Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Solaris 10 zone Solaris security toolkit - no ftp

Posted on 2007-03-20
4
1,211 Views
Last Modified: 2013-12-27
Hi.
I've installed a new zone on my solaris 10. As I allmost allways do I run the Solaris Security Toolkit with jass-execute secure.driver
This turns off allmost everything I don't need, but for this zone I need ftp.
So, I ve done:
1. svcadm enable ftp  
2. netstat -a | grep LISTEN   = ftp is now LISTEN.  
3. svcs -v ftp      State=online
but then I try ftp localhost I get: 421 Service not available?
Any idea what I'm missing?
0
Comment
Question by:kristian_gr
  • 2
4 Comments
 
LVL 16

Assisted Solution

by:Hanno Schröder
Hanno Schröder earned 334 total points
ID: 18756704
Did run the abovementioned commmands in your global zone or in the non-global zone you just installed?
0
 

Author Comment

by:kristian_gr
ID: 18756965
in the none-global zone. I don't want ftp in the global-zone.
I allso don't inherit any pkg-dir from the global zone.
0
 
LVL 22

Assisted Solution

by:blu
blu earned 166 total points
ID: 18844471
It sounds like you may need to configure the ftpaccess file under /etc in the local zone. The error message you are seeing happens anytime the server closes the connection to the client. This can happen if the ftpd was started with -a and the client is not in the ftpaccess file, or if inetadm is configured to run ftpd with tcp-wrappers turned on. I believe Sun Security Toolkit does the latter and
possibly the former as well. If it is tcp-wrappers, then you also need to look for a /etc/hosts.deny and /etc/hosts.allow file.
0
 
LVL 16

Accepted Solution

by:
Hanno Schröder earned 334 total points
ID: 19041530
did you try a
  # inetadm -e ftp
to enable the FTP server?
To disable it, use
  # inetadm -d ftp

You may want to check /etc/ftpd/* config files, too. Especially ftpusers
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you do backups in the Solaris Operating System, the file system must be inactive. Otherwise, the output may be inconsistent. A file system is inactive when it's unmounted or it's write-locked by the operating system. Although the fssnap utility…
I have been running these systems for a few years now and I am just very happy with them.   I just wanted to share the manual that I have created for upgrades and other things.  Oooh yes! FreeBSD makes me happy (as a server), no maintenance and I al…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question