Top-Themen

AppleEntwicklungHardwareInternetLinuxMicrosoftMultimediaNetzwerkeOff TopicSicherheitSonstige SystemeVirtualisierungWeiterbildungZusammenarbeit

Aktuelle Themen

Administrator.de FeedbackApache ServerAppleAssemblerAudioAusbildungAuslandBackupBasicBatch & ShellBenchmarksBibliotheken & ToolkitsBlogsCloud-DiensteClusterCMSCPU, RAM, MainboardsCSSC und C++DatenbankenDatenschutzDebianDigitiales FernsehenDNSDrucker und ScannerDSL, VDSLE-BooksE-BusinessE-MailEntwicklungErkennung und -AbwehrExchange ServerFestplatten, SSD, RaidFirewallFlatratesGoogle AndroidGrafikGrafikkarten & MonitoreGroupwareHardwareHosting & HousingHTMLHumor (lol)Hyper-VIconsIDE & EditorenInformationsdiensteInstallationInstant MessagingInternetInternet DomäneniOSISDN & AnaloganschlüsseiTunesJavaJavaScriptKiXtartKVMLAN, WAN, WirelessLinuxLinux DesktopLinux NetzwerkLinux ToolsLinux UserverwaltungLizenzierungMac OS XMicrosoftMicrosoft OfficeMikroTik RouterOSMonitoringMultimediaMultimedia & ZubehörNetzwerkeNetzwerkgrundlagenNetzwerkmanagementNetzwerkprotokolleNotebook & ZubehörNovell NetwareOff TopicOpenOffice, LibreOfficeOutlook & MailPapierkorbPascal und DelphiPeripheriegerätePerlPHPPythonRechtliche FragenRedHat, CentOS, FedoraRouter & RoutingSambaSAN, NAS, DASSchriftartenSchulung & TrainingSEOServerServer-HardwareSicherheitSicherheits-ToolsSicherheitsgrundlagenSolarisSonstige SystemeSoziale NetzwerkeSpeicherkartenStudentenjobs & PraktikumSuche ProjektpartnerSuseSwitche und HubsTipps & TricksTK-Netze & GeräteUbuntuUMTS, EDGE & GPRSUtilitiesVB for ApplicationsVerschlüsselung & ZertifikateVideo & StreamingViren und TrojanerVirtualisierungVisual StudioVmwareVoice over IPWebbrowserWebentwicklungWeiterbildungWindows 7Windows 8Windows 10Windows InstallationWindows MobileWindows NetzwerkWindows ServerWindows SystemdateienWindows ToolsWindows UpdateWindows UserverwaltungWindows VistaWindows XPXenserverXMLZusammenarbeit

Mehrere FTP Benutzer sollen sich mit einem Benutzernamen anmelden?

Frage Internet Server

Mitglied: GunterR

GunterR (Level 1) - Jetzt verbinden

08.07.2010 um 17:09 Uhr, 2994 Aufrufe, 7 Kommentare

Hallo Zusammen,

vermutlich durch die Hitze oder einen anderen ungünstigen Zustand komme ich gerade bei meinem kleinen Problem nicht weiter.

Linux 11.2 mit vsftpd Server

Dort ist ein User angelegt "Berta" mit einem Kennwort, jetzt bekommen mehrere Kunden diese Benutzerkennung um sich was runter zuladen. Jedoch läßt der FTP zur Zeit immer nur EINE Verbindung zu. Es sollen sich aber mehrere User gleichzeitig anmelden können.
In den Leistungseinstellungen von VSFTPD ist eingetragen:
Maximale Leerlaufzeit = 15 min
Maximale Klienten pro IP = 5
Max. Klienten = 5

Was mache ich falsch?

Über einen heißen Rat wäre ich dankbar und schicke dann 2-3 Grad Wärme als Danke schön
Gruß
Gunter
Mitglied: Dani
08.07.2010 um 17:23 Uhr
Hi Gunter,
poste uns doch mal die komplette Konfigurationdatei. Die findest du unter "/etc/VSFTPD.conf".


