Pure-ftpd logging

[peterfu]

As I dont' want anonymous ftp access, I have done following solution with the help of the META module.
- copied rc.ftpd to the startup section of the META module
- for shutdown the original rc.ftpd is used
- modified the parameters to prevent anonymous access
- stop the pure-ftpd server before starting it in this script (however this is not necessary, cause META is called before the original rc.ftpd - should be changed in future firmware releases, that the modules are called after everything else is finished)

This works fine and so I decided to add logging to the server. According to the pure-ftpd documentation the option -o together with some parameters should do the job. However, when I start pure-ftp with this option I always get "unknown option -O" - does anybody know if this is a special compiled version of pure-ftpd, which does not support all the options ?

br
Peter

PS : I know that with IMGDUP module it would be possible to change the rc.ftpd directly, but I want to use IMGDUP only if it's realy necessary

[omega]

Hi Peter,

good idea....

About your question: Thecus compiled the pure-ftp daemon without specifying the --with-altlog flag when calling the configure script.

Therefore the "-O" flag and all the alternative log features are missing....

Try to convince Thecus that use the actual version 1.0.21 or even 1.0.22 and that they enable such features as alternative logs. There might be other interesting features as well that deserves to be enabled...

Otherwise or in the meantime you need to build it yourself and create a module for it. The META module wouldn't do it.

Andreas

[peterfu]

Thanks andreas,
Ok - will try to contact thecus support about that and in the meanwhile I start thinking about a new module
br
Peter

[peterfu]

I've done a first version of a modified pure-ftpd to enable logging of ftp traffic and disabling anonymous login.
Needed modules:
SSHD, SYSUSER, META
FTP has to be enabled on N5200

To do this pure-ftps has to be recompiled, cause the advanced logging features are not part of the FW. I have done this with UBUNTU 6.10.
Steps :
- fetch version 1.0.21
- unpack it
- changed to the created dir pure-ftpd-1.0.21
- following commands:
export LDFLAGS=-static
./configure --with-everything --with-rfc2640 --with-largefiles --with-virtualchroot--without-capabilities --without-pam
make

Then the needed files pure-authd, pure-ftpd and pure-ftpwho can be found then in the src subdirectory.

Create via Webinterface a Folder named PUREFTPD on N5200
Copy the above mentioned files to that folder
Create an empty file pureftpd.log in that directory
Copy the file /img/bin/rc/rc.ftpd to /raid/data/module/META/system/etc/startup/new.ftpd
Now modify here the start section (do not edit it with notepad from windows, cause the file has to be linux style)
Old code:

## simplify to start ftpd process
start_ftpd() {
cd ${pwd}
cmd="./pure-ftpd -g /var/run/pure-ftpd.pid -B -lextauth:/var/run/ftpd.sock -AHM"
sh -c "./pure-authd -p /var/run/pure-authd.pid -s /var/run/ftpd.sock -r /img/bin/ftp-auth-handler & "
sh -c "${cmd} -8 UTF-8 -9 ${ftpdencode} --umask 0000:0000 "
echo "${cmd} -8 UTF-8 -9 ${ftpdencode} --umask 0000:0000 "
echo "FTPD works now!!"
}

New Code:

## simplify to start ftpd process
start_ftpd() {

cd ${pwd}
cmd="/raid/data/PUREFTPD/pure-ftpd -g /var/run/pure-ftpd.pid -B -l extauth:/var/run/ftpd.sock -AHE -O stats:/raid/data/PUREFTPD/pureftpd.log"
sh -c "/raid/data/PUREFTPD/pure-authd -p /var/run/pure-authd.pid -s /var/run/ftpd.sock -r /img/bin/ftp-auth-handler & "
sh -c "${cmd} -8 UTF-8 -9 ${ftpdencode} --umask 0000:0000 "
echo "${cmd} -8 UTF-8 -9 ${ftpdencode} --umask 0000:0000 "
echo "FTPD works now!!"
}

The changes are:
-AHE -> disable here anonymous login
-O stats....... -> specify log file here
- point to new pure-ftpd and pure-authd executables

check now if the new.ftpd executable bit is set, if not chmod it.
check now if the pure-ftpd, pure-ftpd and pure-ftpwho executable bits are set, if now chmod it

Now, the running ftp server can be stopped with:
./new.ftpd stop (you have to be in /raid/data/module/META/system/etc/startup directory)
And now start the new one with:
./new.ftpd start

There is no need for a shutdown script in the shutdown area of the META module, cause the standard rc.ftpd is used for shutdown. The original pure-ftpd is not started, cause the META module is called before that and then the original pure-ftpd can not start.

With the command /raid/data/PUREFTPD/pure-ftpwho -v the actual connected ftp clients can be seen.

For those of You, who don't want to compile and edit the files all can be downloaded here
www.futterknecht.at/Peter/Download/newpureftpd.zip
Please don't edit them from Windows, unzip and copy them in the created PUREFTPD folder.
Login to the N5200
Check and set if needed the executable bits
copy the new.ftpd to the startup section of the META module and set the executable bit
stop the running pure-ftpd with ./new.ftpd stop
start the new one with ./new.ftpd start
(on a reboot the start of the new is done automatically)

Next planned steps:
create a module out of it - so no other modules are needed and no folder has to be created
Access to log file via module preferences
Access to ftpwho output via module preferences (fortunatly it is able to create a WEB page as output)

This current step is more or less a study or quick hack, I've tested it more or less in my environment and it is running stable - but of course I can give no guarantee that it is working 100%.

br
Peter

andreas : I know it's complicated, but it's easy to try with the META module