Hi Folks,
i'll bite after searching for hours:
FreeBSD 12.1-p2 with ProFTPd 1.3.6b
ProFTPd doesn't recognize Group-Membership of the logged in user
The designated Folder has ownership "root:TheGroup" with 0775 Permissions, and i'm a member of that group (it's not a system-group, the GID>1000)
I can log in, read files (download), everything fine.
The other way round (Upload) fails. FileZilla says: 550 Permission denied.
Huh?
The same Folder (exported via Samba) works fine from any Samba-Client (read and write incl. Group-Ownership-change).
If i change ownership to "zvoni:TheGroup" it works (as expected).
What am i missing?
I first thought it was because ProFTPd was running inside a Jail, but it's the same when running outside the Jail.
/usr/local/etc/proftpd.conf is pretty much a stock-file just added TLS-stuff and a <Directory>-Directive
That's the output of ProFTPd -V
EDIT: I forgot: already tried switching off CapabilitiesEngine, tried setting PersistantPasswd to on, Nada, njet
i'll bite after searching for hours:
FreeBSD 12.1-p2 with ProFTPd 1.3.6b
ProFTPd doesn't recognize Group-Membership of the logged in user
The designated Folder has ownership "root:TheGroup" with 0775 Permissions, and i'm a member of that group (it's not a system-group, the GID>1000)
I can log in, read files (download), everything fine.
The other way round (Upload) fails. FileZilla says: 550 Permission denied.
Huh?
The same Folder (exported via Samba) works fine from any Samba-Client (read and write incl. Group-Ownership-change).
If i change ownership to "zvoni:TheGroup" it works (as expected).
What am i missing?
I first thought it was because ProFTPd was running inside a Jail, but it's the same when running outside the Jail.
/usr/local/etc/proftpd.conf is pretty much a stock-file just added TLS-stuff and a <Directory>-Directive
That's the output of ProFTPd -V
Code:
Compile-time Settings:
Version: 1.3.6b (maint)
Platform: FREEBSD12 (FREEBSD12_0) [FreeBSD 12.1-RELEASE-p2 amd64]
Built: Thu Jan 30 2020 17:38:59 UTC
Built With:
configure '--localstatedir=/var/run' '--libexecdir=/usr/local/libexec/proftpd' '--with-pkgconfig=libdata/pkgconfig' '--sysconfdir=/usr/local/etc' '--enable-ctrls' '--enable-dso' '--disable-sendfile' '--enable-ipv6' '--disable-memcache' '--enable-nls' '--enable-pcre' '--disable-redis' '--with-shared=mod_ban:mod_copy:mod_ctrls_admin:mod_deflate:mod_dnsbl:mod_dynmasq:mod_exec:mod_ifsession:mod_ifversion:mod_qos:mod_quotatab:mod_quotatab_file:mod_quotatab_radius:mod_quotatab_sql:mod_radius:mod_ratio:mod_readme:mod_rewrite:mod_sftp:mod_sftp_pam:mod_sftp_sql:mod_shaper:mod_site_misc:mod_snmp:mod_sql:mod_sql_passwd:mod_tls:mod_tls_shmcache:mod_unique_id:mod_wrap2:mod_wrap2_file:mod_wrap2_sql' '--with-includes=/usr/local/include' '--with-libraries=/usr/local/lib' '--prefix=/usr/local' '--mandir=/usr/local/man' '--infodir=/usr/local/share/info/' '--build=amd64-portbld-freebsd12.0' 'build_alias=amd64-portbld-freebsd12.0' 'CC=cc' 'CFLAGS=-O2 -pipe -DLIBICONV_PLUG -fstack-protector-strong -fno-strict-aliasing ' 'LDFLAGS= -lpthread -fstack-protector-strong ' 'LIBS=-lssl -lcrypto -L/usr/lib' 'CPPFLAGS=-DHAVE_OPENSSL -I/usr/include -DLIBICONV_PLUG' 'CPP=cpp' 'CXX=c++' 'CXXFLAGS=-O2 -pipe -DLIBICONV_PLUG -fstack-protector-strong -fno-strict-aliasing -DLIBICONV_PLUG '
CFLAGS: -g2 -O2 -pipe -DLIBICONV_PLUG -fstack-protector-strong -fno-strict-aliasing -Wall -fno-omit-frame-pointer -Werror=implicit-function-declaration
LDFLAGS: -L$(top_srcdir)/lib -lpthread -fstack-protector-strong -rdynamic -L/usr/local/lib
LIBS: -lintl -lpcreposix -lpcre -lssl -lcrypto -lpam -lsupp -lexecinfo -lcrypt -lssl -lcrypto -L/usr/lib -lutil -pthread
Files:
Configuration File:
/usr/local/etc/proftpd.conf
Pid File:
/var/run/proftpd.pid
Scoreboard File:
/var/run/proftpd.scoreboard
Header Directory:
/usr/local/include/proftpd
Shared Module Directory:
/usr/local/libexec/proftpd
Info:
+ Max supported UID: 4294967295
+ Max supported GID: 4294967295
Features:
- Autoshadow support
+ Controls support
+ curses support
- Developer support
+ DSO support
+ IPv6 support
+ Largefile support
- Lastlog support
- Memcache support
+ ncursesw support
+ NLS support
- Redis support
- Sodium support
+ OpenSSL support
+ PCRE support
- POSIX ACL support
- Shadow file suppport
- Sendfile support
+ Trace support
+ xattr support
Tunable Options:
PR_TUNABLE_BUFFER_SIZE = 1024
PR_TUNABLE_DEFAULT_RCVBUFSZ = 8192
PR_TUNABLE_DEFAULT_SNDBUFSZ = 8192
PR_TUNABLE_ENV_MAX = 2048
PR_TUNABLE_GLOBBING_MAX_MATCHES = 100000
PR_TUNABLE_GLOBBING_MAX_RECURSION = 8
PR_TUNABLE_HASH_TABLE_SIZE = 40
PR_TUNABLE_LOGIN_MAX = 256
PR_TUNABLE_NEW_POOL_SIZE = 512
PR_TUNABLE_PATH_MAX = 1024
PR_TUNABLE_SCOREBOARD_BUFFER_SIZE = 80
PR_TUNABLE_SCOREBOARD_SCRUB_TIMER = 30
PR_TUNABLE_SELECT_TIMEOUT = 30
PR_TUNABLE_TIMEOUTIDENT = 10
PR_TUNABLE_TIMEOUTIDLE = 600
PR_TUNABLE_TIMEOUTLINGER = 10
PR_TUNABLE_TIMEOUTLOGIN = 300
PR_TUNABLE_TIMEOUTNOXFER = 300
PR_TUNABLE_TIMEOUTSTALLED = 3600
PR_TUNABLE_XFER_SCOREBOARD_UPDATES = 10
EDIT: I forgot: already tried switching off CapabilitiesEngine, tried setting PersistantPasswd to on, Nada, njet