How to disable FOG FTP passive mode?

Tom Elliott

What is the issue you’re having? You’ve kind of given us nothing to work with.

Changing the passive value should be enough to tell you what state the passive mode is set too. But you have given nothing that we can try to assist with.

Sebastian Roth

@Single said in How to disable FOG FTP passive mode?:

but feel no changes at all.

Can you please be more specific on what error you get? Post a picture of the exact error here.

By the way, which version of FOG and which Linux OS do you use?

Single

@Tom-Elliott Hi Tom!
Sorry for lack of information.
When I’m trying to capture image I have messages like that:


Exploring FOG forums and wiki I found out it is about FTP configuration. I am definitely sure there is everything OK with credentials, passwords and permissions.
But while testing FTP I got this:

Somehow ftp passive mode is enabled by default in the ftp client so only after disabling passive that client can get access to server’s FTP directory listing, files etc.

That is why I am asking you, guys, how can I configure FOG FTP client not to use passive mode. Thank you

Single

@Sebastian-Roth Hi Sebastian.
I am using latest stable FOG - v. 1.5.7. Host is Debian 10.

Sebastian Roth

@Single said in How to disable FOG FTP passive mode?:

I tried to change in “fogftp.class.php”
‘passive’ => true
to
‘passive’ => false

From what I see in the code this should work! Try changing the code in line 670ff to this:

        $ftp_pasv = ftp_pasv(
            $this->_link,
            $pasv
        );
        if ($ftp_pasv != true) {
            $this->ftperror($this->data);
        }
        return $ftp_pasv;

There is an interesting post on PHP/FTP/PASV/NAT here as well: https://stackoverflow.com/questions/47020129/how-to-debug-why-php-ftp-wont-work-in-pasv-mode-when-console-ftp-seems-to-work

Single

@Sebastian-Roth It didn’t work for me. I’ll try to dig PHP further

Sebastian Roth

@Single Can you please explain why you disabled passive mode in vsftpd? I do understand that you did it by intention but I am wondering if there is more to it (something like NAT or other special network setup) that we might not know yet and cannot read between the lines.

Did you read the full stackoverflow topic I posted?

Read my post here on how to enable verbose logging for vsftpd - that might help to find out of the change in PHP code does make any difference at all.

Sebastian Roth

@Single Did the logs help you any further?

Single

@Sebastian-Roth Hi Sebastian!
Sorry about such a huge break but I was busy in another office having no possibility to continue working around our problem.
Here are some vsftpd logs:

Tue Mar 10 15:55:58 2020 [pid 28260] FTP command: Client "192.168.0.1", "USER fogproject"
Tue Mar 10 15:55:58 2020 [pid 28260] [fogproject] FTP response: Client "192.168.0.1", "331 Please specify the password."
Tue Mar 10 15:55:58 2020 [pid 28260] [fogproject] FTP command: Client "192.168.0.1", "PASS <password>"
Tue Mar 10 15:55:58 2020 [pid 28259] [fogproject] OK LOGIN: Client "192.168.0.1"
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP response: Client "192.168.0.1", "230 Login successful."
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP command: Client "192.168.0.1", "TYPE A"
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP response: Client "192.168.0.1", "200 Switching to ASCII mode."
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP command: Client "192.168.0.1", "PORT 10,11,2,1,162,19"
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP response: Client "192.168.0.1", "200 PORT command successful. Consider using PASV."
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP command: Client "192.168.0.1", "LIST -a /images"
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP response: Client "192.168.0.1", "150 Here comes the directory listing."
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP response: Client "192.168.0.1", "226 Directory send OK."
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP command: Client "192.168.0.1", "RNFR /images/dev/10bf4879d860"
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP response: Client "192.168.0.1", "550 RNFR command failed."
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FAIL RENAME: Client "192.168.0.1", "/images/dev/10bf4879d860"
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP command: Client "192.168.0.1", "TYPE I"
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP response: Client "192.168.0.1", "200 Switching to Binary mode."
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP command: Client "192.168.0.1", "PORT 10,11,2,1,138,139"
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP response: Client "192.168.0.1", "200 PORT command successful. Consider using PASV."
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP command: Client "192.168.0.1", "STOR /images/buz20"
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP response: Client "192.168.0.1", "553 Could not create file."
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FAIL UPLOAD: Client "192.168.0.1", "/images/buz20", 0.00Kbyte/sec
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP command: Client "192.168.0.1", "QUIT"
Tue Mar 10 15:55:58 2020 [pid 28261] [fogproject] FTP response: Client "192.168.0.1", "221 Goodbye."

