From parkert@u.washington.edu Fri Nov 3 13:12:33 2000 Received: from jason01.u.washington.edu (root@jason01.u.washington.edu [140.142.8.10]) by lists.u.washington.edu (8.9.3+UW00.05/8.9.3+UW99.09) with ESMTP id NAA32592 for ; Fri, 3 Nov 2000 13:12:32 -0800 Received: from dante56.u.washington.edu (parkert@dante56.u.washington.edu [140.142.15.106]) by jason01.u.washington.edu (8.9.3+UW00.05/8.9.3+UW00.01) with ESMTP id NAA64050 for ; Fri, 3 Nov 2000 13:12:32 -0800 Received: from localhost (parkert@localhost) by dante56.u.washington.edu (8.9.3+UW00.05/8.9.3+UW99.09) with ESMTP id NAA81982 for ; Fri, 3 Nov 2000 13:12:31 -0800 Date: Fri, 3 Nov 2000 13:12:30 -0800 (PST) From: Parker Thompson To: UW Linux Group Subject: Re: xinetd problem In-Reply-To: <3A0327CF.F2EFC452@u.washington.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sorry should have been a bit clearer: Port 21 is open (from an ipchains perspective). A port scan of the machine confirms this. The log would seem to support this, indicating that xinetd and not ipchains is denying the connection. Also, the deamon is started automatically by xinetd, not manually by yours truly. Parker. On Fri, 3 Nov 2000, Cliff wrote: :Yeah, xinetd is strange and new. I haven't yet figured it out, but I can :comment that you should NOT have to manually start the ftp daemon. "xinetd" :will handle this by itself the same way that inetd starts ftpd by itself. : :Also, do you have ipchains set to deny all incoming connections (thus your :need to specifically allow port 21 connections)? I've never had to do :that...I just kill the daemons that I don't want running and leave ipchains :alone...unless you're allowing ftp connections through a firewall or have :masquerading enabled on the ftp machine that is... : :Cliff : :Parker Thompson wrote: : :> Installed redhat 7.0 to discover that inetd.conf has been replaced by this :> crazy xinetd scheme. I didn't install ftp by default but have seence been :> implored to make that happen (obviously I failed to some extent). :> :> I first adjusted my ipchains rules to allow connections to port 21, then :> started the ftp deamon. I seem to still be having a problem with xinetd :> allowing connections. In /var/log/messages I see: :> :> Nov 3 08:30:44 darwin xinetd[4243]: refused connect from 140.142.15.106 :> :> after an ftp connection attempt. Here is my xinetd.conf: :> :> defaults :> { :> instances = 60 :> log_type = SYSLOG authpriv :> log_on_success = HOST PID :> log_on_failure = HOST RECORD :> } :> :> includedir /etc/xinetd.d :> :> Here are the contents of /etc/inetd.d/wu-ftpd :> :> service ftp :> { :> socket_type = stream :> wait = no :> user = root :> server = /usr/sbin/in.ftpd :> server_args = -l -a :> log_on_success += DURATION USERID :> log_on_failure += USERID :> nice = 10 :> } :> :> I'd imagine I'm just missing something simple here. Darn this fancy new :> scheme and it's differing ways. :> :> Any help apreciated, :> :> Parker. : : .