In the construction of websites, FTP is an important service and can be used to share limited software resources. The Representative FTP server software in Linux is Wu-FTP, ProFTP and vsftpd. Wu-FTP (Washington University FTP) is an FTP software developed by the University of Washington in the United States with a reference to efficiency and stability. It has powerful functions and complicated configurations. Because of its early development time and extensive application, it has become the main target of hackers. Early versions of Wu-FTP were prone to security vulnerabilities, and system administrators had to upgrade them frequently for security reasons. ProFTP is developed for the weaknesses of Wu-FTP. In addition to improving the security, it also has the features of simple setup and provides functions not available in Wu-FTP, this greatly simplifies the setup and Management of FTP servers.VsftpdIt is widely used by many large websites for its outstanding security performance.
Introduction to vsftpd
Vsftpd has excellent performance in terms of security, high performance, and stability. Its main functions include virtual IP settings, virtual users, Standalone, inetd operation modes, powerful single-user setting capabilities, and bandwidth throttling. In terms of security, it repairs the installation defects of most Wu-FTP, ProFTP, and even BSD-FTP in principle, and uses the Security encoding technology to solve the buffer overflow problem, this effectively prevents "globbing" type denial of service attacks. Currently, official vsftpd websites include Red Hat, SuSE, Debian, GNU, GNOME, KDE, Gimp, and OpenBSD.
Install
This article takes Version 1.1.3 as an example.
1. Build vsftpd
First, extract the package. The Code is as follows:
Code:
$ Tar xzvf vsftpd-1.1.3.tar.gz
Enter the installation directory cd vsftpd-1.1.3. If you want to enable the tcp_wrapper function in future use, you can modify the statement in the "builddefs. h" file before compilation and change "# undef VSF_BUILD_TCPWRAPPERS" to "# define VSF_BUILD_TCPWRAPPERS ". The tcp_wrapper function is mainly used for IP address management control. For example, you can use a special FTP configuration file for a single IP address. Then, type "make" to generate an executable binary code.
2. Preparations
The default configuration of vsftpd requires "nobody ". The command to add this user is as follows:
Code:
$ Useradd nobody
The default configuration of vsftpd requires the directory "/usr/share/empty ". The command to add the directory is as follows:
Code:
$ Mkdir/usr/share/empty/
Anonymous FTP requires the existence of the user "ftp" and a valid home directory (the user "ftp" is not allowed to have the right to write ). If this directory does not exist, create it. The command is as follows:
Code:
$ Mkdir/var/ftp/
$ Useradd-d/var/ftp
3. Install related configuration files, execution files, and help manual pages.
Run "make install" to copy the source code and help manual pages to relevant paths. If you use manual replication, the command is as follows:
Code:
$ Cp vsftpd/usr/local/sbin/vsftpd
$ Cp vsftpd. conf.5/usr/local/man/man5
$ Cp vsftpd.8/usr/local/man/man8
In addition, the "make install" command cannot copy the sample configuration file. We recommend that you manually copy the file. The command is as follows:
Code:
$ Cp vsftpd. conf/etc
The entire installation process is very simple. Let's take a look at how to manipulate the powerful functions of vsftpd and configure the vsftpd. conf file.