proftpd: Login Failed: Incorrect password

Pllix

Grünschnabel
Hallo Zusamen

Ich hab ein kleines Problem mit dem ProFTPd Server auf einem openSuSe 12.3 Server.
Und zwar kann ich mich nicht per FTP auf diesen Server connecten. Immer kommmt die Meldung, dass das Passwort falsch sei.
Das Passwort stimmt aber zu 100%.
Der Login erfolgt über den Benutzer "ftpbenutzer" welchen ich per Useradd erstellt habe und der Gruppe "ftpuser" zugewiesen.
Der Zugriff soll auf den Ordner "/srv/www/" erfolgen. Die Berechtigungen sind auf 777 ftpbenutzer/ftpuser.

/etc/proftpd/proftpd.conf
Code:
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use.  It establishes a single server
# and a single anonymous login.  It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.

ServerName              "TBASE-BE"
ServerType              standalone
DefaultServer           on

# Port 21 is the standard FTP port.
Port                    21

# FireWall PortRange for PASV
PassivePorts            40000 40999

# Set DebugLevel to values between 0 and 9
# default is 0
DebugLevel              0

# SystemLog -- Redirect syslogging to a file
SystemLog               /var/log/proftpd/proftpd.log

# Don't use IPv6 support by default.
UseIPv6                 off

# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask                   022

# To prevent DoS attacks, set the maximum number of child processes
# to 30.  If you need to allow more than 30 concurrent connections
# at once, simply increase this value.  Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd).
MaxInstances            30

# Set the user and group under which the server will run.
User                    root
Group                   root

# Some logging formats
LogFormat default       "%h %l %u %t \"%r\" %s %b"
LogFormat auth          "%v [%P] %h %t \"%r\" %s"
LogFormat write         "%h %l %u %t \"%r\" %s %b"

RequireValidShell               off

# ------------------------------
# Global Settings
# ------------------------------
<Global>

  # ------------------------------
  # Login
  # ------------------------------

        ServerIdent             on "FTP Server"
        DeferWelcome            on "Welcome"

        TimeoutLogin            60
        MaxLoginAttempts        3
        #MaxClientsPerHost      none
        #MaxClientsPerUser      1 "Only one connection at a time."

        ### PAM Authentication
        # AuthPAM: default: on
        AuthPAM                 on

        # changed AuthPAMConfig file
        AuthPAMConfig           proftpd
        ### PAM Authentication

        AuthUserFile            /etc/passwd
        AuthGroupFile           /etc/group
        UseFtpUsers             off

        ### order of auth modules
        #AuthOrder              mod_auth_unix.c mod_auth_file.c
        AuthOrder               mod_auth_file.c

        DisplayLogin            welcome.msg
        DisplayChdir            .message
        AllowOverride           off

        TimeoutIdle              600
        TimeoutNoTransfer        900
        TimeoutStalled           300
        TimeoutSession          3600

        # To cause every FTP user to be "jailed" (chrooted) into their home
        # directory, uncomment this line.
#       DefaultRoot             ~ web,!users

        DenyFilter              \*.*/
        ListOptions             "-A +R" strict
        UseGlobbing             off

        ShowSymlinks            on
        TimesGMT                on

        # having to delete before uploading is a pain ;)
        AllowOverwrite          on
        AllowRetrieveRestart    on
        HiddenStores            on
        DeleteAbortedStores     on
        #AllowStoreRestart      off     # is contrary to "DeleteAbortedStores"

        WtmpLog                 off
        TransferLog             /var/log/proftpd/xferlog

        # Record all logins
        ExtendedLog             /var/log/proftpd/auth.log AUTH auth

        # Logging file/dir access
        ExtendedLog             /var/log/proftpd/access.log WRITE,READ write

        # Paranoia logging level....
        ExtendedLog             /var/log/proftpd/paranoid.log ALL default

        # SQLLogFile
        #SQLLogFile             /var/log/proftpd/SQL.log
</Global>
#####
# Include other confs
#Include                        /etc/proftpd/conf.d/*.conf

