[BlueOnyx:23060] Re: CushyCMS and ProFTPD

[Ken Hohhof]

"Allow User(s) access to FTP" is ticked for the Vsite but the only user is
the siteAdmin.  The Vsite has no ordinary users.

Anonymous FTP is not enabled.  I notice that /web is owned by nobody.

The customer reports CushyCMS worked for 3 years until about 2 weeks ago.
The yum update took place on July 24, so it's pretty clear that was the
cause.  Unfortunately the customer's web designer refuses to spend any more
time troubleshooting and is pointing the finger at us.

Since the problem started with the ProFTPd bugfix, I'm starting to wonder if
CushyCMS uses the site cpfr and site cpto commands.  That seems unlikely,
but I can't know for sure without signing up for a CushyCMS account myself
to try it.  The only other explanation I can think of is that the bugfix had
some unanticipated consequences or collateral damage.


-----Original Message-----
From: Blueonyx <blueonyx-bounces at mail.blueonyx.it> On Behalf Of Michael
Stauber
Sent: Thursday, August 1, 2019 2:24 AM
To: blueonyx at mail.blueonyx.it
Subject: [BlueOnyx:23055] Re: CushyCMS and ProFTPD

Hi Ken,

> ]) - RELINQUISH PRIVS: unable to seteuid(PR_ROOT_UID): Operation not 
> permitted

I've just run into the same issue on 5210R and it took me a while to figure
out what that was:

Please check what user-account CushyCMS is using. You will get this exact
error message if you try to login with FTP when you aren't siteAdmin and
when the Vsite has "Allow FTP for non-siteAdmin's" unticked.

In that case the user can still login by FTP, but the .ftpaccess file in the
users home directory will prevent the FTP client from executing
*any* commands whatsoever.

siteadmin's will always be allowed to login by FTP for as long as the FTP
server is enabled and the Vsite or the siteAdmin itself isn't suspended.

--
With best regards

Michael Stauber
_______________________________________________
Blueonyx mailing list
Blueonyx at mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx