PDA

View Full Version : unable to use ftp install



bitsofme
23rd October 2007, 11:18 PM
Hi all,

I have been trying to install fedora 7 on a machine with only a cd drive.

I have burned the boot.img to a cd and copied the install files into a directory on my server called f7

When I boot the machine everything works up to the point that I need to give the installer the ftp site information.

I keep getting the following error message in the xferlog

Mon Oct 22 07:23:15 2007 1 10.0.0.3 0 /f7/images/product.img b _ o r andrew ftp 0 * i
Mon Oct 22 07:23:15 2007 1 10.0.0.3 0 /f7/disc1/images/product.img b _ o r andrew ftp 0 * i
Mon Oct 22 07:23:15 2007 1 10.0.0.3 0 /f7/images/stage2.img b _ o r andrew ftp 0 * i
Mon Oct 22 07:23:16 2007 1 10.0.0.3 0 /f7/disc1/images/stage2.img b _ o r andrew ftp 0 * i

hosts allow has the line
all: 10.0.0.0/255.255.0.0

vsftpd.conf
anonymous_enable=YES
local_enable=YES
write_enable=YES
local_umask=022
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
xferlog_std_format=YES
listen=YES
pam_service_name=vsftpd
userlist_enable=YES
tcp_wrappers=YES

iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- anywhere anywhere

Chain FORWARD (policy ACCEPT)
target prot opt source destination
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain RH-Firewall-1-INPUT (1 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT icmp -- anywhere anywhere icmp any
ACCEPT esp -- anywhere anywhere
ACCEPT ah -- anywhere anywhere
ACCEPT udp -- anywhere 224.0.0.251 udp dpt:mdns
ACCEPT udp -- anywhere anywhere udp dpt:ipp
ACCEPT tcp -- anywhere anywhere tcp dpt:ipp
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ftp
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:https
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:http
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:afs3-fileserver
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:imap
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:imaps
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited


has anyone any idea what I have done wrong??

bitsofme
23rd October 2007, 11:21 PM
Sorry I must add I have also entered the following to keep selinux happy but no luck

setsebool -P ftp_home_dir=1

daverj
23rd October 2007, 11:27 PM
I know this doesn't answer your question, but whenever I do installs via nfs or ftp, I turn selinux off. It prevents a log of headaches. But then again, I just do stuff on my local home netowrk, so I don't really need to be paranoid about the security stuff when doing installs.

davidj

bitsofme
24th October 2007, 02:53 PM
sorry guys just me making stupid assumptions.

I assumed that the ftp root directory was /home/andrew and gave a path to the files from this point instead of /home/andrew/ftp/f7

Thats what GUIs like GFTP do by starting you in your home directory so assumption made:)

I had spent a lot of time trying to get http install working and when i managed to get selinux happy I got slapped in the face with mod-security and gave up.

but thanks to all now just need to reset selinux back and make sure I switch vsftpd off when finished