Re: can ping, but can't ftp

Really?

I don't recall building it.

Would it be buried in any config job stream that I may have run
following instructions?

Would it be buried in some set up instructions to copy it from a @SAMP@
file?

Tracy Johnson
Measurement Specialties, Inc.

BT







NNNN


> -----Original Message-----
> From: James Hofmeister [mailto:hofmeister_james@xxxxxxxxx]
> Sent: Thursday, September 08, 2005 1:13 PM
> To: Johnson, Tracy; HP3000-L@xxxxxxxxxxxxx
> Subject: can ping, but can't ftp
>
>
> Hello Tracy,
>
> FYI:
>
> A SETPARMS.arpa.sys file has never been included in a FTP
> patch or an O.S.
> release. This file specifically needs to be build by a
> system manager.
>
> The functionality of "PASSWORD=ON/OFF" was a feature added to enhance
> security by restricting logon in the case where "no" MPE
> password is present
> on a USER.ACCOUNT logon. This enhancement goes in hand with
> a customers
> implementation of security/3000 passwords (instead of MPE
> passwords) or
> option logon udc's into an application with passwords (instead of MPE
> passwords) and prevents this USER.ACCOUNT from being accessed
> with FTP.
>
> If a "PASSWORD=ON" entry is not found in the
> SETPARMS.ARPA.SYS file created
> by a system manager, then the default is "PASSWORD=OFF"
> (security feature
> disabled).
>
> Regards,
>
> James Hofmeister
> Email: <first>.<last>@hp.com
> Hewlett Packard - Global Solutions Engineering (WTEC)
> P.S. My Ideals are my own, not necessarily my employers.
>
>
> ----- Original Message -----
> From: "Johnson, Tracy" <Tracy.Johnson@xxxxxxxxxx>
> To: <HP3000-L@xxxxxxxxxxxxx>
> Sent: Thursday, September 08, 2005 12:31 PM
> Subject: Re: [HP3000-L] can ping, but can't ftp
>
>
> Anything in your SETPARMS.ARPA file?
> Anything in your FTPUSERS.ARPA file?
> Anything in your FTPACCES.ARPA file?
>
> (Although these files would let your user get as far as a
> user prompt, I'd think.)
>
> It hit us the other day when one of our interal users (who
> only had a Security/3000 password) couldn't use FTP because
> password is set to "ON" in SETPARMS (defaulted somewhere
> ostensibly between any of the upgrades between 6.5 and 7.5.)
> Those of us who also had MPE passwords never noticed because
> behavior never changed.
>
> Tracy Johnson
> Measurement Specialties, Inc.
>
> BT
>
>
>
>
>
>
>
> NNNN
>
>
> > -----Original Message-----
> > From: HP-3000 Systems Discussion [mailto:HP3000-L@xxxxxxxxxxxxx] On
> > Behalf Of Greg Terterian
> > Sent: Thursday, September 08, 2005 11:51 AM
> > To: HP3000-L@xxxxxxxxxxxxx
> > Subject: Re: [HP3000-L] can ping, but can't ftp
> >
> >
> > I have customers from all over the world logging to my
> system via FTP
> > and transfer files back and forth. There is this one specific
> > customer, who used to logon and do FTP. However since we
> changed our
> > DSL (supposedly upgraded to a faster one - which of course changed
> > our IP address) they get timeout when they try to FTP to our site.
> >
> > Around at that time they installed a firewall at their
> site, but they
> > swear that they are not blocking our site. And here is the strange
> > part:
> >
> > I can go to their site and ping any one of my customers and
> actually
> > be able
> > to use FTP to go to those customers. I can ping our site
> from their
> > machine without any problem as well, but the minute I go to
> ftp and
> > try to open our site... it sits there for 3-5 minutes and
> than comes
> > back with timeout message. It seems it is only my site
> that their HP
> > is having problem to connect to. Can the problem be at my site?
> >
> > Any help, comments or directions will be appreciated.
> >
> > Thank you in advance
> > Greg Terterian
> >
> > * To join/leave the list, search archives, change list settings, *
> > * etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
> >
>
> * To join/leave the list, search archives, change list settings, *
> * etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
>
>
>

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *

.

Relevant Pages

  • Re: Reverse agent forwarding architecture
    ... At that point he might save all the customers' passwords and use them for personal gains without our authorization. ... With the default authentication options of SSH only public keys seem to enable keeping the secret out of the hands of employees. ... That's why we're looking for a solution that would only require adding a row to the authorized_keys file on each new server we need access to and a private key that should never leave our trusted server but only be used for calculating responses to the authentication requests. ...
    (SSH)
  • Re: MPE FTP transfer into HFS namespace
    ... need to recall some of our backups to the MPE server. ... I assume that one could mget from MPE in the same ... MPE FTP transfer into HFS namespace ...
    (comp.sys.hp.mpe)
  • Re: FTP External Intranet Access
    ... gain CMD access to the server and change things around on the OS ... I like Susan's idea of a third party, non AD integrated FTP service. ... LOphtCrack to brute force the passwords. ... SBS Golfer wrote: ...
    (microsoft.public.windows.server.sbs)
  • Re: 100s of logon errors for MSFTPSVC, event id: 100
    ... You have FTP exposed to the outside world, hackers have seen it listening on port 21, and are trying a variety of common passwords to see if they can fluke it. ... Its easy for a script to scan thousands of IP addresses for an FTP server, ...
    (microsoft.public.windows.server.sbs)
  • Re: 100s of logon errors for MSFTPSVC, event id: 100
    ... Giving only that user access by way of a username will still create hacking attempts. ... To secure it down, if users have fixed IPs you can configure FTP to deny all, except relevant IPs ... > a user who uses a weak password, hackers may manage to guess it. ... > "somecompany.com" Of course if all of your users have strong passwords> the ...
    (microsoft.public.windows.server.sbs)