[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Patch RaQ4-All-Security-2.0.1-13323 really messed things up
- Subject: Re: [cobalt-users] Patch RaQ4-All-Security-2.0.1-13323 really messed things up
- From: Brian <brian@xxxxxxxxxxxxxx>
- Date: Fri Jun 28 17:07:00 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
The problem is that I really didn't change much in the old proftpd.conf
file.
My only option was to revert back to the older ProFTPd binary.
I recommend that admins take a look at the files that are being uploaded
after the patch is applied. We worked on it here trying to collect
information to report the trouble and just gave up. One time you'd
upload and the file perms would be --w-----w- and the next time it might
be -rw----rw-
I've got to believe that we aren't the only ones with this problem.
Here's what the top part of my proftpd.conf file looks like:
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.
ServerName "ProFTPD"
ServerType inetd
DeferWelcome off
DefaultServer on
DefaultRoot / admin
DefaultRoot ~/../.. site-adm
DefaultRoot ~ !site-adm
# Port 21 is the standard FTP port.
Port 21
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 0002
# Set the user and group that the server normally runs at.
User nobody
Group nobody
# Normally, we want files to be overwriteable.
<Directory />
AllowOverwrite on
</Directory>
UseReverseDNS off
# A basic anonymous configuration, no upload directories.
# Restore file permissions capability to site administrator
<Global>
# Report localtime, not GMT
TimesGMT off
IdentLookups off
Umask 0002
</Global>
The only lines that are different from the stock conf are:
IdentLookups off
Umask 0002
Neither of these suggest this sort of random problem in the docs.
I'm no stranger to Linux or manuals either. I checked through the docs
and haven't found anything to relate to this. Just double check things
on your servers, if I'm the only one with the problem then so be it but
I find it really odd since we had multiple servers and they ALL had the
same problems.
--
Brian W
On Fri, 2002-06-28 at 18:41, David Lucas wrote:
> At 03:08 PM 6/28/2002, you wrote:
> >I've been reading through the list and seen changes for the proftpd.conf
> >file regarding the SITE_CHMOD change. But has any one looked at files
> >being uploaded to your servers?
> >
> >I've got customers who use web cams to upload pictures via FTP. The were
> >previously working, however since the upgrade I am seeing some really
> >bizarre permission settings such as 0202 and 0402. I have the umask set
> >to 002 in the global section.
> >
> >The really troubling part was that it all worked fine before the update.
> >
> >--
> >Brian W
>
>
> Settings have changed, read the manual and let us know how you make your
> changes.
>
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users