Hi there I just installed grsec and this is the absolute best thing i've ever seen fist off i'd like to thank the creator / creators of all this great stuff
It's wonderful to have guys like you around. Thank you a million times
I have one quite simple question i'm trying to get an acl working with proftpd and i can't use learning mode cause the proftpd is xinetd and i don't want to reboot the server so. Ho do i get this thing to allow people to log in ??
This is what i have so far
/usr/sbin/proftpd h {
/var/run/utmp rw
/var/log/wtmp rw
/etc/ftpusers r
/var/run/xferlog rw
/var/run/proftpd/scoreboard rwx
/dev/log rw
+CAP_SYS_CHROOT
+CAP_NET_BIND_SERVICE
It s not working though i get this in my error log
Mar 2 01:58:09 ns proftpd[14709]: ns.unixircd.com (d150-34-149.home.cgocable.net[24.150.34.149]) - sh4d0w chdir("/home/sh4d0w"): No such file or directory
Mar 2 01:58:09 ns PAM_pwdb[14709]: (ftp) session closed for user sh4d0w
Mar 2 01:58:11 ns kernel: grsec: From 24.150.34.149: denied access to hidden file / by (in.proftpd:4340) UID(0) EUID(0), parent (xinetd:23783) UID(0) EUID(0)
Mar 2 01:58:11 ns proftpd[4340]: ns.unixircd.com (d150-34-149.home.cgocable.net[24.150.34.149]) - FTP session opened.
Mar 2 01:58:11 ns PAM_pwdb[4340]: (ftp) session opened for user sh4d0w by (uid=0)
Mar 2 01:58:11 ns kernel: grsec: From 24.150.34.149: denied access to hidden file / by (in.proftpd:4340) UID(0) EUID(2525), parent (xinetd:23783) UID(0) EUID(0)
Mar 2 01:58:11 ns proftpd[4340]: ns.unixircd.com (d150-34-149.home.cgocable.net[24.150.34.149]) - sh4d0w chdir("/home/sh4d0w"): No such file or directory
Mar 2 01:58:11 ns PAM_pwdb[4340]: (ftp) session closed for user sh4d0w
Mar 2 01:58:20 ns kernel: grsec: From 24.150.34.149: shutdown auth success for (gradm:20141) UID(0) EUID(0), parent (bash:29494) UID(0) EUID(0)
I ve tryed opening /home/sh4d0w but that does nt really help please anyhelp would be great.