Bug 772354

Summary: Proftpd packaging and configuration has some vroot-related issues
Product: [Fedora] Fedora Reporter: Philip Prindeville <philipp>
Component: proftpdAssignee: Matthias Saou <matthias>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 16CC: matthias, paul, philipp
Target Milestone: ---Keywords: EasyFix
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: proftpd-1.3.4a-3.fc16 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-01-24 20:00:05 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Attachments:
Description Flags
Make vroot optional. none

Description Philip Prindeville 2012-01-06 22:26:55 UTC
Created attachment 551293 [details]
Make vroot optional.

Description of problem:

First, forcing mod_vroot on is excessive. Let's make it a loadable module.

Second, change the config to only apply if it's been loaded.

Third, remove the spaces from the systemd service file.

Fourth, add BanMessage to mod_ban section.


Version-Release number of selected component (if applicable):

1.3.4-1

How reproducible:


Steps to Reproduce:
1.
2.
3.
  
Actual results:


Expected results:


Additional info:

Comment 1 Paul Howarth 2012-01-10 22:33:53 UTC
Please take a look at the new Rawhide package (1.3.4a-2) and see what you think.

* Made mod_vroot a DSO and loaded it by default

* Dropped VRootAlias of /etc/security/pam_env.conf as it's not needed (simply using mod_vroot fixes the problem that was addressing)

* Added BanMessage

* Added proftpd-devel package for building third-party modules

I didn't change the proftpd.service file because I don't think there's anything wrong with it

Comment 2 Philip Prindeville 2012-01-13 20:27:06 UTC
(In reply to comment #1)
> Please take a look at the new Rawhide package (1.3.4a-2) and see what you
> think.
> 
> * Made mod_vroot a DSO and loaded it by default
> 
> * Dropped VRootAlias of /etc/security/pam_env.conf as it's not needed (simply
> using mod_vroot fixes the problem that was addressing)
> 
> * Added BanMessage
> 
> * Added proftpd-devel package for building third-party modules
> 
> I didn't change the proftpd.service file because I don't think there's anything
> wrong with it

My only comment is this: the LoadModule and the <IfModule ...> stuff tend to be separate so that configuring and simply enabling are distinct. I would stick with that convention for consistency.

Otherwise, looks good. Ship it!

Comment 3 Paul Howarth 2012-01-13 21:58:38 UTC
Another change I plan to do first is to split off a "utils" subpackage with the perl scripts in it (like the upstream package) so that the main package doesn't require perl. Just a bit busy at the moment.

Comment 4 Fedora Update System 2012-01-16 16:53:03 UTC
proftpd-1.3.4a-3.fc16 has been submitted as an update for Fedora 16.
https://admin.fedoraproject.org/updates/proftpd-1.3.4a-3.fc16

Comment 5 Fedora Update System 2012-01-16 21:23:24 UTC
Package proftpd-1.3.4a-3.fc16:
* should fix your issue,
* was pushed to the Fedora 16 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing proftpd-1.3.4a-3.fc16'
as soon as you are able to.
Please go to the following url:
https://admin.fedoraproject.org/updates/FEDORA-2012-0595/proftpd-1.3.4a-3.fc16
then log in and leave karma (feedback).

Comment 6 Fedora Update System 2012-01-24 20:00:05 UTC
proftpd-1.3.4a-3.fc16 has been pushed to the Fedora 16 stable repository.  If problems still persist, please make note of it in this bug report.