Tue Mar 10 15:56:00 2020 [pid 28267] FTP command: Client "192.168.0.1", "USER fogproject"
Tue Mar 10 15:56:00 2020 [pid 28267] [fogproject] FTP response: Client "192.168.0.1", "331 Please specify the password."
Tue Mar 10 15:56:00 2020 [pid 28267] [fogproject] FTP command: Client "192.168.0.1", "PASS <password>"
Tue Mar 10 15:56:00 2020 [pid 28266] [fogproject] OK LOGIN: Client "192.168.0.1"
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP response: Client "192.168.0.1", "230 Login successful."
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP command: Client "192.168.0.1", "TYPE A"
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP response: Client "192.168.0.1", "200 Switching to ASCII mode."
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP command: Client "192.168.0.1", "PORT 10,11,2,1,183,205"
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP response: Client "192.168.0.1", "200 PORT command successful. Consider using PASV."
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP command: Client "192.168.0.1", "LIST -a /images"
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP response: Client "192.168.0.1", "150 Here comes the directory listing."
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP response: Client "192.168.0.1", "226 Directory send OK."
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP command: Client "192.168.0.1", "RNFR /images/dev/10bf4879d860"
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP response: Client "192.168.0.1", "550 RNFR command failed."
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FAIL RENAME: Client "192.168.0.1", "/images/dev/10bf4879d860"
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP command: Client "192.168.0.1", "TYPE I"
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP response: Client "192.168.0.1", "200 Switching to Binary mode."
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP command: Client "192.168.0.1", "PORT 10,11,2,1,142,205"
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP response: Client "192.168.0.1", "200 PORT command successful. Consider using PASV."
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP command: Client "192.168.0.1", "STOR /images/buz20"
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP response: Client "192.168.0.1", "553 Could not create file."
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FAIL UPLOAD: Client "192.168.0.1", "/images/buz20", 0.00Kbyte/sec
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP command: Client "192.168.0.1", "QUIT"
Tue Mar 10 15:56:00 2020 [pid 28268] [fogproject] FTP response: Client "192.168.0.1", "221 Goodbye."

Tue Mar 10 15:56:02 2020 [pid 28274] FTP command: Client "192.168.0.1", "USER fogproject"
Tue Mar 10 15:56:02 2020 [pid 28274] [fogproject] FTP response: Client "192.168.0.1", "331 Please specify the password."
Tue Mar 10 15:56:02 2020 [pid 28274] [fogproject] FTP command: Client "192.168.0.1", "PASS <password>"
Tue Mar 10 15:56:02 2020 [pid 28273] [fogproject] OK LOGIN: Client "192.168.0.1"
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP response: Client "192.168.0.1", "230 Login successful."
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP command: Client "192.168.0.1", "TYPE A"
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP response: Client "192.168.0.1", "200 Switching to ASCII mode."
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP command: Client "192.168.0.1", "PORT 10,11,2,1,154,111"
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP response: Client "192.168.0.1", "200 PORT command successful. Consider using PASV."
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP command: Client "192.168.0.1", "LIST -a /images"
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP response: Client "192.168.0.1", "150 Here comes the directory listing."
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP response: Client "192.168.0.1", "226 Directory send OK."
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP command: Client "192.168.0.1", "RNFR /images/dev/10bf4879d860"
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP response: Client "192.168.0.1", "550 RNFR command failed."
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FAIL RENAME: Client "192.168.0.1", "/images/dev/10bf4879d860"
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP command: Client "192.168.0.1", "TYPE I"
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP response: Client "192.168.0.1", "200 Switching to Binary mode."
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP command: Client "192.168.0.1", "PORT 10,11,2,1,171,239"
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP response: Client "192.168.0.1", "200 PORT command successful. Consider using PASV."
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP command: Client "192.168.0.1", "STOR /images/buz20"
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP response: Client "192.168.0.1", "553 Could not create file."
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FAIL UPLOAD: Client "192.168.0.1", "/images/buz20", 0.00Kbyte/sec
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP command: Client "192.168.0.1", "QUIT"
Tue Mar 10 15:56:02 2020 [pid 28275] [fogproject] FTP response: Client "192.168.0.1", "221 Goodbye."

