Hi, On Thursday 31 July 2008 20:09:30 Matvey Kozhev wrote: > It says: > > Error '425 Security: Bad IP connecting.' during ftp transfer of > libbrowserlauncher2-java_1.3.dfsg-0ubuntu1.dsc
hm... interesting, doesn't appear anywhere in the logs (only that the upload
failed). However I'm quite sure that bit in vsftpd is responsible in what
you're seeing:
int
vsf_ftpdataio_get_pasv_fd(struct vsf_session* p_sess)
[..]
/* SECURITY:
* Reject the connection if it wasn't from the same IP as the
* control connection.
*/
if (!tunable_pasv_promiscuous)
{
if (!vsf_sysutil_sockaddr_addr_equal(p_sess->p_remote_addr,
p_accept_addr))
{
vsf_cmdio_write(p_sess, FTP_BADSENDCONN, "Security: Bad IP
connecting.");
vsf_sysutil_close(remote_fd);
vsf_sysutil_sockaddr_clear(&p_accept_addr);
return -1;
}
}
Now I don't have the best knowledge about networking stuff, but it looks like
the passive ftp data connection seen by vsftpd on spooky doesn't originate
from the same address. The question is what this tells us (maybe someone is
intercepting this connections? s.th. else?) or how to fix it. Maybe using
active instead of passive mode helps? Anyone with better network knowledge
got some more hints?
Cheers,
Stefan.
signature.asc
Description: This is a digitally signed message part.
-- Ubuntu-motu mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-motu