Grüße,
Dani
Bitte warten ..
Mitglied: GunterR
08.07.2010 um 17:39 Uhr
Hi Dani,

vielen Dank schon mal, hier ist die CONF:
01.
#Example config file /etc/vsftpd.conf 
02.
#The default compiled in settings are fairly paranoid. This sample file 
03.
#loosens things up a bit, to make the ftp daemon more usable. 
04.
#Please see vsftpd.conf.5 for all compiled in defaults. 
05.
#If you do not change anything here you will have a minimum setup for an 
06.
#anonymus FTP server. 
07.
#READ THIS: This example file is NOT an exhaustive list of vsftpd options. 
08.
#Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd's 
09.
#capabilities. 
10.
#General Settings 
11.
#Uncomment this to enable any form of FTP write command. 
12.
#write_enable=YES 
13.
#Activate directory messages - messages given to remote users when they 
14.
#go into a certain directory. 
15.
dirmessage_enable=YES 
16.
#It is recommended that you define on your system a unique user which the 
17.
#ftp server can use as a totally isolated and unprivileged user. 
18.
nopriv_user=ftpsecure 
19.
#You may fully customise the login banner string: 
20.
#ftpd_banner="Welcome to FOOBAR FTP service." 
21.
#You may activate the "-R" option to the builtin ls. This is disabled by 
22.
#default to avoid remote users being able to cause excessive I/O on large 
23.
#sites. However, some broken FTP clients such as "ncftp" and "mirror" assume 
24.
#the presence of the "-R" option, so there is a strong case for enabling it. 
25.
#ls_recurse_enable=YES 
26.
#You may specify a file of disallowed anonymous e-mail addresses. Apparently 
27.
#useful for combatting certain DoS attacks. 
28.
#deny_email_enable=YES 
29.
#(default follows) 
30.
#banned_email_file=/etc/vsftpd.banned_emails 
31.
#If  enabled,  all  user  and  group  information in 
32.
#directory listings will be displayed as "ftp". 
33.
#hide_ids=YES 
34.
#Local FTP user Settings 
35.
#Uncomment this to allow local users to log in. 
36.
#local_enable=YES 
37.
#Default umask for local users is 077. You may wish to change this to 022, 
38.
#if your users expect that (022 is used by most other ftpd's) 
39.
#local_umask=022 
40.
#Uncomment to put local users in a chroot() jail in their home directory 
41.
#after login. 
42.
#chroot_local_user=YES 
43.
#You may specify an explicit list of local users to chroot() to their home 
44.
#directory. If chroot_local_user is YES, then this list becomes a list of 
45.
#users to NOT chroot(). 
46.
#chroot_list_enable=YES 
47.
#(default follows) 
48.
#chroot_list_file=/etc/vsftpd.chroot_list 
49.
#The maximum data transfer rate permitted, in bytes per second, for 
50.
#local authenticated users. The default is 0 (unlimited). 
51.
#local_max_rate=7200 
52.
#Anonymus FTP user Settings 
53.
#Allow anonymous FTP? 
54.
anonymous_enable=NO 
55.
#Anonymous users will only be allowed to download files which are 
56.
#world readable. 
57.
anon_world_readable_only=YES 
58.
#Uncomment this to allow the anonymous FTP user to upload files. This only 
59.
#has an effect if the above global write enable is activated. Also, you will 
60.
#obviously need to create a directory writable by the FTP user. 
61.
#anon_upload_enable=YES 
62.
#Default umask for anonymus users is 077. You may wish to change this to 022, 
63.
#if your users expect that (022 is used by most other ftpd's) 
64.
#anon_umask=022 
65.
#Uncomment this if you want the anonymous FTP user to be able to create 
66.
#new directories. 
67.
#anon_mkdir_write_enable=YES 
68.
#Uncomment this to enable anonymus FTP users to perform other write operations 
69.
#like deletion and renaming. 