Tue Mar 10 15:56:02 2020 [pid 28281] [fogproject] FTP response: Client "192.168.0.1", "331 Please specify the password."
Tue Mar 10 15:56:02 2020 [pid 28281] [fogproject] FTP command: Client "192.168.0.1", "PASS <password>"
Tue Mar 10 15:56:02 2020 [pid 28280] [fogproject] OK LOGIN: Client "192.168.0.1"
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP response: Client "192.168.0.1", "230 Login successful."
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP command: Client "192.168.0.1", "TYPE A"
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP response: Client "192.168.0.1", "200 Switching to ASCII mode."
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP command: Client "192.168.0.1", "PORT 10,11,2,1,168,195"
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP response: Client "192.168.0.1", "200 PORT command successful. Consider using PASV."
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP command: Client "192.168.0.1", "LIST -a /images"
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP response: Client "192.168.0.1", "150 Here comes the directory listing."
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP response: Client "192.168.0.1", "226 Directory send OK."
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP command: Client "192.168.0.1", "RNFR /images/dev/10bf4879d860"
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP response: Client "192.168.0.1", "550 RNFR command failed."
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FAIL RENAME: Client "192.168.0.1", "/images/dev/10bf4879d860"
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP command: Client "192.168.0.1", "TYPE I"
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP response: Client "192.168.0.1", "200 Switching to Binary mode."
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP command: Client "192.168.0.1", "PORT 10,11,2,1,150,165"
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP response: Client "192.168.0.1", "200 PORT command successful. Consider using PASV."
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP command: Client "192.168.0.1", "STOR /images/buz20"
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP response: Client "192.168.0.1", "553 Could not create file."
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FAIL UPLOAD: Client "192.168.0.1", "/images/buz20", 0.00Kbyte/sec
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP command: Client "192.168.0.1", "QUIT"
Tue Mar 10 15:56:02 2020 [pid 28282] [fogproject] FTP response: Client "192.168.0.1", "221 Goodbye."

Tue Mar 10 15:56:02 2020 [pid 28288] FTP command: Client "192.168.0.1", "USER fogproject"
Tue Mar 10 15:56:02 2020 [pid 28288] [fogproject] FTP response: Client "192.168.0.1", "331 Please specify the password."
Tue Mar 10 15:56:02 2020 [pid 28288] [fogproject] FTP command: Client "192.168.0.1", "PASS <password>"
Tue Mar 10 15:56:03 2020 [pid 28287] [fogproject] OK LOGIN: Client "192.168.0.1"
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP response: Client "192.168.0.1", "230 Login successful."
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP command: Client "192.168.0.1", "TYPE A"
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP response: Client "192.168.0.1", "200 Switching to ASCII mode."
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP command: Client "192.168.0.1", "PORT 10,11,2,1,200,1"
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP response: Client "192.168.0.1", "200 PORT command successful. Consider using PASV."
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP command: Client "192.168.0.1", "LIST -a /images"
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP response: Client "192.168.0.1", "150 Here comes the directory listing."
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP response: Client "192.168.0.1", "226 Directory send OK."
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP command: Client "192.168.0.1", "RNFR /images/dev/10bf4879d860"
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP response: Client "192.168.0.1", "550 RNFR command failed."
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FAIL RENAME: Client "192.168.0.1", "/images/dev/10bf4879d860"
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP command: Client "192.168.0.1", "TYPE I"
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP response: Client "192.168.0.1", "200 Switching to Binary mode."
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP command: Client "192.168.0.1", "PORT 10,11,2,1,191,241"
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP response: Client "192.168.0.1", "200 PORT command successful. Consider using PASV."
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP command: Client "192.168.0.1", "STOR /images/buz20"
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP response: Client "192.168.0.1", "553 Could not create file."
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FAIL UPLOAD: Client "192.168.0.1", "/images/buz20", 0.00Kbyte/sec
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP command: Client "192.168.0.1", "QUIT"
Tue Mar 10 15:56:03 2020 [pid 28289] [fogproject] FTP response: Client "192.168.0.1", "221 Goodbye."

