vsftpd虚拟用户登陆问题
最近配了个ftp服务器,要求实现虚拟用户登录。按照网上的教程配置完成后无法登陆总是出现530 Login incorrent错误!
后来我反复测试觉得是pam认证部分出了问题,请问哪位同事对pam这部分比较了解帮我解决一下啊!!
环境如下:RED HAT ENTERPRISE LINUX5
vsftpd:vsftpd-2.0.5-10.e15
我的vsftpd.conf配置如下:
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
anon_upload_enable=NO
anon_mkdir_write_enable=NO
dirmessage_enable=YES
xferlog_enable=YES
connect_form_port_20=YES
#chown_uploads=YES
#chown_username=whoever
#xferlog_file=/var/log/vsftpd.log
xferlog_std_format=YES
idle_session_timeout=600
data_connection_timeout=120
#ascii_upload_enable=YES
#ascii_download_enable=YES
ftpd_banner=Welcome to blah FTP service
#deny_email_enable=YES
#banned_email_file=/etc/vsftpd/banned_emails
chroot_list_enable=YES
chroot_list_file=/var/ftp
chroot_local_user=NO
listen=YES
listen_port=2121
pam_service_name=vsftpd.pam
guest_enable=YES
guest_username=vsftpd
virtual_use_local_privs=YES
pasv_enable=YES
pasv_min_port=10000
pasv_max_port=10010
userlist_enable=YES
tcp_wrappers=YES
user_config_dir=/etc/vsftpd/userconf
userlist_deny=YES
hide_ids=YES
max_clients=1000
max_per_ip=5
vsfptd.pam内容如下:
auth required /lib/security/pam_userdb.so db=/etc/vsftpd/account
account required /lib/secutity/pam_userdb.so db=/etc/vsftpd/account
account.txt 内容如下:
test
123456
test1
123456
我用了db4生成数据文件
db_load -T -t hash -f /etc/vsftpd/account.txt /etc/vsftpd/account.db
我测试连接时情况如下:
以虚拟用户身份登陆
# ftp 127.0.0.1 2121
Connected to 127.0.0.1.
220 Welcome to blah FTP service
530 Please login with USER and PASS
530 Please login with USER and PASS
KERBEROS_V4 rejected as an authentication type
Name(127.0.0.1:root):test
331 Please specify the password.
Password:
530 Login incorrect
Login failed
以本地用户身份登陆
# ftp 127.0.0.1 2121
Connected to 127.0.0.1.
220 Welcome to blah FTP service
530 Please login with USER and PASS
530 Please login with USER and PASS
KERBEROS_V4 rejected as an authentication type
Name(127.0.0.1:root):MB
331 Please specify the password.
Password:
530 Login incorrect
Login failed
我在网上查阅的资料说使用了pam认证的话本地用户就无法登陆
但是我用虚拟用户登陆依然无法登陆!!
我怀疑是PAM 认证的部分出了问题
那位同事对pam这块比较了解的请帮我解决一下啊!!不胜感激!!!!!!!!!!
