Path: utzoo!utgpu!jarvis.csri.toronto.edu!mailrus!ukma!husc6!rice!sun-spots-request
From: ejs@goldhill.com
Newsgroups: comp.sys.sun
Subject: FTP (user) and access problems
Keywords: Software
Message-ID: <8904281334.AA08762@god.goldhill.com>
Date: 9 May 89 10:07:37 GMT
Sender: usenet@rice.edu
Organization: Sun-Spots
Lines: 39
Approved: Sun-Spots@rice.edu
Original-Date: Fri, 28 Apr 89 09:34:49 EDT
X-Sun-Spots-Digest: Volume 7, Issue 278, message 16 of 24

Since installing SunOS 4.0.1, we've have "access denied" problems
attempting to FTP to our Suns.  The scenario is as follows:

	! ftp goddard
	Connected to goldhill.com
	220 goddard FTP server (SunOS 4.0) ready
	Name (goddard:ejs): !ejs
	530 User ejs access denied.
	Login failed.
	ftp> !quit

If, instead of "ejs", we substitute other legitimate users, some succeed
(and prompt for password) and others don't.  I haven't been able to detect
a pattern for those users who can use FTP and those who can't.  Some users
who can FTP use csh and others user tcsh.  Some users are in different
groups.  But nothing seems common.  Even "root" can't FTP.

I've even tried to turn on debugging and logging of all *.debug messages
and although a message is sent to the logger indicating "access denied",
there is nothing more explicit in the log messages.

Eric Swenson
Gold Hill Computers, Inc
26 Landsdowne Street, 4th Floor
Cambridge, MA 02139
(617) 621-3405

[[ First off, if a user is using a shell other than /bin/sh and /bin/csh,
then they will not be able to FTP.  You need to create a file called
/etc/shells which contains the name of ALL the legal shells (yes,
including /bin/sh and /bin/csh) as they appear in the "login shell" field
of the passwd file.  This is certainly part of your problem, but may not
be all of it.  Second, ftpd will not authenticate a user who has a null
password in passwd.  Finally, there is the file "/etc/ftpusers".  This
file is supposed to contain a list of users who are explicitly not allowed
to use ftp.  This is described in the manual page "ftpusers(5)".  Despite
the fact that the manual page says the file should be in "/usr/etc", a
strings of "in.ftpd" reveals the path name "/etc/ftpusers", leading me to
believe that it is really looking for it there.  --wnl ]]