Previous Topic: Communication Time Out to seosd Appears Continuously in syslogNext Topic: Target Pages on Local Host and Target Host Are Different


First Incoming ftp Connection Cannot Be Controlled

Valid on UNIX

Symptom:

When I start CA ControlMinder it does not control the first incoming ftp connection from vsftpd. I have created a TCP rule for ftp and a HOST rule for vsftpd, and CA ControlMinder controls all subsequent incoming ftp connections from vsftpd according to the TCP or HOST rule that I created.

Solution:

If you start vsftpd before you start CA ControlMinder, vsftpd places a hook in the accept system call for incoming ftp connections. The hook means that vsftpd processes the first incoming ftp connection before CA ControlMinder can intercept it.

After vsftpd processes the ftp connection it tries to call the accept system call in preparation for the next ftp connection. However, CA ControlMinder intercepts this system call and hence controls all subsequent ftp connections.

To intercept the first incoming ftp connection, use one of the following workarounds: