From owner-FreeBSD-net-jp@jp.freebsd.org  Thu Jul 13 13:31:20 2000
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id NAA67146;
	Thu, 13 Jul 2000 13:31:20 +0900 (JST)
	(envelope-from owner-FreeBSD-net-jp@jp.FreeBSD.org)
Received: from ns.apl.pref.akita.jp (ns.apl.pref.akita.jp [210.136.178.2])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id NAA67134
	for <FreeBSD-net-jp@jp.freebsd.org>; Thu, 13 Jul 2000 13:31:20 +0900 (JST)
	(envelope-from yoshio@apl.pref.akita.jp)
Received: (from bin@localhost)
	by ns.apl.pref.akita.jp (8.9.3/3.7W) id NAA38963
	for <FreeBSD-net-jp@jp.freebsd.org>; Thu, 13 Jul 2000 13:31:19 +0900 (JST)
Received: from gate.inside-apl(192.168.1.254) by ns.apl.pref.akita.jp via smap (V2.1)
	id xma038961; Thu, 13 Jul 00 13:31:07 +0900
Received: (from bin@localhost)
	by gate.apl (8.9.3/3.7W) id NAA43026
	for <FreeBSD-net-jp@jp.freebsd.org>; Thu, 13 Jul 2000 13:31:06 +0900 (JST)
X-Authentication-Warning: gate.inside-apl: bin set sender to <yoshio@apl.pref.akita.jp> using -f
Received: from mebius.apl(172.27.4.180) by gate.inside-apl via smap (V2.1)
	id xma043023; Thu, 13 Jul 00 13:30:43 +0900
Message-Id: <10007130431.AA00792@mebius.apl.pref.akita.jp>
Date: Thu, 13 Jul 2000 13:31:11 +0900
From: Yoshio Funaki <yoshio@apl.pref.akita.jp>
To: FreeBSD-net-jp@jp.freebsd.org
In-Reply-To: <200007130119.KAA18213@aerith.cks.canon.co.jp>
MIME-Version: 1.0
X-Mailer: AL-Mail 1.22
Content-Type: text/plain; charset=iso-2022-jp
Reply-To: FreeBSD-net-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: FreeBSD-net-jp 2695
Subject: [FreeBSD-net-jp 2695] Re: [Q] FTP triggered command execution
Errors-To: owner-FreeBSD-net-jp@jp.freebsd.org
Sender: owner-FreeBSD-net-jp@jp.freebsd.org
X-Originator: yoshio@apl.pref.akita.jp

$B$+$o$$!w$-$d$N$s$5$s!">.Eg$5$sAaB.$N(Jreply$B$"$j$,$H$&$4$6$$$^$9!#(J
$B$+$o$$!w$-$d$N$s$5$s$K(Jreply$B$7$^$9$,!"FbMF$O(Jmulti reply$B$K$J$C$F$^$9!#(J
$B?=$7Lu$"$j$^$;$s!#(Jm(_ _)m

--- reply to $B$+$o$$!w$-$d$N$s$5$s(J
>$B$U(J>$B!VFCDj$N%U%!%$%k$,(JFTP$B$5$l$F$-$?$i!"0lO"$N%3%^%s%I!J%9%/%j%W%H!K$r(J
>$B$U(J>$B<B9T$9$k!W$H$$$&$3$H$r<B8=$7$h$&$H<B83Cf$G$9!#(J
>fw-tk $B$N(J smap $B$,!"F1$8$h$&$J$3$H$7$F$^$7$?$h$M!"$?$7$+!#(J
$B$=$&$G$9$M!#<u$1<h$C$?%a!<%k$rFCDj%G%#%l%/%H%j$KF~$l$F!"$=$l$r(J
$B$5$i$K(Jsendmail$BEy$GG[?.$9$k$H$$$&F0$-J}$O3N$+$K9M$($F$k$3$H$H(J
$B;w$F$$$^$9!#(J
>
>$B$U(J>$B#1!K(Jcron$B$GFCDj%U%!%$%k$,FCDj%G%#%l%/%H%j$KB8:_$9$k$+D4$Y(J
>$B$U(J>$B#2!K(JFTPD$B$,F0$$$F$$$J$+$C$?$i!J(JFTP$B$,=*N;$7$F$$$l$P!K(J
>$B$U(J>$B#3!K0lO"$N%3%^%s%I!J%9%/%j%W%H!K$r<B9T$9$k(J
>$B$U(J>$B$H8@$&7A$G4uK>$9$k=hM}$r$[$\<B8=$7$F$$$k$N$G$9$,!"(Jcron$B$,@8??LLL\$G(J
>$B$U(J>$B0lDj4V3V$G>o$K(Jlog$B$r$O$$$F$/$l$k$N$G!"@.8y!&<:GT$rC5$9$N$K(J
>
>crontab $B$K(J >/dev/null 2>&1 /dev/null $B$rDI2C$9$k$H$$$&$3$H$G$O$J$/$C$F!)(J
>script $BB&$G!"(Jerror $B$@$1!"(Jmail $B$9$k!#(J
>
$B$A$g$C$H$A$,$&$+$J$!!#(J
$B<B$O!"$d$j$?$$$3$H$O#2$D$"$C$F!"N>J}$H$b(JFTP$B$,$i$_$J$s$G$9$,(J
$B#1!KHFMQ5!$/$s$,$O$/%G!<%?$r(Jfirewall$B$K(JFTP$B$7$F$b$i$$!"$=$l$r(J
$B!!!!$5$i$KFbB&$N(JDB$B1?MQ%^%7%s$KE>Aw$9$k!#(J
$B!!!!$?$@$7FbB&$G$O(Jwell known port$B$G$J$$(JFTPD$B$G$&$1$k$h$&$K$7$?$$!#(J
$B!t!!HFMQ5!$N(JFTP client$B$O(Jwell known port$B$K(JFTP$B$9$k$@$1$NC15!G=(J
$B!t!!$J$N$G!"(Jftp-gw$BEy$GD>@\FbB&$KE>Aw$G$-$J$$$h$&$J$s$G$9!#(J ;_;

