Results 1 to 5 of 5
Hi to everyone and thanks in advance for your help. I did find a few similar topics but nothing that resolved this, so I'm starting a new thread. I am ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
- 12-18-2010 #1
- Join Date
- Dec 2010
VSFTPD - 553 Could not create file
Hi to everyone and thanks in advance for your help. I did find a few similar topics but nothing that resolved this, so I'm starting a new thread.
I am trying to use cron and FTP to backup files regularly from my main server to a backup server. The backup server was a "bare bones" setup with no control panel or even FTP. It is running CentOS 5.3.
I installed VSFTPD which appears to be running OK and I can connect via FTP from my other server, but when I try to run my backup script (it uses mput) I get a "553 Could not create file" error.
Some relevant info:
The user I have created for this is "ftz" with home directory /home/ftz/
Running ls -l shows:
drwxrwxrwx 3 ftz ftz 4096 Dec 18 07:46 ftz
so permissions and directory ownership don't seem to be the problem.
vsftpd.conf was left in default form:
# Example config file /etc/vsftpd/vsftpd.conf # # The default compiled in settings are fairly paranoid. This sample file # loosens things up a bit, to make the ftp daemon more usable. # Please see vsftpd.conf.5 for all compiled in defaults. # # READ THIS: This example file is NOT an exhaustive list of vsftpd options. # Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd's # capabilities. # # Allow anonymous FTP? (Beware - allowed by default if you comment this out). anonymous_enable=YES # # Uncomment this to allow local users to log in. local_enable=YES # # Uncomment this to enable any form of FTP write command. write_enable=YES # # Default umask for local users is 077. You may wish to change this to 022, # if your users expect that (022 is used by most other ftpd's) local_umask=022 # # Uncomment this to allow the anonymous FTP user to upload files. This only # has an effect if the above global write enable is activated. Also, you will # obviously need to create a directory writable by the FTP user. #anon_upload_enable=YES # # Uncomment this if you want the anonymous FTP user to be able to create # new directories. #anon_mkdir_write_enable=YES # # Activate directory messages - messages given to remote users when they # go into a certain directory. dirmessage_enable=YES # # The target log file can be vsftpd_log_file or xferlog_file. # This depends on setting xferlog_std_format parameter xferlog_enable=YES # # Make sure PORT transfer connections originate from port 20 (ftp-data). connect_from_port_20=YES # # If you want, you can arrange for uploaded anonymous files to be owned by # a different user. Note! Using "root" for uploaded files is not # recommended! #chown_uploads=YES #chown_username=whoever # # The name of log file when xferlog_enable=YES and xferlog_std_format=YES # WARNING - changing this filename affects /etc/logrotate.d/vsftpd.log #xferlog_file=/var/log/xferlog # # Switches between logging into vsftpd_log_file and xferlog_file files. # NO writes to vsftpd_log_file, YES to xferlog_file xferlog_std_format=YES # # You may change the default value for timing out an idle session. #idle_session_timeout=600 # # You may change the default value for timing out a data connection. #data_connection_timeout=120 # # It is recommended that you define on your system a unique user which the # ftp server can use as a totally isolated and unprivileged user. #nopriv_user=ftpsecure # # Enable this and the server will recognise asynchronous ABOR requests. Not # recommended for security (the code is non-trivial). Not enabling it, # however, may confuse older FTP clients. #async_abor_enable=YES # # By default the server will pretend to allow ASCII mode but in fact ignore # the request. Turn on the below options to have the server actually do ASCII # mangling on files when in ASCII mode. # Beware that on some FTP servers, ASCII support allows a denial of service # attack (DoS) via the command "SIZE /big/file" in ASCII mode. vsftpd # predicted this attack and has always been safe, reporting the size of the # raw file. # ASCII mangling is a horrible feature of the protocol. #ascii_upload_enable=YES #ascii_download_enable=YES # # You may fully customise the login banner string: #ftpd_banner=Welcome to blah FTP service. # # You may specify a file of disallowed anonymous e-mail addresses. Apparently # useful for combatting certain DoS attacks. #deny_email_enable=YES # (default follows) #banned_email_file=/etc/vsftpd/banned_emails # # You may specify an explicit list of local users to chroot() to their home # directory. If chroot_local_user is YES, then this list becomes a list of # users to NOT chroot(). #chroot_list_enable=YES # (default follows) #chroot_list_file=/etc/vsftpd/chroot_list # # You may activate the "-R" option to the builtin ls. This is disabled by # default to avoid remote users being able to cause excessive I/O on large # sites. However, some broken FTP clients such as "ncftp" and "mirror" assume # the presence of the "-R" option, so there is a strong case for enabling it. #ls_recurse_enable=YES # # When "listen" directive is enabled, vsftpd runs in standalone mode and # listens on IPv4 sockets. This directive cannot be used in conjunction # with the listen_ipv6 directive. listen=YES # # This directive enables listening on IPv6 sockets. To listen on IPv4 and IPv6 # sockets, you must run two copies of vsftpd whith two configuration files. # Make sure, that one of the listen options is commented !! #listen_ipv6=YES pam_service_name=vsftpd userlist_enable=YES tcp_wrappers=YES
Thanks again to anyone that can offer some help.
- 12-19-2010 #2
- Join Date
- Dec 2010
553 Permission Denied
THE INFORMATION IN THIS ARTICLE APPLIES TO:
* CuteFTP Home (All Versions)
* CuteFTP Professional (All Versions)
When attempting to upload a file to the remote FTP site, a 553 error code is encountered, resulting in an error message similar to the following example:
COMMAND:> STOR your file.ext
STATUS:> Connecting FTP data socket... 192.168.0.1:21...
553 your file.ext: Permission denied.
ERROR:> Access denied.
This error is not caused by CuteFTP. The 553 error code is coming directly from the remote FTP server. The file name is not allowed.
Many FTP servers have restrictions on file names. If your file name contains special characters, symbols, or spaces in the file name, it might be rejected by the remote FTP server. In the example above, the file name was rejected because of a space. The remote FTP site may also be rejecting a particular file based on the file type or extension.
If your file name contains special characters, symbols, or spaces in the file name, you will need to rename it before you can upload the file. Rename the file using only alpha-numeric characters and no spaces. For more information, see Best Practices for Naming Files.
Note: If you change the file name, you may also need to change links in Web pages that point to that file name as well.
- 12-19-2010 #3
- Join Date
- Dec 2010
Thanks for your reply Maki, but I am not using CuteFTP, and there is no weirdness in the file name - I am just transfering over a "filename.tar.gz" backup file (no spaces or unusual characters in the filename).
- 01-01-2011 #4
- Join Date
- Jan 2011
are you connecting to the ftp server as user ftz ?
can you create a file as user ftz in /home/ftz while logged into that server?
is selinux set to permissive mode (run sestatus) ?
is there anything in the logs ?
- 01-02-2011 #5
- Join Date
- Dec 2010
Thanks for your help. In the meantime, I actually found a much better solution, using rsync over SSH, which is much more efficient, secure and easy to set up.