November 12, 201015 yr Hi everybody, we found an issue at FTP server. Logged in as root vsFTPd cannot open directories at share points: > 226 Transfer done (but failed to open directory). This happens at current 5.0 beta2 and latest stable 4.5.6. After some configuration tests I found a way to fix this problem. Add this line to go-file at config directory: echo "guest_enable=NO" >> /etc/vsftpd.conf It seems vsFTPd identify every user as guest - including root user with enabled guest feature. So my question is: Is it misconfigured? Is there any security problem known? Best regards, Mike
November 12, 201015 yr Hi! I recognized a lot of wired behavior on my server accessing it with FTP from my Mac. I tried different clients. In fact that changed nothing. Fortunately SMB seems to be "rock solid". If you could I would advise using SMB instead. Bye.
November 12, 201015 yr Author Thanks for your reply, shire. But we need FTP because we want to access our server outside from everywhere. I tested vsFTPd with no errors yet. With added line above all local users can login and browse into their folders. Folder permissions seems to work fine too. Maybe you can explain your wired behavior, please? Thank you!
November 12, 201015 yr Hi! I doubt that this will help you with your problems. I use a standard configuration on my server and changed only a few things using the GUI. Accessing the array worked quite good but I couldn't see any directory on my user share or the other folders (user/users/disc1 etc.). After doing this: http://lime-technology.com/forum/index.php?topic=2138.0 ..I got my files "back". Before that, I only could access it via SMB. Today my data drive ran full. The "mover" stopped copying files from my cache drive to the array. Using FTP I wasn't able to see the folder containing the MKV files on the cache or data drive. SMB instead worked great. Using the mentioned "trick" I got the MKV files back. Besides I discovered your issue witch I could reproduce on the last stable and beta version. I think that there is a lot of potential for the improvement of the FTP server in unRAID. Nevertheless I will stop using FTP and get back to SMB. Isn't that fast but STABLE. Bye.
November 12, 201015 yr Hi! I doubt that this will help you with your problems. I use a standard configuration on my server and changed only a few things using the GUI. Accessing the array worked quite good but I couldn't see any directory on my user share or the other folders (user/users/disc1 etc.). After doing this: http://lime-technology.com/forum/index.php?topic=2138.0 ..I got my files "back". Before that, I only could access it via SMB. Today my data drive ran full. The "mover" stopped copying files from my cache drive to the array. Using FTP I wasn't able to see the folder containing the MKV files on the cache or data drive. SMB instead worked great. Using the mentioned "trick" I got the MKV files back. Besides I discovered your issue witch I could reproduce on the last stable and beta version. I think that there is a lot of potential for the improvement of the FTP server in unRAID. Nevertheless I will stop using FTP and get back to SMB. Isn't that fast but STABLE. Bye. There is no/very little configuration done for vsftpd. Assuming you get the settings correct and then restart the ftp service you should be fine after that. The settings are not persistent between reboots so you will have to take care of that. Just google vsftpd and vsftp.conf for the settings that can be applied. 4.5.6 and 5.0b2 handle permissions VERY VERY differently! It is one of the new features/improvements in the 5.0 series. I have used fetch on my Mac to access files via ftp on my server without problems in the past. I don't generally mess with ftp, but will take a another look later this weekend when I get a chance and report back what i find.
November 12, 201015 yr Author I don't generally mess with ftp, but will take a another look later this weekend when I get a chance and report back what i find. Thank you, I'm curious about you. After reading manpage of vsftpd.conf I think this lines are completly wrong for default configuration: # All file ownership will be 'root' guest_enable=YES guest_username=root anon_upload_enable=YES anon_other_write_enable=YES anon_mkdir_write_enable=YES As I thought guest_enable means login user as guest. Seems they havn't permissions for browsing directory content - as described above. After set 'guest_enable=NO' all works fine on our two unRAID servers (plus and pro version). guest_enable If enabled, all non-anonymous logins are classed as "guest" logins. A guest login is remapped to the user specified in the guest_username setting. Have a nice weekend! Mike edit: some corrections
November 13, 201015 yr Hi! I don't generally mess with ftp, but will take a another look later this weekend when I get a chance and report back what i find. Thank you, I'm curious about you. After reading manpage of vsftpd.conf I think this lines are completly wrong for default configuration: # All file ownership will be 'root' guest_enable=YES guest_username=root anon_upload_enable=YES anon_other_write_enable=YES anon_mkdir_write_enable=YES As I thought guest_enable means login user as guest. Seems they havn't permissions for browsing directory content - as described above. After set 'guest_enable=NO' all works fine on our two unRAID servers (plus and pro version). guest_enable If enabled, all non-anonymous logins are classed as "guest" logins. A guest login is remapped to the user specified in the guest_username setting. Have a nice weekend! Mike edit: some corrections I would like to check that trick too. Due to the fact, that the vsftpd.conf-File is set back to default after a reboot I have to restart the FTP-server with the array up and running. Do you know the command for that during a telnet session? Google didn't helped me quite much. Thanks. Bye.
