We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on v1 candidate and expect to engage more with the community over the coming months. We are committed to open source, and we encourage contributors to help us build the future of Vesta.
vsFTPd - Additional users and additional FTP users can't connect to FTP server
vsFTPd - Additional users and additional FTP users can't connect to FTP server
Any additional FTP user or new user that I create from VestaCP cannot connect to FTP server while root and admin can.
/var/log/auth.log shows the following error:
Here admin_diliprajbaral is an additional FTP user.
/etc/passwd shows the following:
Here, admin_diliprajbaral is an additional FTP user and gbiplesh is an user.
I suspect it has something to do with /sbin/nologin but I do not know that it means. So, how can I get these FTP accounts to work? Plus how can I get new accounts work as soon as they are created without any manual fixes?
UPDATE:
Editing /etc/passwd to change /sbin/nologin fixes the problem. But why is this happening by default?
/var/log/auth.log shows the following error:
Code: Select all
Feb 24 14:09:26 diliprajbaral sshd[13957]: User admin_diliprajbaral not allowed because shell /sbin/nologin does not exist
Feb 24 14:09:26 diliprajbaral sshd[13957]: input_userauth_request: invalid user admin_diliprajbaral [preauth]
Feb 24 14:09:27 diliprajbaral sshd[13957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.141.198.16 user=admin_diliprajbaral
Feb 24 14:09:29 diliprajbaral sshd[13957]: Failed password for invalid user admin_diliprajbaral from 63.141.198.16 port 39644 ssh2
Feb 24 14:09:29 diliprajbaral sshd[13957]: Connection closed by 63.141.198.16 [preauth]
/etc/passwd shows the following:
Code: Select all
admin:x:1000:1000:[email protected]:/home/admin:/bin/bash
admin_diliprajbaral:x:1000:1000::/home/admin/web/diliprajbaral.com:/sbin/nologin
gbiplesh:x:1001:1001:[email protected]:/home/gbiplesh:/sbin/nologin
I suspect it has something to do with /sbin/nologin but I do not know that it means. So, how can I get these FTP accounts to work? Plus how can I get new accounts work as soon as they are created without any manual fixes?
UPDATE:
Editing /etc/passwd to change /sbin/nologin fixes the problem. But why is this happening by default?
Re: vsFTPd - Additional users and additional FTP users can't connect to FTP server
Hi
The problem is here
You try connecto whit SFTP in FTP accounts
By defaul FTP accounts cant use SFTP just FTP, only main vestacp user can use SFTP / SSH access, so admin user, or any vestacp user
Aditional FTP accounts cant access to FTP because this are only for FTP access i suppose this is made to improve security.
Aditional FTP accounts are limited so, not access whit those to to SFTP / SSH
This accounts are limited to web space -> /home/admin/web/diliprajbaral.com
So if you do SSH access they can access also orther website accounts, in this case you not need create new aditional FTP account just use main user account in this case admin.
And that is the point, why you need create aditional FTP if then you leave it grant access to all orther websites whit SSH / SFTP access.
The problem is here
Code: Select all
Feb 24 14:09:29 diliprajbaral sshd[13957]: Failed password for invalid user admin_diliprajbaral from 63.141.198.16 port 39644 ssh2
Feb 24 14:09:29 diliprajbaral sshd[13957]: Connection closed by 63.141.198.16 [preauth]
By defaul FTP accounts cant use SFTP just FTP, only main vestacp user can use SFTP / SSH access, so admin user, or any vestacp user
Aditional FTP accounts cant access to FTP because this are only for FTP access i suppose this is made to improve security.
Aditional FTP accounts are limited so, not access whit those to to SFTP / SSH
This accounts are limited to web space -> /home/admin/web/diliprajbaral.com
So if you do SSH access they can access also orther website accounts, in this case you not need create new aditional FTP account just use main user account in this case admin.
And that is the point, why you need create aditional FTP if then you leave it grant access to all orther websites whit SSH / SFTP access.