Visit Our UNIX and Linux User Community


Dual login to FTP server.


 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users Dual login to FTP server.
# 1  
Old 08-31-2001
Dual login to FTP server.

We have sun-solaris ftp server. Our documentation tell that "...server uses a dual-login procedure for security. This requires all users to login anonymously first, and then login as a designated user...". Can some one please explain how this improves the security.
I am trying to connect to this ftp server through wininet.dll, programatically from powerbuilder. But, due to dual login, I am not able to connect.
I am absolutely out of clue. Can some one please through some light on this topic....please.
# 2  
Old 08-31-2001
i have never heard of this. have you tried to just log in regularly w/ your username and password vs anonamous first.
# 3  
Old 09-04-2001
dual login...

Yes indeed. I tried all combinations, but in vain. Only a anonymous loging, followed by my username and password logs in. Smilie
# 4  
Old 09-07-2001
Hi,

I did not work with Solaris more, then year, but suppose, that this login method prevents from sniffing.
There can be two different ftps. Did you try to change kind of ftp-server in inetd ?

Sincerely,
nailk.
# 5  
Old 09-07-2001
I do not understand what you mean by TWO ftps. Please be specific.
Here is what my Unix Admin has to say..."what happened when the user logs in as anonymous is that the user is restricted to only a certain mount point and not to the rest of the system. then they need to switch users to gain access to there resources. With a standard unix ftp server if a user was allowed to login directly they would have access to the entire system which is a big security risk."
# 6  
Old 10-05-2001
Quote:
Originally posted by sri

Here is what my Unix Admin has to say..."what happened when the user logs in as anonymous is that the user is restricted to only a certain mount point and not to the rest of the system. then they need to switch users to gain access to there resources. With a standard unix ftp server if a user was allowed to login directly they would have access to the entire system which is a big security risk."
Uhhuh?

So let me get this right, first you need to login as anonymous, but then
can login as normal user and then have full access to the file system?

So what is the difference here to allow the users to login directly?
Because if you know the username and passwd you can gain the access anyway.

If you want to limit the user access you can always use the chroot ability found in WU-FTPD at least.

Only thing I can say oh lord Smilie
# 7  
Old 10-05-2001
Please note that "with standard unix ftp server, one would have general access to file system. With dual login, the second login gets the user to the folder alloted to him ONLY."

Previous Thread | Next Thread
Test Your Knowledge in Computers #532
Difficulty: Medium
UTF-8 uses a fixed number of bytes to encode characters.
True or False?

10 More Discussions You Might Find Interesting

1. AIX

Not able to login AIX server but able to login thru console.

Hi, i am able to login to AX server thru console but not able to login directly thru server. also the server is not ping-able with other server. filesystem is fine. and OS version is AIX 5.3. please let me know if you need any specific log. thx in advance. Scriptor (2 Replies)
Discussion started by: scriptor
2 Replies

2. AIX

FTP Server Unable to Login

FTP Server in P590 machine was unable to login, Torwing error while login. Tried to change password through maintenance mode by running AIX 5.3 OS CD, But CD row was unable to detect for the particular LPAR. Please Suggest ASAP. (3 Replies)
Discussion started by: marunmeera
3 Replies

3. Programming

Socket dual client/server Linux

I'm trying to make a "dual/server client" (ipv4,ipv6) with sockets in linux but i don't know how to join both codes. I have a dual client ipv4 and ipv6, but i have problems with the server if you notice the only difference between them it's the AF_INET (pf_inet ipv4, and if_inet6 ipv6) and the port... (3 Replies)
Discussion started by: godna
3 Replies

4. Red Hat

Implement FTP server on RHEL server without using FTP client

We have RHEL 5.8 in our environment, I had a query whether we can implement an FTP server using vsftpd package and Linux configurations like setsebool without using any external FTP clients like FileZilla etc. I am very confused on this. The FTP functionalities that should be present are download &... (3 Replies)
Discussion started by: RHCE
3 Replies

5. Solaris

FTP log only shows FTP LOGIN FROM entry?

OS: Solaris 9 Configuration /etc/syslog.conf daemon.debug /etc/inetd.conf ftp stream tcp6 nowait root /usr/sbin/in.ftpd in.ftpd -A -l -d Found the ftp.log only generate those entries from other servers/hosts. Can we trace on all ftp entries either from/to the server? ... (6 Replies)
Discussion started by: KhawHL
6 Replies

6. AIX

User Account Login Login on your AIX server

I want to learn AIX. I would like to find someone who would be willing to give me a login to their AIX home lab server. My intent is to poke around and discover the similarities and differences of AIX compared to other *NIXs. I am a UNIX admin so I can think of what some immediate concerns may... (1 Reply)
Discussion started by: perl_in_my_shel
1 Replies

7. AIX

How to check if my AIX server has Dual HBA's?

Thanks I need to know if my server has dual HBA and if multipath has been configured. For Multipath I ran lspath and it shows all drives and if MPIO is configured for that drive. Thanks for any input. (2 Replies)
Discussion started by: 300zxmuro
2 Replies

8. Infrastructure Monitoring

How to monitor server dual power?

dears, any one knows how to use linux command to monitor hp server Redhat dual power status? any 1 of power failure then alarm will triggered. (4 Replies)
Discussion started by: maxlee24
4 Replies

9. Cybersecurity

APACHE: Tie in Web Page login with server login

Hello, I have created a web page on a server using apache and added .htaccess and .htpasswd in the folder for authentification. I was wondering if there was anyway to tie-in the login for this page with the login used to logon to the server. i.e. the same login info. is used for both, when... (1 Reply)
Discussion started by: WhotheWhat
1 Replies

10. Web Development

APACHE: Tie in Web Page login with server login

Hello, I have created a web page on a server using apache and added .htaccess and .htpasswd in the folder for authentification. I was wondering if there was anyway to tie-in the login for this page with the login used to logon to the server. i.e. the same login info. is used for both,... (2 Replies)
Discussion started by: WhotheWhat
2 Replies

Featured Tech Videos