Closed Mesqualito closed 6 years ago
Hey @Mesqualito , Thanks for reaching out about this with all this detail :). Your setup looks good, I think i know what might be causing the issues:
Ref the db and flag issues, it might be worth changing to start /usr/sbin/pure-ftpd directly rather than our run.sh script as I know we reference the db location in there too. Or if that doesn't work you could create a new Dockerfile based off this one but override the run.sh file with changes to the db path etc.
Ref the PAMAuthentication / conf change, I'm not sure that the conf files are being read but it's worth trying at least :).
Hope this helped a little.
Thanks for your reply, I'll test your hints!
Is there no proof yet, that the config-files will be read in your hardened-branch as mentioned in https://github.com/stilliard/docker-pure-ftpd/issues/10 ?
No problem, hope it helps.
Initially I just assumed the conf files were being run (never assume haha), but I later found on debian they are are first read by a wrapper script that the init system would use. Without us creating a similar wrapper or adapting the normal debian one I don't think pure-ftp would read them.
Best regards, Andrew Stilliard.
On 20 September 2017 at 11:35, Jochen notifications@github.com wrote:
Thanks for your reply, I'll test your hints!
Is there no proof yet, that the config-files will be read in your hardened-branch as mentioned in #10 https://github.com/stilliard/docker-pure-ftpd/issues/10 ?
— You are receiving this because you commented. Reply to this email directly, view it on GitHub https://github.com/stilliard/docker-pure-ftpd/issues/48#issuecomment-330813300, or mute the thread https://github.com/notifications/unsubscribe-auth/AAEujpehN5YyxUV9YhulZX9ppSzIPQLVks5skOpfgaJpZM4PcXuM .
Closing for now, but please re-open if you're still having any issues with this.
Our webshop-team needs a server to upload pictures via ftp (explicit ftp over tls, Port 21 as far as I know) with passive ftp (ports 30000 - 30009) and get them via https. Don't ask me why...
So I have been trying to set up docker via one docker-compose.yml and some Dockerfiles. And I am stuck at this pure-ftpd-image. Therefore I have some questions...
I am using stilliard/pure-ftpd:hardened. Inside the container, the ftp-server-daemon is running with:
...but the puredb seems to be located in /etc/pure-ftpd/, not in /etc/pure-ftpd/db/. Why?
And even with changing my Dockerfile-entry:
(without adding db in the puredb-path), I always get:
Why is "Only anonymous FTP allowed here"? I use the -E-flag, my [user] is stored in the /etc/pure-ftpd/passwd/pureftpd.passwd-file, repeating exactly the steps you describe here on GitHub (of course with another username and pwd):
Maybe there is some error with the -P-flag?
And the third question is: if I only want to allow pureftpd-virtual-users, can I delete PAMAuthentication in /etc/pure-ftpd/conf or set it to "no"?
The docker-container runs on CentOS 7 with kernel 4.13.2-1.el7.elrepo.x86_64, the firewall looks like:
and docker ps -a tells me:
The docker-compose.yml contains (snippet):
[...], and I use vol-ssldata in another nginx-container for https.
As far as I can think (which can't be too far ;-) the problem lies in the pureftp-container.
Thanks for your good work and your answers in advance!
Sincerely,
Jochen