70.
#anon_other_write_enable=YES 
71.
#If you want, you can arrange for uploaded anonymous files to be owned by 
72.
#a different user. Note! Using "root" for uploaded files is not 
73.
#recommended! 
74.
#chown_uploads=YES 
75.
#chown_username=whoever 
76.
#The maximum data transfer rate permitted, in bytes per second, for anonymous 
77.
#authenticated users. The default is 0 (unlimited). 
78.
#anon_max_rate=7200 
79.
#Log Settings 
80.
#Log to the syslog daemon instead of using an logfile. 
81.
syslog_enable=YES 
82.
#Uncomment this to log all FTP requests and responses. 
83.
#log_ftp_protocol=YES 
84.
#Activate logging of uploads/downloads. 
85.
#xferlog_enable=YES 
86.
#You may override where the log file goes if you like. The default is shown 
87.
#below. 
88.
#vsftpd_log_file=/var/log/vsftpd.log 
89.
#If you want, you can have your log file in standard ftpd xferlog format. 
90.
#Note: This disables the normal logging unless you enable dual_log_enable below.  
91.
#xferlog_std_format=YES 
92.
#You may override where the log file goes if you like. The default is shown 
93.
#below. 
94.
#xferlog_file=/var/log/xferlog 
95.
#Enable this to have booth logfiles. Standard xferlog and vsftpd's own style log. 
96.
#dual_log_enable=YES 
97.
#Uncomment this to enable session status information in the system process listing. 
98.
#setproctitle_enable=YES 
99.
#Transfer Settings 
100.
#Make sure PORT transfer connections originate from port 20 (ftp-data). 
101.
connect_from_port_20=YES 
102.
#You may change the default value for timing out an idle session. 
103.
#idle_session_timeout=600 
104.
#You may change the default value for timing out a data connection. 
105.
#data_connection_timeout=120 
106.
#Enable this and the server will recognise asynchronous ABOR requests. Not 
107.
#recommended for security (the code is non-trivial). Not enabling it, 
108.
#however, may confuse older FTP clients. 
109.
#async_abor_enable=YES 
110.
#By default the server will pretend to allow ASCII mode but in fact ignore 
111.
#the request. Turn on the below options to have the server actually do ASCII 
112.
#mangling on files when in ASCII mode. 
113.
#Beware that turning on ascii_download_enable enables malicious remote parties 
114.
#to consume your I/O resources, by issuing the command "SIZE /big/file" in 
115.
#ASCII mode. 
116.
#These ASCII options are split into upload and download because you may wish 
117.
#to enable ASCII uploads (to prevent uploaded scripts etc. from breaking), 
118.
#without the DoS risk of SIZE and ASCII downloads. ASCII mangling should be 
119.
#on the client anyway.. 
120.
#ascii_upload_enable=YES 
121.
#ascii_download_enable=YES 
122.
#Set to NO if you want to disallow the  PASV  method of obtaining a data 
123.
#connection. 
124.
#pasv_enable=NO 
125.
#PAM setting. Do NOT change this unless you know what you do! 
126.
pam_service_name=vsftpd 
127.
#Set listen=YES if you want vsftpd to run standalone 
128.
listen=YES 
129.
#Set to ssl_enable=YES if you want to enable SSL 
130.
ssl_enable=NO 
131.
#Limit passive ports to this range to assis firewalling 
132.
pasv_min_port=1024 
133.
pasv_max_port=1024 
134.
anon_mkdir_write_enable=NO 
135.
anon_upload_enable=NO 
136.
chroot_local_user=YES 
137.
ftpd_banner=iBrams FTP-Service 
138.
idle_session_timeout=900 
139.
local_enable=YES 
140.
log_ftp_protocol=YES 
141.
max_clients=12 
142.
max_per_ip=5 
143.
pasv_enable=YES 
144.
ssl_sslv2=NO 
145.
ssl_sslv3=NO 
146.
ssl_tlsv1=YES 
147.
write_enable=YES 
148.
anon_root=/srv/ftp
Gruß
Gunter
Bitte warten ..
Mitglied: 60730
08.07.2010 um 17:56 Uhr
moin,

