【转】[转]vsftpd出现500 OOPS: ca…
来源:互联网 发布:Java paths 类 编辑:程序博客网 时间:2024/06/06 16:32
500 OOPS: child died
解决方法:
service vsftpd restart
就OK了!但是下次重启了还会这样··
2 在终端输入命令:
setsebool -P ftpd_disable_trans 1
service vsftpd restart
这样每次重启机器都可以了·
原因就在SELinux。===========================================================================================另外一篇:
关于vsftpd部分本地用户不能登录,部分可以”的问题,我重新做了一些实验,我把这个问题结合实验的结果再重新描述一下,请各位高人,帮忙看看可能的原因。谢谢了!
系统中原来就有的本地帐号都不能登录,我的/etc/vsftpd/vsftpd.conf文件的配置如下:
local_enable=YES
write_enable=YES
chroot_local_user=YES
pam_service_name=vsftpd
/etc/pam.d/vsftpd存在且正常。
登录时错误信息都是一样的:
500 OOPS: cannot change directory:/home/xxxx
Login failed.
421 Service not available, remote server has closedconnection
他们的home目录都是/home/xxxx。/home和/home/xxxx的权限都是755。
以上这些帐号都不能ftp登录,这些都是平常经常使用的,可以用shell登录的。
我新创建了一个usr1帐号,
# useradd -G test -d /tmp/usr1 usr1
能ftp登录,他的home为/tmp/usr1,在/分区上。而/home我是mount到/dev/hda9上的。
#mount
/dev/hdb1 on / type ext3 (rw)
/dev/hda9 on /home type ext2 (rw)
所以,我猜想:是否是由于/home分区的原因,而造成“主目录在/home分区的帐号”都不能登录呢?
为了验证以上设想,我试着再创建了一个帐号,
useradd -G test -d /home/usr3 usr3
/home, /home/usr3 的权限都是755。
usr3 ftp登录失败。
500 OOPS: cannot change directory:/home/usr3
Login failed.
421 Service not available, remote server has closedconnection
至此,我觉得可以确定是由于/home分区的原因,而造成“主目录在/home分区的帐号”都不能登录。
参考文章:
-----------------------------------------------------------------------------------------
I finished my second upgrade to Fedora Core 4. Not everything isironed out yet with the build of course. But one thing is for surea lot has happened to the RedHat I knew before.
I must say of all the changes, for me the nicest addition is thenew SELinux extensions. For deep background on the reasons for andtheory of SELinux read, The Inevitability of Failure: The FlawedAssumption of Security in Modern Computing Environments
The more I work with SELinux the more I realize I need to knowabout it, and how exactly it does all its stuff. It certainlychanges things relating to users, directories and access. As I amstarting to learn it, I'm sure I'm doing things the hard-way.:)
The major difference, so far for me, in Red Hat's SELinux is theway ftp is handled. vsftpd is still the server which is great.However, it seems to be designed to run as a daemon rather thaninvoked via xinet.d. If you grab a working copy of the xinet.d filefor vsftpd you can invoke it via xinet.d wrapper. I did my firstserver upgrade in this manner. The current one I am trying as adaemon. I certainly think I will miss some of the features that thexinet.d wrapper brings, and may yet return to it.
Of all the issues I saw most notable is if you want to enablechroot directory's outside of the normal /home/xxx vsftpd. Thesewill fail with a
500 OOPS: cannot change directory: /mnt/xxxxx
I was able to use ftp if I logged in with an account with adirectory in /home, but once I set a user account to have a homedrive outside of /home (in this case on a mounted secondary disk)vsftpd barfs the above.
I found information at the NSA that indicates you can disableSELinux protection of the ftp daemon.
setsebool -P ftpd_disable_trans 1
This seems a bit drastic. It certainly works for now though.
I think ultimately the issue resides with policies, but as SELinuxpolicies are new to me, it will take time before it all gets sortedout. As I spend time with the new SELinux extensions in Fedora Core4 I will keep you updated on my thoughts and configurationlessons.
---------------------------------------------------------------------------------------
解决办法:
--------------------------------------------------------------------------------------
# setsebool ftpd_disable_trans 1
所以,可以确定原因就在SELinux。
- 【转】[转]vsftpd出现500 OOPS: ca…
- 500 OOPS: could n…
- [转]vsftpd出现500 OOPS: cannot change directory的解决办法
- [转] 彼尔…
- Matching Calibrated Ca…
- 【VSFTPD】vsftp出现500 OOPS错误/SELINUX
- 【转】vsFTPd 服务器初学者指南
- [原创]pthread_mutex_lock ca…
- Failed to read ca…
- 2012-11-09《Oops I Did…
- 黑马程序员JAVA 模拟QQ聊天工具 CA…
- vsftpd 500OOPS
- vsftpd-ftp 正常登录后,出现500 OOPS: cap_set_proc
- vsftpd出现“Response: 500 OOPS: cannot change directory”解决方法
- 配置 vsftpd 出现:500 OOPS:cannot change directory
- vsftpd出现“Response: 500 OOPS: cannot change directory”解决方法
- Configuring FTP on Exadata <转…
- [转] Playing with ptrace, Part I…
- node.js 支付宝完整支付、网页支付、当面付款、订单查询、签名校验
- 【转】Fedora 下TeXLive 2011的安…
- python2.7中的编码问题
- 【转】关于 Serif Sans-Serif Mono…
- 【转】fedora16 开启ssh 防火墙设…
- 【转】[转]vsftpd出现500 OOPS: ca…
- java——与c++之不同——复合类型——enum
- cygwin 安装sshd服务
- 【转】Windows 7 的EAP-MD5认证机…
- 【原】CentOS6 源码安装GCC 4.7.0
- 南阳oj 题目722 数独
- 【转】什么是SCI, SSCI, EI, ISTP
- 韶华易逝
- Python中Swithch Case语法实现