/var/log/proftpd/proftpd.log
Code:
TBASE-BE:/ # cat /var/log/proftpd/proftpd.log
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): AuthOrder in effect, resetting auth module order
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): connected - local  : z.z.z.z:21
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): connected - remote : x.x.x.x:64358
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): FTP session opened.
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching PRE_CMD command 'USER ftpbenutzer' to mod_core
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching PRE_CMD command 'USER ftpbenutzer' to mod_core
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching PRE_CMD command 'USER ftpbenutzer' to mod_delay
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching PRE_CMD command 'USER ftpbenutzer' to mod_auth
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching CMD command 'USER ftpbenutzer' to mod_auth
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching POST_CMD command 'USER ftpbenutzer' to mod_delay
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching LOG_CMD command 'USER ftpbenutzer' to mod_log
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching PRE_CMD command 'PASS (hidden)' to mod_core
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching PRE_CMD command 'PASS (hidden)' to mod_core
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching PRE_CMD command 'PASS (hidden)' to mod_delay
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching PRE_CMD command 'PASS (hidden)' to mod_auth
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching CMD command 'PASS (hidden)' to mod_auth
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): mod_auth_file/0.9: using passwd file '/etc/passwd'
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): mod_auth_file/0.9: using group file '/etc/group'
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): USER ftpbenutzer (Login failed): Incorrect password.
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching POST_CMD_ERR command 'PASS (hidden)' to mod_delay
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching LOG_CMD_ERR command 'PASS (hidden)' to mod_log
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): dispatching LOG_CMD_ERR command 'PASS (hidden)' to mod_auth
Apr 11 08:53:23 TBASE-BE.domain.local proftpd[8863] tbase-be.domain.local (client.domain.local[x.x.x.x]): FTP session closed.

/var/log/proftpd/auth.log
Code:
TBASE-BE:/ # cat /var/log/proftpd/auth.log
TBASE-BE [8863] client.domain.local [11/Apr/2013:08:53:23 +0200] "USER ftpbenutzer" 331
TBASE-BE [8863] client.domain.local [11/Apr/2013:08:53:23 +0200] "PASS (hidden)" 530

/var/log/proftpd/paranoid.log
Code:
TBASE-BE:/ # cat /var/log/proftpd/paranoid.log
client.domain.local UNKNOWN root [11/Apr/2013:08:53:23 +0200] "USER ftpbenutzer" 331 -
client.domain.local UNKNOWN root [11/Apr/2013:08:53:23 +0200] "PASS (hidden)" 530 -

Ich hoffe ihr könnt mir hierbei weiterhelfen, mit Google komm ich nämlich nicht mehr weiter.

Danke und Gruss

Pllix
 

Bratkartoffel

gebratene Kartoffel
Premium-User
Hi,

welche Shell ist dem Benutzer zugeordnet? Falls da in der /etc/passwd die /bin/false steht, tausche das mal gegen ein /bin/sh aus.

Grüße,
BK
 

Pllix

Grünschnabel
Danke für den Tipp, hat aber leider nichts gebracht

In der etc/passwd war als Shell /bin/false eingetragen.
Ich habe es auf /bin/sh geändert, ohne erfolg.
Zu Testzecken hab ich es auch noch auf bin/bash geändert, auch erfolglos.

Code:
ftpbenutzer:x:1000:1001::/srv/www:/bin/bash

Der Logauszug:
Code:
Apr 11 10:54:32 TBASE-BE.domain.local proftpd[9167] tbase-be.domain.local (client.domain.local[x.x.x.x]): FTP session opened.
Apr 11 10:54:32 TBASE-BE.domain.local proftpd[9167] tbase-be.domain.local (client.domain.local[x.x.x.x]): USER ftpbenutzer (Login failed): Incorrect password.
Apr 11 10:54:32 TBASE-BE.domain.local proftpd[9167] tbase-be.domain.local (client.domain.local[x.x.x.x]): FTP session closed.

Gruss Pllix
 

Pllix

Grünschnabel
Hallo nochmals

Es ist mir gelungen das Problem zu lösen.
Es lag an der passwd Datei, allerdings nicht an der Shell...
Das Problem war, dass beim Passwort nur ein x drin Stand. Ich habe daher an dieser Stelle den eintrag aus etc/shadow eingefügt und nun funktioniert es.

Besten Dank für die Hilfe.

Gruss Pllix