auf diversen Gründen solltest du das mit dem Berta User nicht machen.

Nimm Berta1-10 und verteile die auf die x Uxer.

Alles andere macht keinen Sinn und sorgt nur für Probleme.

btw: les dir mal deine conf durch...
#chroot_local_user=YES
das ( und einiges andere auch) würde ich "scharf" schalten!

Gruß
Bitte warten ..
Mitglied: Dani
08.07.2010 um 18:15 Uhr
Hi Gunter,
ich habe es mal grad in unserem Labor getestet. Mit folgender Konfiguration funktioniert bei mir ein Multi-Login mit dem Benutzer "test":
01.
debian5:~# cat /etc/vsftpd.conf 
02.
# Example config file /etc/vsftpd.conf 
03.
04.
# The default compiled in settings are fairly paranoid. This sample file 
05.
# loosens things up a bit, to make the ftp daemon more usable. 
06.
# Please see vsftpd.conf.5 for all compiled in defaults. 
07.
08.
# READ THIS: This example file is NOT an exhaustive list of vsftpd options. 
09.
# Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd's 
10.
# capabilities. 
11.
12.
13.
# Run standalone?  vsftpd can run either from an inetd or as a standalone 
14.
# daemon started from an initscript. 
15.
listen=YES 
16.
17.
# Run standalone with IPv6? 
18.
# Like the listen parameter, except vsftpd will listen on an IPv6 socket 
19.
# instead of an IPv4 one. This parameter and the listen parameter are mutually 
20.
# exclusive. 
21.
#listen_ipv6=YES 
22.
23.
# Allow anonymous FTP? (Beware - allowed by default if you comment this out). 
24.
anonymous_enable=no 
25.
26.
# Uncomment this to allow local users to log in. 
27.
local_enable=YES 
28.
29.
# Uncomment this to enable any form of FTP write command. 
30.
#write_enable=YES 
31.
32.
# Default umask for local users is 077. You may wish to change this to 022, 
33.
# if your users expect that (022 is used by most other ftpd's) 
34.
#local_umask=022 
35.
36.
# Uncomment this to allow the anonymous FTP user to upload files. This only 
37.
# has an effect if the above global write enable is activated. Also, you will 
38.
# obviously need to create a directory writable by the FTP user. 
39.
#anon_upload_enable=YES 
40.
41.
# Uncomment this if you want the anonymous FTP user to be able to create 
42.
# new directories. 
43.
#anon_mkdir_write_enable=YES 
44.
45.
# Activate directory messages - messages given to remote users when they 
46.
# go into a certain directory. 
47.
dirmessage_enable=YES 
48.
49.
# Activate logging of uploads/downloads. 
50.
xferlog_enable=YES 
51.
52.
# Make sure PORT transfer connections originate from port 20 (ftp-data). 
53.
connect_from_port_20=YES 
54.
55.
# If you want, you can arrange for uploaded anonymous files to be owned by 
56.
# a different user. Note! Using "root" for uploaded files is not 
57.
# recommended! 
58.
#chown_uploads=YES 
59.
#chown_username=whoever 
60.
61.
# You may override where the log file goes if you like. The default is shown 
62.
# below. 
63.
#xferlog_file=/var/log/vsftpd.log 
64.
65.
# If you want, you can have your log file in standard ftpd xferlog format 
66.
#xferlog_std_format=YES 
67.
68.
# You may change the default value for timing out an idle session. 
69.
#idle_session_timeout=600 
70.
71.
# You may change the default value for timing out a data connection. 
72.
#data_connection_timeout=120 
73.
74.
# It is recommended that you define on your system a unique user which the 
75.
# ftp server can use as a totally isolated and unprivileged user. 
76.
#nopriv_user=ftpsecure 
77.
78.
# Enable this and the server will recognise asynchronous ABOR requests. Not 
79.
# recommended for security (the code is non-trivial). Not enabling it, 
80.
# however, may confuse older FTP clients. 
81.
#async_abor_enable=YES 
82.
83.
# By default the server will pretend to allow ASCII mode but in fact ignore 
84.
# the request. Turn on the below options to have the server actually do ASCII 
85.
# mangling on files when in ASCII mode. 
86.
# Beware that on some FTP servers, ASCII support allows a denial of service 
87.
# attack (DoS) via the command "SIZE /big/file" in ASCII mode. vsftpd 
88.
# predicted this attack and has always been safe, reporting the size of the 
89.
# raw file. 
90.
# ASCII mangling is a horrible feature of the protocol. 
91.
#ascii_upload_enable=YES 
92.
#ascii_download_enable=YES 
93.
94.
# You may fully customise the login banner string: 
95.
#ftpd_banner=Welcome to blah FTP service. 
96.
97.
# You may specify a file of disallowed anonymous e-mail addresses. Apparently 
98.
# useful for combatting certain DoS attacks. 
99.
#deny_email_enable=YES 
100.
# (default follows) 
101.
#banned_email_file=/etc/vsftpd.banned_emails 
102.
103.
# You may restrict local users to their home directories.  See the FAQ for 
104.
# the possible risks in this before using chroot_local_user or 
105.
# chroot_list_enable below. 
106.
chroot_local_user=YES 
107.
108.
# You may specify an explicit list of local users to chroot() to their home 
109.
# directory. If chroot_local_user is YES, then this list becomes a list of 
110.
# users to NOT chroot(). 
111.
#chroot_list_enable=YES 
112.
# (default follows) 
113.
#chroot_list_file=/etc/vsftpd.chroot_list 
114.
115.
# You may activate the "-R" option to the builtin ls. This is disabled by 
116.
# default to avoid remote users being able to cause excessive I/O on large 
117.
# sites. However, some broken FTP clients such as "ncftp" and "mirror" assume 
118.
# the presence of the "-R" option, so there is a strong case for enabling it. 
119.
#ls_recurse_enable=YES 
120.
121.
122.
# Debian customization 
123.
124.
# Some of vsftpd's settings don't fit the Debian filesystem layout by 
125.
# default.  These settings are more Debian-friendly. 
126.
127.
# This option should be the name of a directory which is empty.  Also, the 
128.
# directory should not be writable by the ftp user. This directory is used 
129.
# as a secure chroot() jail at times vsftpd does not require filesystem 
130.
# access. 
131.
secure_chroot_dir=/var/run/vsftpd 
132.
133.
# This string is the name of the PAM service vsftpd will use. 
134.
pam_service_name=vsftpd 
135.
136.
# This option specifies the location of the RSA certificate to use for SSL 
137.
# encrypted connections. 
138.
rsa_cert_file=/etc/ssl/certs/vsftpd.pem
Allerdings war mein OS Debian Lenny 5.0 x86. Sollte aber keinen Unterschied machen. Einfach meine Konfiguration kopieren abe vorher eine Kopie deiner Bisherigen erstellen!

