Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
To: cygwin AT cygwin DOT com
X-Injected-Via-Gmane: http://gmane.org/
Path: not-for-mail
From: Andrew DeFaria <Andrew AT DeFaria DOT com>
Newsgroups: gmane.os.cygwin
Subject: Re: Anonymous ftp on 1.3.9
Date: Sat, 23 Mar 2002 00:08:02 -0800
Lines: 61
Message-ID: <3C9C37E2.2080300@DeFaria.com>
References: <3C97E7F9 DOT 10602 AT Salira DOT com> <471575205 DOT 20020320094429 AT syntrex DOT com> <3C98ED84 DOT 4070302 AT Salira DOT com> <1661350862 DOT 20020321115454 AT syntrex DOT com> <3C9A0766 DOT 2040705 AT DeFaria DOT com> <1601254193 DOT 20020322094631 AT syntrex DOT com> <752975278 DOT 20020322223933 AT gmx DOT net> <3C9BC97E DOT 1070201 AT Salira DOT com> <19813131141 DOT 20020323012852 AT gmx DOT net>
NNTP-Posting-Host: dsl-64-195-250-225.telocity.com
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-Trace: main.gmane.org 1016870892 24829 64.195.250.225 (23 Mar 2002 08:08:12 GMT)
X-Complaints-To: usenet AT main DOT gmane DOT org
NNTP-Posting-Date: Sat, 23 Mar 2002 08:08:12 +0000 (UTC)
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:0.9.4) Gecko/20011128 Netscape6/6.2.1
X-Accept-Language: en,ru

Pavel Tsekov wrote:

> AD> Funny my experience is the opposite. I turned on the Guest account then 
> AD> edited my /etc/passwd to change "Guest" to "ftp" in the username field 
> AD> only and set the home directory to point to my FTP area. At this point
> AD> "Guest" does not have a password. Anonymous ftp works but then again so 
> AD> does a telnet as user ftp without a password! Funny thing is that 
> AD> anonymous ftp does not show the contents of my FTP area while telneting
> AD> in as ftp does!
> 
> Guest is some kind of special beast - try with a freshly created user
> which has no password. Try to login via ftp using this account -
> you'll see (maybe) what I mean.
> 
> AD> Now if I put a password on the Guest account then telneting in as ftp
> AD> requires that password. But now anonymous ftping doesn't!
> 
> ftpd knows anonymous is guest and passes to the API LogonUser an empty
> password... Still I dont know what happens when you telnet - I've
> played just with ftpd.
> 
> AD> Any ideas? I want to set up anonymous ftp but I don't want to leave
> AD> myself wide open to do so.
> 
> Well its written in the README - you have to use account with an empty
> pass :) Can't help...

Well I got it up and running. Here's what I had to do. Perhaps this should be included
in some sort of FAQ:

1) Changed username Guest -> ftp in /etc/passwd.
2) Changed ftp's home directory to point to my ftp area.
3) Turned on Guest account.
4) Made sure Guest's password was unset.
5) Set ftp's shell to /bin/false. This insures that telnet ftp <nopassword> is not
a security problem.

Regarding setup of anonymous ftp area:

According to ftpd(1) it says to make ~ftp owned by "root" and unwriteable by anyone.
I set it to 555 and owned by SYSTEM.

~ftp/bin: The man page says this must be owned by "root" and unwriteable by anyone so
again I set it to 555 and owned by system. The man page says put a copy of ls.exe in
~ftp/bin and make it 111. This doesn't work for 2 reasons. First you also need a copy
of cygwin1.dll in ~ftp/bin. Secondly if it's set to 111 the ls does nothing! So I changed
it to 555. I also set cygwin1.dll to 555 and make both of these owned by SYSTEM.

~ftp/etc: The man page says the directory should be owned by root and unwriteable by
anyone. Again I set it to 555 and owned by SYSTEM. I put a copy of passwd and group
in there to as well as a customized motd and set them to 444 and owned by SYSTEM.

~ftp/pub: I didn't create this.

Also, you need to remove ftp and anonymous from /etc/ftpusers.

The only problem remaining is that if I browse to my ftp area with Netscape 6.x using
ftp://<Home PC IP Address> I get a blank page. If I go to ftp://<Home PC IP Address>/subdir
then it displays the contents properly. If I go to ftp://<Home PC IP Address> in IE 6
it switches from IE to Explorer and displays things properly. Strange...




--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/