other aspects of vsftpd when launched through inetd. For example, to limit the number of clients and connections, pasv settings, etc. not to mention listen_port.My question is why are bulk of the customizations of vsftpd not allowed when run through inetd?
I experimented a bit with trying to run vsftpd standalone (which allowed all customizations to work!), but the drawback was that I couldn't get it launch through user services - I enabled user script of '/usr/sbin/vsftp'
On Monday, August 12, 2013 4:28:04 AM UTC+1, Cem Basu wrote:
Hello, I have recently installed RC3, opting to perform a flash replacement on my DNS323. I previously had fun_plug and was running pure-ftpd (simple out of the box ftp server). I discovered early on a major issue I had was hackers trying to get in on the standard port 21 which upon discovery, I changed to some obscure port (>1024). Well, after flipping to Alt-F, it took me a while to figure out how to run vsftpd via inetd on a non-standard port (modified /etc/services), however I now have other problems - while vsftpd is great out of the box (v 3.0.2) with Alt-F, I am unable to customize the other aspects of vsftpd when launched through inetd. For example, to limit the number of clients and connections, pasv settings, etc. not to mention listen_port.My question is why are bulk of the customizations of vsftpd not allowed when run through inetd?They are. You probably have an error in the configuration file, look at the logs.
I experimented a bit with trying to run vsftpd standalone (which allowed all customizations to work!), but the drawback was that I couldn't get it launch through user services - I enabled user script of '/usr/sbin/vsftp'How exactly did you do that?You also have to disable ftp from inetd.
but that did not start vsftpd at reboot.It would be great to either allow full customization through vsftpd.conf under inetd OR have a better way to launch vsftpd standalone.Any suggestions or thoughts?
On Wednesday, August 14, 2013 7:04:09 AM UTC-5, João Cardoso wrote:
On Monday, August 12, 2013 4:28:04 AM UTC+1, Cem Basu wrote:
Hello, I have recently installed RC3, opting to perform a flash replacement on my DNS323. I previously had fun_plug and was running pure-ftpd (simple out of the box ftp server). I discovered early on a major issue I had was hackers trying to get in on the standard port 21 which upon discovery, I changed to some obscure port (>1024). Well, after flipping to Alt-F, it took me a while to figure out how to run vsftpd via inetd on a non-standard port (modified /etc/services), however I now have other problems - while vsftpd is great out of the box (v 3.0.2) with Alt-F, I am unable to customize the other aspects of vsftpd when launched through inetd. For example, to limit the number of clients and connections, pasv settings, etc. not to mention listen_port.My question is why are bulk of the customizations of vsftpd not allowed when run through inetd?They are. You probably have an error in the configuration file, look at the logs.When I run it in standalone (listen=yes) and launched from command line, it works as expected - the settings for max clients holds. But when I flip the config back to 'listen=no' and run it via inetd, the setting for max number of clients does not hold and uses the default I guess (I had 10 open sessions when the setting was set to 2, if not specified the default is 50).
This worked, thanks JoãoBy enabling vsftpd in this manner (outside of inetd), I see the following as far as running processes (with no client connections) -3503 root {rcvsftpd} /bin/sh /sbin/rcvsftpd start3505 root sh /etc/init.d/S63vsftpd start3507 root vsftpdIs this normal?
All working perfectly now, thank you very much. If considering future enhancement on this service, you may want to incorporate the Configure option to pull in the entire contents of vsftpd.conf and not just the basic parameters - just a thought :-)