SuSE on VSFTPD set up FTP server

OpenSUSE the following FTP server-side programs, select one:

* PURE-FTPD

* VSFTPD

* FTPD (included in the Krb5-apps-servers software package)

Vsftpd

Characteristics

* Can be used in conjunction with XINETD

* Safety First design principles

* Small, lightweight software

Installation

* Install VSFTPD from yast/Software Management search. (on installation disk)

Set up

There are two modes of VSFTPD, independent mode and xinetd mode.

Standalone mode requires you to start the FTP server manually with the root execution vsftpd command, xinetd mode does not always run FTP background, only if a user to your FTP server to send FTP request immediately start the FTP server background program. The latter requires that the XINETD service be turned on when the machine is started, and the Suse/sled series is the default setting. First determine which mode you want to select, and then make the settings later.

xinetd mode

* Open in xinetd, you can manually edit the/etc/xinetd.d/vsftpd file to change disabled yes to disabled no, or use the command to implement

Code:

chkconfig vsftpd on* Start xinetd (if not running).

Code:

/etc/init.d/xinetd start* Determine xinetd to run when machine starts

Code:

chkconfig xinetd on* Root permission to edit the file/etc/vsftpd.conf, make sure the Listenyes is added in front of #. If not, add save.

Standalone mode

* Root rights Edit file/etc/vsftpd.conf to make sure there is no # in front of Listenyes. If there is, remove the save.

Check Health and firewall settings

* Check whether the FTP server is running properly, the default profile is to allow anonymous users read-only,/srv/ftp/as the home directory for external FTP.

* Adjust the firewall settings if necessary. If you are using the default SuSEFirewall2, in the yast-system-/etc/sysconfig Editor, network-susefirewall2 to add FTP to FW_SERVICES_EXT_TCP, such as you also want to open ssh so

Code:

FW_SERVICES_EXT_TCP"ftp ssh"* If you need passive mode FTP and NAT, in the yast-system-/etc/sysconfig editor, Network-susefirewall2

Code:

FW_LOAD_MODULES"ip_conntrack_ftp ip_nat_ftp"

After the reboot, VSFTPD will run in the mode you choose.

Concise Configuration

Configure the file/etc/vsftpd.conf to modify.

* Enable Write permission to the server, remove the # in front of the line below

Code:

write_enableYES* Allow local users to log in, remove the # in front of the line below

Code:

local_enableYES* Default, a user can not access the directory outside their home directory, to disable remove the # in front of the line below

Code:

chroot_local_userNO* Disable anonymous user logon

Code:

anonymous_enableNO

Configuration file

*/ETC/LOGROTATE.D/VSFTPD

*/ETC/PAM.D/VSFTPD

*/etc/vsftpd.conf

*/etc/vsftpd.chroot_list

: This file contains the user name that has permissions on all FTP content on the server. For other users, their home directory on the server shows them as the root directory.

*/etc/shells

: Before allowing local users to log on, the system defaults to check for a valid user shell. In case PAM authentication is not available.

*/etc/ftpusers

: This file contains * Prohibit *FTP login username, usually have "root", "UUCP", "News" and so on, because these user rights are too high, login FTP error operation is very dangerous.