I have used pure-ftpd before on SuSE 9.2 and on Fedora. There was some sort of bug in pure-ftpd that was to do with creating virtual user accounts. This was so slow in getting fixed, so I dumped pure-ftpd for proftpd instead. On FC 6 proftpd 1.3.0a works right out of the box for me. No messing with virtual user accounts. I just used the default user settings, which it gets from the passwd file. [quote] Flexible, stable and highly-configurable FTP server ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based directory visibility. This package defaults to the standalone behaviour of ProFTPD, but all the needed scripts to have it run by xinetd instead are included. [/quote] If proftpd is available on SuSE I would recommend giving that a look at as well. HTH Regards Keith On Wed, 22 Aug 2007, Terje J. Hanssen wrote:
To: opensuse-security@opensuse.org From: Terje J. Hanssen <terje@nordland-teknikk.no> Subject: [opensuse-security] Setting up FTP and SuseFirewall
pure-ftpd vs vsftpd: I wish to setup FTP on a OpenSUSE 10.2 workstation to receive scanned documents from a networked MFP machine which has "Scan to FTP". First I enabled pure-ftpd service with xinetd, deactivated SuSEFirewall and was able to receive scanned ftp documents in my homedir as seleced. Next I tried to enable the more secure vsftpd instead, but did't get any FTP document, even not with the FireWall deactivated. Maybe also something also has to be configured in vsftpd.conf?
SuseFirewall: I have a default SuseFirewall setup just with SSH enabled for external Zone access. My question is how configure SUSEFirewall preferably with YaST to receive FTP documents from my network scanner?
I'm using fixed IP addresses on the LAN, not DHCP. I haven't activated Firewall for the Internal zone and thought therefore everything on my LAN had access, but scanned documents don't come through. I've read FTP may need that port 20-21 both TCP and UDP in the Firewall, maybe this is for External zone only?
Rgds, Terje J. Hanssen
--------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
------------------------------------------------------------ http://www.karsites.net http://www.raised-from-the-dead.org.uk This email address is challenge-response protected with http://www.tmda.net ------------------------------------------------------------ --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org