$B#2!K(Jfirewall$B$NFbB&$K$"$k(JDB(PostgreSQL)$B$,F0$$$F$$$k%^%7%s$G$O(J
$B!!!!<u$1<h$C$?(Jfile$B$r(Jawk,sed,grep$BEy$G=hM}$7$?>e$G(JDB$B$KEPO?$9$k!#(J
$B!t!!$$$m$$$m$$$i$J$$ItJ,$r$9$C$Q$j@Z$j<h$C$F!"@07A$7$?8e(J
$B!t!!(JDB$BEPO?$r$9$k$o$1$G$9!#(J

$B$G!"$3$N(JFTP$B$,H/@8$9$k$N$,!"%G!<%?$KJQ99!&:o=|!&DI2C$,$"$C$?J,$r(J
$B#1F|#12sE>Aw$7$F$/$k>l9g$H!"Dj4|E*$K>uBVJQ2=$,$"$k%G!<%?$r(J
$B0lDj4V3V$GAw$C$F$/$k>l9g$,$"$C$F!"$=$N8e$N=hM}$,JQ$o$k$N$G(J
$B$4$K$g$4$K$g$G$-$k$h$&$K$7$?$$$o$1$G$9!#$O$$!#(J
(snip)

>/usr/local/libexec/ftpd
>$B$r!"(J
>#!/bin/sh
>/usr/libexec/ftpd $*
>exec $B<+F0<B9T%U%!%$%k(J
>$B$H$7$F!"(Jinetd $B$G!"(J/usr/local/libexec/ftpd $B$r5/F0$H$+!#(J
$B$3$l$$$?$@$-$^$9!#<B83$7$F$_$^$9!#(J

>$BLdBj$O(J securiry $B$H$+!"@)8fC<Kv$H$+$G$O!"%@%a$J$N$+$7$i!#(J
$B>e5-$N$h$&$K(Jfirewall$B1[$7$NFb30E>Aw$J$N$G!"(Jsecurity$BE*$K$O(J
$BLdBjL5$$$+$H!&!&!&(J
$B!t!!(Jipfw$B$G!"(Jaddress$B$K$h$k(Jwell known port$B$X$N%"%/%;%9$r5,@)$7$F$^$9!#(J

>$B$U(J>$B!t!!(Jsocket$B:n$C$FEO$9$@$1$@$+$iL5M}$@$m$&$J$!$H$O;W$C$F$^$9$,!&!&!&(J
>inetd $B$O!"(Jsocket $B$H$7$F$OEO$7$F$-$^$;$s!"I8=`F~=PNO$G$9!#(J
$B?=$7Lu$"$j$^$;$s!#8m2r$7$F$^$7$?!#(Jm(_ _)m

---- reply to $B>.Eg$5$s(J
(snip)
>  ftpd $B$,EG$/(J syslog message $B$r%H%j%,!<$K$7$F!"(Jswatch
>  (/usr/ports/security/swatch) $BEy7PM3$G5/F0$9$l$P$h$$$N$G$O(J?  
>  FreeBSD $BI8=`$N(J ftpd/syslog.conf $B$@$H!"(J
>
>* ftpd $B$r(J -l -l $B%*%W%7%g%s$D$-$G5/F0$9$k$h$&$K(J /etc/inetd.conf $B$rJQ99$7$F(J
>  ($BJQ998e(J kill -HUP `cat /var/run/inetd.pid`)
>* /etc/syslog.conf $B$K0J2<(J
>
>!ftpd
>*.info				/var/log/ftpdlog
>
>  $B$rDI2C$9$k$H(J 
>  ($BDI2C8e(J touch /var/log/ftpdlog; kill -HUP `cat /var/run/syslog.pid`)$B!"(J
>
>Jul 13 10:45:02 hogera  ftpd[4092]: put /home/kjm/page.tgz = 54550 bytes
>
>  $B$J$s$F46$8$G(J /var/log/ftpdlog $B$K=P$7$F$/$l$^$9!#(J

swatch$B$K4X$7$F$O$^$C$?$/9M$($F$$$J$+$C$?$N$G!";qNA$r$"$5$C$F$_$^$9!#(J
$B$?$$$X$sJY6/$K$J$j$^$9!#(J
$B!t!!>e5-$N$h$&$K$3$N(JFTP$B$K8B$C$FJL(Jlog$B$,$H$l$k$HJXMx$G$9$+$i!#(J

$BA%LZ!!4nIW!!(Jyoshio@apl.pref.akita.jp
