Solved

Solaris 10 zone Solaris security toolkit - no ftp

Posted on 2007-03-20
4
1,208 Views
Last Modified: 2013-12-27
Hi.
I've installed a new zone on my solaris 10. As I allmost allways do I run the Solaris Security Toolkit with jass-execute secure.driver
This turns off allmost everything I don't need, but for this zone I need ftp.
So, I ve done:
1. svcadm enable ftp  
2. netstat -a | grep LISTEN   = ftp is now LISTEN.  
3. svcs -v ftp      State=online
but then I try ftp localhost I get: 421 Service not available?
Any idea what I'm missing?
0
Comment
Question by:kristian_gr
  • 2
4 Comments
 
LVL 16

Assisted Solution

by:Hanno Schröder
Hanno Schröder earned 334 total points
ID: 18756704
Did run the abovementioned commmands in your global zone or in the non-global zone you just installed?
0
 

Author Comment

by:kristian_gr
ID: 18756965
in the none-global zone. I don't want ftp in the global-zone.
I allso don't inherit any pkg-dir from the global zone.
0
 
LVL 22

Assisted Solution

by:blu
blu earned 166 total points
ID: 18844471
It sounds like you may need to configure the ftpaccess file under /etc in the local zone. The error message you are seeing happens anytime the server closes the connection to the client. This can happen if the ftpd was started with -a and the client is not in the ftpaccess file, or if inetadm is configured to run ftpd with tcp-wrappers turned on. I believe Sun Security Toolkit does the latter and
possibly the former as well. If it is tcp-wrappers, then you also need to look for a /etc/hosts.deny and /etc/hosts.allow file.
0
 
LVL 16

Accepted Solution

by:
Hanno Schröder earned 334 total points
ID: 19041530
did you try a
  # inetadm -e ftp
to enable the FTP server?
To disable it, use
  # inetadm -d ftp

You may want to check /etc/ftpd/* config files, too. Especially ftpusers
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hello fellow BSD lovers, I've created a patch process for patching openjdk6 for BSD (FreeBSD specifically), although I tried to keep all BSD versions in mind when creating my patch. Welcome to OpenJDK6 on BSD First let me start with a little …
Installing FreeBSD… FreeBSD is a darling of an operating system. The stability and usability make it a clear choice for servers and desktops (for the cunning). Savvy?  The Ports collection makes available every popular FOSS application and packag…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

896 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now