Experiment 2 allows anonymous users to upload files
Lab Environment
In the virtual machine Linux 6.5 system, two Linux systems are required. One Linux system is a server and one B is used as the test client to start two Linux systems.
Lab Objectives
A serves as the server to configure the vsftpd server to implement the FTP service.
B is used as a test client to verify whether server a's sharing is valid.
Configure the real host to ensure that the real host can ping two virtual machines.
Lab procedure
1. First, put a and B real hosts in the same network segment to facilitate the configuration of permanent valid static IP addresses for future experiments to verify whether the AB real host can communicate with and install the vsftpd service and start it.
2. Modify the vsftpd main configuration file so that anonymous users can upload files as normal users do. To ensure security, we will first back up an original file to prevent future modification errors and restoration.
Parameters of Anonymous Users
Does anonymous_enable enable Anonymous Access?
Anon_umask: Permission mask for anonymous upload
Anon_root anonymous FTP root directory
Does anon_upload_enable run the upload file?
Whether anon_mkdir_write_enable allows Directory Creation
Anon_other_write_enable other write control
Anon_max_rate maximum transmission speed byte/second
Max_clients = 20 maximum number of concurrent connections
Max_per_ip = 2 Maximum number of connections allowed by each IP Address
Local user Parameters
Whether local_enable enables local users
Local_umask: Permission mask uploaded by the local user
Local_root local user's FTP directory
Whether chroot_local_user is banned in the Home Directory
Local_max_rate maximum transmission rate byte/second
[[Email protected] var] # cd/etc/vsftpd // enter the parent directory of the configuration file
[[Email protected] # cp vsftpd. conf vsftpd.conf.gz
// Back up the original file
[[Email protected] # Vim vsftpd. conf // edit the configuration file
Anonymous_enable = Yes // by default, Anonymous Users are allowed to log on.
Anon_upload_enable = Yes // allows anonymous users to download
Anon_mkdir_write_enable = Yes // allows anonymous users to create directories
Anon_other_write_enable = Yes // Anonymous Users are allowed to have other permissions, such as modifying file names.
Write_enable = Yes // write globally is allowed by default.
Anon_umask = 022 // sets the File Permission mask.
[[Email protected] # chown FTP pub // change the root directory permission
[[Email protected] FTP] # ls-LD pub/
Drwxr-XR-X. 2 ftproot 4096 February 13 2013 pub/
[[Email protected] #/etc/init. d/vsftpd restart // restart the service
3. win7 client Verification
4. Block the Home Directory of the local user.
[[Email protected] FTP] # Vim/etc/vsftpd. conf
Chroot_local_users = Yes // block the local user's home directory so that it cannot enter other directories
Upload files by anonymous users