Configure vsftpd server

Posted by tollyrocks on Wednesday, September 16, 2009
vsftpd, which stands for "Very Secure FTP Daemon", is an FTP server for Unix-like systems, including Linux.
  • The following packages are required  for vsftpd.
    • check and install if necessary from CD or from or freshen to this latest version.
    • Activate the vsftpd service.
    • The vsftpd package provides /var/ftp for downloads of files by the anonymous FTP user. It does not set up an upload directory. Configure vsftpd permit uploads by anonymous users. Prepare a directory for incoming files in this way.
        #  cd /var/ftp      
        #  mkdir data     
        # chown root.ftp data      
        # chmod 730 data
        Now verify the permissions on the new directory.    
         ls -ld /var/ftp/incoming
    • Set the following lines in /etc/vsftpd/vsftpd.conf;
          anon_upload_enable=YES         
          chown_uploads=YES          
          chown_username=daemon       
          anon_umask=077  
    In addition, anonymous_enable=YES should be a set already by default. Restart the vsftpd service.
    • The result of these changes should be that the anonymous FTP user is able to upload files to /var/ftp/data,but cannot download files from that directory or list files in it. This is to stop 'wareza' traders from using our upload directory as a 'drop box' for stolen software or data. Upload a file as the anonymous FTP user. It should end up in /var/ftp/data, owned by user daemon and group ftp, with permissions 700 (read-write by user daemon only).
               

      0 comments:

      Post a Comment