[BlueOnyx:11918] Re: Blocked IP - locked myself out

Sun Jan 6 12:51:53 -05 2013

The host files were blank, but you did have a good point to check and see
if it was running and it was not. I had to enable it in the GUI and - boom
- it is working!

Thank you.

On Sun, Jan 6, 2013 at 11:24 AM, Chuck Tetlow <chuck at tetlow.net> wrote:

>  The FTP block is probably in the hosts allow and hosts deny files.  Check
> those files in the /etc directory, and manually remove anything that
> applies to you/your IP address.
>
> If you don't clear your problem there - check to insure FTP is on in the
> first place and allowed for the domain whose username you are using for the
> login.
>
>
>
> Chuck
>
>
>
>
> *---------- Original Message -----------*
> To: BlueOnyx General Mailing List <blueonyx at mail.blueonyx.it>
> Sent: Sun, 6 Jan 2013 10:40:20 -0600
> Subject: [BlueOnyx:11913] Re: Blocked IP - locked myself out
>
> > My rules list is a mile long.
> >
> > I tried to flush iptables, but all the data keeps coming back.
> > iptables -F
> >
> > I was able to manually edit
> >
> > /etc/sysconfig/iptables
> >
> > and remove my IP address. I can now get into the server/sites. I am
> still blocked from FTP.
> >
> > On Sun, Jan 6, 2013 at 12:03 AM, Chuck Tetlow <chuck at tetlow.net> wrote:
> >
>>
>>
>> > Not sure about the FTP - but I can see that's the wrong syntax for
>> deleting a rule from IPTables.
>> >
>> > First, use "iptables -L -n" to see the firewall rules in IPTables.
>> Look for the rule that contains your own IP address.  Count down the rules
>> in that chain.  You'll probably be looking in the chain "acctin" which are
>> the rules pertaining to incoming packets.  But your IP may be in "acctout"
>> too - the chain acting on outgoing packets.
>> >
>> > If the rule containing your IP address is the fifth rule down in the
>> chain "acctin" of IPTables - use the syntax
>> > iptables -D acctin 5
>> > Which will delete the fifth rule in the chain "acctin".
>> >
>> > If you find your IP address in the "acctout" chain too - delete it the
>> same way.  But I don't think you'll find a outgoing block too, just a
>> incoming block.
>> >
>> > Chuck
>> >
>> >
>> >
>> > *---------- Original Message -----------*
>> > To: blueonyx at mail.blueonyx.it
>> > Sent: Sat, 5 Jan 2013 23:38:28 -0600
>> > Subject: [BlueOnyx:11910]  Blocked IP - locked myself out
>> >
>> > > I put together a windows 8 machine this week and was trying to upload
>> some files via FTP. This connection failed for whatever reason and my IP
>> was blacklisted by the server. I cannot even pull up any of the websites.
>> > >
>> > > I cleared the failed logins in the GUI, rebooted.
>> > >
>> > > Tried to manually drop my IP address
>> > > /sbin/iptables -D INPUT -s xxx.xxx.xxx.xxx -j DROP
>> > >
>> > > added my IP to hosts.allow
>> > >
>> > > Uninstalled HostsDeny
>> > >
>> > > Uninstalled DFIX
>> > >
>> > > cleared PAM_ABL
>> > > rm /var/lib/abl/hosts.db
>> > > rm /var/lib/abl/users.db
>> > >
>> > > if I shut off iptables - I can access the server, but FTP access
>> still fails.
>> > >
>> > > Turn back on IPTABLES - bam - locked out again
>> > >
>> > > /etc/init.d/pam_abl status <-----------clear - nothing blocked
>> > >
>> > > rebooted several times in the process of above...
>> > *------- End of Original Message -------*
>> >
>> > _______________________________________________
>> > Blueonyx mailing list
>> > Blueonyx at mail.blueonyx.it
>> > http://mail.blueonyx.it/mailman/listinfo/blueonyx
>> >
>> >
>
>
> *------- End of Original Message -------*
>
> _______________________________________________
> Blueonyx mailing list
> Blueonyx at mail.blueonyx.it
> http://mail.blueonyx.it/mailman/listinfo/blueonyx
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20130106/ea480f65/attachment.html>