Re: help with allowing ftp access.

From: Lew Pitcher (lpitcher_at_sympatico.ca)
Date: 10/08/04

• Next message: P.T. Breuer: "Re: Dual booting XP machine"
• Previous message: Chris Cox: "Re: DNS Assistance Needed.........."
• In reply to: me: "Re: help with allowing ftp access."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Date: Thu, 07 Oct 2004 20:47:46 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

me wrote:
[snip]
> I added the line
> ftp stream tcp nowait /usr/sbin/tcpd in.ftpd
> to /etc/inetd.conf
>
> but I still get the following error now.
>
> carter@seabass:~$ ftp seabass
> Connected to seabass.halcon.com.
> 421 Service not available, remote server has closed connection
>
> This is different than before. It was -> connection refused.

This is better.

The "connection refused" error occured because you had no ftp server running.

The "421 Service not available" error comes directly from the ftp server. A
"4xx" level message is one that indicates a transient error condition. The
"x2x" level of the message indicates that it is a reply referring to a control
or data connection. So, you are connecting with a live ftp server, and it is
telling you that it cannot let you continue.

So, this indicates an ftp server configuration condition that's causing the
ftp server to refuse connections. Take a look at the man page for your ftp
server (in.ftpd) and see what configuration files are used. Take a look at
those files, and see if there's anything that would cause the server to reject
the connection with a 421 error. Try the /etc/ftpaccess file, and see if there
are any date/time limits set, or client address restrictions.

- --
Lew Pitcher

Master Codewright & JOAT-in-training | GPG public key available on request
Registered Linux User #112576 (http://counter.li.org/)
Slackware - Because I know what I'm doing.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFBZeOyagVFX4UWr64RAvFAAKCuq+vjZPUMQMKAB0xfc8JPhKfSsQCgwZem
4VCXYpWB7BWpU1FUSazrFAo=
=XevG
-----END PGP SIGNATURE-----

---

• Next message: P.T. Breuer: "Re: Dual booting XP machine"
• Previous message: Chris Cox: "Re: DNS Assistance Needed.........."
• In reply to: me: "Re: help with allowing ftp access."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Relevant Pages Re: Microsoft FTP Server problem on W2K? ... It is a UNISYS ClearPath mainframe system that is trying to FTP using ... passive mode to a MS FTP server. ... Currently the mainframe FTPs in ACTIVE mode. ... Since the mainframe pushes files to our customers over a WAN connection, ... (microsoft.public.inetserver.iis.security) Re: how do i close an app that has no forms? ... FTP connections through Internet Explorer send info ... If you don't have a firewall ... > a connection is instantiated with a server. ... > a request is sent to the FTP server, ... (microsoft.public.vb.general.discussion) Re: .NET CF Socket are behaving very strangely ... I analysed the FTP log and I notice that PASV ... limited range of ports forwarded to the ftp server that is different ... error "No connection could be made because the target machine actively ... (microsoft.public.pocketpc.developer) RE: Telnet/ftp problems SBS2000 ... Please make sure your client computers are configured as both Firewall ... will find two options "Enable folder view for FTP sites" and "Use Passive ... that the control connection has been successfully established, ... (other than port 21) ... (microsoft.public.windows.server.sbs) Re: IPSwitch, Inc. WS_FTP Server ... > bounce attack as well as PASV connection hijacking. ... > The FTP bounce vulnerability allows a remote attacker to cause the ... > anonymously along with any internal addresses that the FTP server has ... That means it's got to handle a PORT ... (Bugtraq)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(13)