FOG FTP is unable to rename/move the file on server. But, if I’m loggin in via terminal (or any other client), everything is just fine:

ftp> open
(to) 192.168.0.1
Connected to 192.168.0.1.
220 (vsFTPd 3.0.3)
Name (): fogproject
331 Please specify the password.
Password:
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> put /home/user/lalala /buz20/123
local: /home/user/lalala remote: /buz20/123
200 PORT command successful. Consider using PASV.
150 Ok to send data.
226 Transfer complete.
3235 bytes sent in 0.01 secs (249.1270 kB/s)
ftp> rename /buz20/123 /123
350 Ready for RNTO.
250 Rename successful.

Can I / should I upload here some piece of video demonstrating FOG errors?

Sebastian Roth

@Single Welcome back. Please run the following commands and post output here.

ls -al /images
ls -al /images/dev
getenforce
df -h

Single

@Sebastian-Roth OK, THX!

root@nik-buz-s01:~# ls -al /images
total 896
drwxrwxrwx 26 fogproject ftp          4096 Mar 11 10:15 .
drwxr-xr-x 23 root       root         4096 Dec 10 08:56 ..
-rw-r--r--  1 fogproject fogproject   3235 Mar 11 10:12 123
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 01:09 buz1
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 01:21 buz10
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 00:45 buz11
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 00:44 buz12
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 00:21 buz13
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 02:29 buz14
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 02:09 buz15
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 02:06 buz16
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 01:45 buz17
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 01:29 buz18
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 07:18 buz19
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 02:47 buz2
drwxrwxrwx  2 fogproject ftp          4096 Mar 11 10:15 buz20
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 02:51 buz3
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 02:53 buz4
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 05:30 buz5
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 06:23 buz6
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 02:26 buz7
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 02:28 buz8
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 01:26 buz9
drwxrwxrwx  6 fogproject ftp          4096 Mar  6 11:27 dev
-rw-rw-rw-  1 fogproject ftp        794038 Dec  7 12:57 fogdb.sql.bak
drwxrwxrwx  2 fogproject ftp         16384 Jun 29  2018 lost+found
-rw-r--r--  1 fogproject ftp             0 Mar 10 17:19 .mntcheck
drwxrwxrwx  2 fogproject ftp          4096 Jun 29  2018 postdownloadscripts
drwxrwxrwx  2 fogproject ftp          4096 Nov 27 03:42 s02

root@nik-buz-s01:~# ls -al /images/dev
total 24
drwxrwxrwx  6 fogproject ftp  4096 Mar  6 11:27 .
drwxrwxrwx 26 fogproject ftp  4096 Mar 11 10:15 ..
drwxrwxrwx  2 fogproject ftp  4096 Dec 24 21:10 10bf4879d7a6
drwxrwxrwx  2 root       root 4096 Mar 10 16:31 10bf4879d860
drwxrwxrwx  2 root       root 4096 Dec 24 11:19 c86000e14876
-rwxrwxrwx  1 fogproject ftp     0 Jun 29  2018 .mntcheck
drwxrwxrwx  2 fogproject ftp  4096 Jun 29  2018 postinitscripts

root@nik-buz-s01:~# getenforce
Disabled

root@nik-buz-s01:~# df -h
Filesystem      Size  Used Avail Use% Mounted on
udev            3.9G     0  3.9G   0% /dev
tmpfs           787M   84M  703M  11% /run
/dev/md1        103G  3.5G   94G   4% /
tmpfs           3.9G     0  3.9G   0% /dev/shm
tmpfs           5.0M     0  5.0M   0% /run/lock
tmpfs           3.9G     0  3.9G   0% /sys/fs/cgroup
/dev/sdc2       989G  392G  548G  42% /images
/dev/sdc1       845G  747G   56G  94% /data
tmpfs           787M     0  787M   0% /run/user/1000

