On Tue, Jul 03, 2001 at 06:42:06PM +0300, a little birdie told me
that Peter Pentchev remarked
> On Tue, Jul 03, 2001 at 07:23:58PM +0400, Magdalinin Kirill wrote:
> >
> > Jun 29 19:43:34 myserver ftpd[4429]: /etc/pwd.db:
> > No such file or directory
> > Jun 30 15:12:12 myserver ftpd[4961]: /etc/pwd.db:
> > No such file or directory
>
> If you allow anonymous user logins, or some of your users are
> chroot'd during ftp logins, then this means that somebody
> has logged in, has been successfully chroot'd, and has tried
> to retrieve an /etc/pwd.db file from within a chroot environment,
> where you have probably not put such a file :)

To expand:
It's most likely NOT someone trying to fetch it, it's ftpd trying to find
it. Think uid -> username mappings in 'ls'.

-- 
Matthew Fuller     (MF4839)     |    fullermdover-yonder.net
Unix Systems Administrator      |    fullermdfuturesouth.com
Specializing in FreeBSD         |    http://www.over-yonder.net/
"The only reason I'm burning my candle at both ends, is because I
      haven't figured out how to light the middle yet"
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]