FTP_PASSIVE_MODE stumper
Kris Kennaway
kris at obsecurity.org
Mon Nov 20 15:23:43 PST 2006
On Mon, Nov 20, 2006 at 03:13:22PM -0800, Paul Lathrop wrote:
> I've been banging my head against this for 2 hours.
>
> My network lives behind an OpenBSD firewall which uses ftp-proxy to
> allow active mode FTP connections out to the world. Unfortunately,
> passive mode FTP just does not work in our current firewall configuration.
>
> I'm trying to install some ports on my shiny new FreeBSD 6.1 server.
> Unfortunately, the fetch operations time out because they are attempting
> to use passive mode FTP. So, I consult the man pages and discover that
> fetch obeys the FTP_PASSIVE_MODE environment variable. I check the
> environment and see that FTP_PASSIVE_MODE=YES! Excellent! The fetch(3)
> man page says I need to set this to 'no', so I do so and procedd to
> install...
>
> Still times out.
>
> Hrm. Okay, try 'NO'. No dice. Try removing it from login.conf, running
> cap_mkdb, and logging out then back in. Nope, that still doesn't do it.
> Try *changing* it to NO in login.conf, running cap_mkdb, logging out and
> back in. Nope.
>
> Set it by hand in the shell. Nope.
>
> Set it in /etc/make.conf. Still not working.
>
> The only conclusion I can come to is that fetch does not, in fact, obey
> this environment variable.
No, it's being requested explicitly by bsd.port.mk in the fetch
command line to deal with certain configurations that do not set the
env variable.
> So, how does one install software from ports in this environment?
Override the FETCH_CMD variable in /etc/make.conf, see bsd.port.mk.
Kris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20061120/e5542bff/attachment-0001.pgp
More information about the freebsd-questions
mailing list