Jedoch läßt der FTP zur Zeit immer nur EINE Verbindung zu. Es sollen sich aber mehrere User gleichzeitig anmelden können.
Wie hast du das herausgefunden? Sprich aus dem LAN ODER WAN?


Grüße,
Dani
Bitte warten ..
Mitglied: GunterR
08.07.2010 um 18:17 Uhr
@Timo

Das mit dem Berta verstehe ich absolut, nur leider wird es mir so vorgegeben.

Und das mit #chroot_local_user=YES ist temporär.

Danke dir aber für den Hinweis.

Gruß
gunter
Bitte warten ..
Mitglied: GunterR
08.07.2010 um 18:20 Uhr
Hi Dani,

Allerdings war mein OS Debian Lenny 5.0 x86. Sollte aber keinen Unterschied machen. Einfach meine Konfiguration kopieren abe
vorher eine Kopie deiner Bisherigen erstellen!

vielen Dank für deine Mühe, ich werde es etwas später gleich probieren und natürlich auch berichten.



> Jedoch läßt der FTP zur Zeit immer nur EINE Verbindung zu. Es sollen sich aber mehrere User gleichzeitig anmelden
können.
Wie hast du das herausgefunden? Sprich aus dem LAN ODER WAN?


1. die User haben es berichtet
2. habe ich es dann ausprobiert über WLAN, LAN im Office sowie aus dem Rechenzentrum gleichzeitig.

Gruß und Danke
Gunter
Bitte warten ..
Neuester Wissensbeitrag
Humor (lol)

Linkliste für Adventskalender

(3)

Information von nikoatit zum Thema Humor (lol) ...

Ähnliche Inhalte
Batch & Shell
Mehrere AD Benutzer aus CSV Datei mit PowerShell erstellen (1)

Frage von windelterrorist zum Thema Batch & Shell ...

Windows 7
gelöst Benutzer können sich anmelden,. obwohl sie nicht der Gruppe "User" zugehören (9)

Frage von speedy26gonzales zum Thema Windows 7 ...

Windows 7
gelöst Bestimmter Benutzer kann sich nicht anmelden (6)

Frage von xbast1x zum Thema Windows 7 ...

Heiß diskutierte Inhalte
Router & Routing
gelöst Ipv4 mieten (22)

Frage von homermg zum Thema Router & Routing ...

Windows Server
DHCP Server switchen (20)

Frage von M.Marz zum Thema Windows Server ...

Exchange Server
gelöst Exchange 2010 Berechtigungen wiederherstellen (20)

Frage von semperf1delis zum Thema Exchange Server ...

Hardware
gelöst Negative Erfahrungen LAN-Karten (19)

Frage von MegaGiga zum Thema Hardware ...