Sebastian Roth

@Single Please run these as well:

id fogproject
id ftp
ps aux | grep ftp

Single

@Sebastian-Roth

root@nik-buz-s01:~# id fogproject
uid=1002(fogproject) gid=1003(fogproject) groups=1003(fogproject),113(ftp)
root@nik-buz-s01:~# id ftp
uid=106(ftp) gid=113(ftp) groups=113(ftp)
root@nik-buz-s01:~# ps aux | grep ftp
root       717  0.0  0.0   2800   924 ?        Ss   Feb24   0:00 /usr/sbin/in.tftpd --listen --user root --address :69 --ipv4 -s /tftpboot
root      5411  0.0  0.0   6704   888 pts/0    S+   17:32   0:00 grep ftp
root     13669  0.0  0.0   6620  2456 ?        Ss   Mar10   0:25 /usr/sbin/vsftpd /etc/vsftpd.conf

Sebastian Roth

@Single Please try logging into FTP via command line client and try renaming/moving those directories:

ftp fog.server.ip.add
...
ls /images/dev
rename /images/dev/10bf4879d860 /images/buz20_test

Single

@Sebastian-Roth said in How to disable FOG FTP passive mode?:

rename /images/dev/10bf4879d860 /images/buz20_test

ftp> ls /images/dev
200 PORT command successful. Consider using PASV.
150 Here comes the directory listing.
226 Transfer done (but failed to open directory).
ftp> rename /images/dev/10bf4879d860 /images/buz20_test
550 RNFR command failed.

Why???

FTP is allowed in nft firewall

...
ct state new tcp dport { ftp-data, ftp } accept comment "Allow access to FTP-server"
...

Sebastian Roth

@Single Try changing the ownership (chown -R fogproject:fogproject /images) and then FTP again. Doesn’t make sense, but give it a go.

Single

@Sebastian-Roth nothing changed

Sebastian Roth

@Single I can’t imagine this to be a firewall issue though we can make sure. Just use ftp command line client directly on the FOG server (ftp localhost) and try rename.

Single

# mount | grep images
/dev/sdc2 on /images type ext4 (rw,relatime)

Now it’s looks like it is vsftpd problem. Mb it can be helpful if I paste my vsftpd.conf here:

max_per_ip=200

anonymous_enable=NO
userlist_enable=YES
userlist_file=/etc/vsftpd/vsftpd.userlist
user_config_dir=/etc/vsftpd/user_config_dir/
userlist_deny=NO
local_enable=YES
virtual_use_local_privs=YES

write_enable=YES
local_umask=022
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES

xferlog_std_format=NO
log_ftp_protocol=YES
vsftpd_log_file=/var/log/vsftp.log

chroot_local_user=YES
secure_chroot_dir=/var/run/vsftpd/empty
allow_writeable_chroot=YES

listen=YES
listen_ipv6=NO

pam_service_name=vsftpd

pasv_enable=NO
tcp_wrappers=YES
seccomp_sandbox=NO

#cat /etc/vsftpd/user_config_dir/fogproject 
local_root=/images
write_enable=YES

Sebastian Roth

@Single said in How to disable FOG FTP passive mode?:

Mb it can be helpful if I paste my vsftpd.conf here

You are kidding, right?!?! I have not tested this yet but I am fairly sure the config is causing the issue. If you had told us you have a modified config (different from what FOG generates for you) then we would have found the solution in no time.

chroot_local_user=YES
secure_chroot_dir=/var/run/vsftpd/empty
allow_writeable_chroot=YES

Pretty sure this is part of the issue. But there might be other config options as well.

Default config generated by FOG:

max_per_ip=200
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
xferlog_std_format=YES
listen=YES
pam_service_name=vsftpd
userlist_enable=NO
seccomp_sandbox=NO