November 13, 201015 yr Due to the fact, that the vsftpd.conf-File is set back to default after a reboot I have to restart the FTP-server with the array up and running. Do you know the command for that during a telnet session? Google didn't helped me quite much. Put this line in your "go" script: sed -i "s/guest_enable=YES/guest_enable=NO/" /etc/vsftpd.conf It will edit the /etc/vsftpd.conf file substituting guest_enable=NO for guest_enable=YES Joe L.
November 13, 201015 yr Hi! Due to the fact, that the vsftpd.conf-File is set back to default after a reboot I have to restart the FTP-server with the array up and running. Do you know the command for that during a telnet session? Google didn't helped me quite much. Put this line in your "go" script: sed -i "s/guest_enable=YES/guest_enable=NO/" /etc/vsftpd.conf It will edit the /etc/vsftpd.conf file substituting guest_enable=NO for guest_enable=YES Joe L. Big thanks Joe! Worked like a charm. Hopefully it will stay that way.;-) Besides: This should be changed in the the "standard delivery version" you can download. I took me two weeks to solve this problem finally. Bye.
November 13, 201015 yr FTP is there and on by default, everyone is going to have to tweak it for there needs. My guess is that the old file works just fine with 4.5.6 but with the new permissions in 5.0b2 it is causing problems with the default vsftp.conf file.
November 14, 201015 yr Hi! FTP is there and on by default, everyone is going to have to tweak it for there needs. My guess is that the old file works just fine with 4.5.6 but with the new permissions in 5.0b2 it is causing problems with the default vsftp.conf file. No...I had these problems with 4.5.6 and 5.0b2. Besides...I considered unRAID a NAS-OS like the Drobo or a QNAP. Easy to use and foolproof. For that purpose it should run without any geek style tweaking (which something like this is definitely). Due to the fact, that many people are using FTP I still think, that this should be changed by default. But I don't want to argue...You can see it both ways. Anyways...unRAID and me are going to have a long time relationship.:-) Bye.
November 14, 201015 yr Actually, very few people use ftp... (If they did there would probably be configuration fields for it on the management console) for that reason your feedback and input, and solution to the permissions problem by changing guest_enable=NO is very good indeed. Joe L.
November 14, 201015 yr Hi! FTP is there and on by default, everyone is going to have to tweak it for there needs. My guess is that the old file works just fine with 4.5.6 but with the new permissions in 5.0b2 it is causing problems with the default vsftp.conf file. No...I had these problems with 4.5.6 and 5.0b2. Besides...I considered unRAID a NAS-OS like the Drobo or a QNAP. Easy to use and foolproof. For that purpose it should run without any geek style tweaking (which something like this is definitely). Due to the fact, that many people are using FTP I still think, that this should be changed by default. But I don't want to argue...You can see it both ways. Anyways...unRAID and me are going to have a long time relationship.:-) Bye. Glad to here that you and unRAID are getting along great. I don't mean to be argumentative or anything like that; sorry if it came across that way. I consider myself a power user and I very rarely touch FTP. I might not have realized the FTP problem because I usually log in as root when messing with FTP.
November 15, 201015 yr I am also a power user.... and I've never had to use "ftp" except for once... and I was transferring a file to the server from a machine that did not know how to do samba shares but could do ftp. For real "power users" there is a completely different version of ftp available as an installable package from unMENU's package manager. I've never needed it either, but one user of unRAID submitted it as a package. It helped them. (Who knows, it might have been the same issue you figured out that caused them to try the alternate "ftp" ) Stick around... don't be afraid to ask questions... We all learn every day. You'll be in good company.
November 18, 201015 yr guest_enable=NO made it so I can see the files now, but it changed my home directory to / I checked the passwd file and the directory is set to /mnt/user/, am I missing something?
December 18, 201015 yr Hi everyone, can someone please tell me how to restart the vsftpd service? Thanks in advance! tatorsalad [edit] Never mind, found it myself
December 19, 201015 yr Weird Problem: When i'm logged in at local_root=/mnt I can't access the user directory. It's rights are set to 700. This seems to be the Problem for all users (normal user and also root). I think that's the same reason why Giraffeninja's local_root=/mnt/user brings the user back to /. guest_enable=NO didn't help. What can I do about that? tatorsalad [edit] Aaaaaaand again, found it myself. I shouldn't be so impatient. This did the trick: http://lime-technology.com/forum/index.php?topic=2138.0 So long!
January 1, 201115 yr Wow, I'm so turned around. FTP used to work, then I couldn't browse directories (sometime between 4.3.beta6 and 4.5.6). I started find /mnt/user -type d -exec chmod 755 {} \; and it took quite a while to run (8-10 minutes), during which I started to wonder if I was in the process of screwing up 3 TB of server. Is this really the right way to go, and should I forge ahead with the file permissions at 700? Will that affect the ability of the SMB shares to read/write to the existing files (since I don't log into the shares)? Should group or world need any permissions at all? I know enough about linux to put in a dixie cup, but cut my teeth on all command line interfaces - I'm just paranoid that I'll undo some grand internal plan, though I'm curious how all the permissions got "screwed up" to begin with - many files seem to have random x permissions thrown in group or world, and missing on owner.
Archived
This topic is now archived and is closed to further replies.