Solved

Solaris 10 zone Solaris security toolkit - no ftp

Posted on 2007-03-20
4
1,207 Views
Last Modified: 2013-12-27
Hi.
I've installed a new zone on my solaris 10. As I allmost allways do I run the Solaris Security Toolkit with jass-execute secure.driver
This turns off allmost everything I don't need, but for this zone I need ftp.
So, I ve done:
1. svcadm enable ftp  
2. netstat -a | grep LISTEN   = ftp is now LISTEN.  
3. svcs -v ftp      State=online
but then I try ftp localhost I get: 421 Service not available?
Any idea what I'm missing?
0
Comment
Question by:kristian_gr
  • 2
4 Comments
 
LVL 16

Assisted Solution

by:Hanno Schröder
Hanno Schröder earned 334 total points
Comment Utility
Did run the abovementioned commmands in your global zone or in the non-global zone you just installed?
0
 

Author Comment

by:kristian_gr
Comment Utility
in the none-global zone. I don't want ftp in the global-zone.
I allso don't inherit any pkg-dir from the global zone.
0
 
LVL 22

Assisted Solution

by:blu
blu earned 166 total points
Comment Utility
It sounds like you may need to configure the ftpaccess file under /etc in the local zone. The error message you are seeing happens anytime the server closes the connection to the client. This can happen if the ftpd was started with -a and the client is not in the ftpaccess file, or if inetadm is configured to run ftpd with tcp-wrappers turned on. I believe Sun Security Toolkit does the latter and
possibly the former as well. If it is tcp-wrappers, then you also need to look for a /etc/hosts.deny and /etc/hosts.allow file.
0
 
LVL 16

Accepted Solution

by:
Hanno Schröder earned 334 total points
Comment Utility
did you try a
  # inetadm -e ftp
to enable the FTP server?
To disable it, use
  # inetadm -d ftp

You may want to check /etc/ftpd/* config files, too. Especially ftpusers
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

A metadevice consists of one or more devices (slices). It can be expanded by adding slices. Then, it can be grown to fill a larger space while the file system is in use. However, not all UNIX file systems (UFS) can be expanded this way. The conca…
FreeBSD on EC2 FreeBSD (https://www.freebsd.org) is a robust Unix-like operating system that has been around for many years. FreeBSD is available on Amazon EC2 through Amazon Machine Images (AMIs) provided by FreeBSD developer and security office…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now