Start: servicevsftpdstart close: servicevsftpdstopetcrc. dinit. dvsftpdstart | stop | restart default root directory: varftp anonymous user: anonymous firewall disabled: serviceiptablesstopVSFTPD file structure is very concise, mainly including: usrsbinvsftpd ---- VSFTPD
Start: serviceFtpD start
Disable: service vsftpd stop
/Etc/rc. d/init. d/vsftpd start | stop | restart
Default root directory:/var/ftp/
Anonymous user: anonymous
Disable firewall: service iptables stop
The file structure of VSFTPD is concise, including:
/Usr/sbin/vsftpd ---- main program of VSFTPD
/Etc/rc. d/init. d/vsftpd ---- start the script
/Etc/vsftpd. conf ---- main configuration file
/Etc/pam. d/vsftpd ---- PAM Authentication File
/Etc/vsftpd. ftpusers ---- disable VSFTPD User List Files
/Etc/vsftpd. user_list ---- prohibit or allow VSFTPD User List Files
/Var/ftp ---- anonymous user home directory
/Var/ftp/pub ---- download directory of Anonymous Users
In addition, there are some instruction documents and manual documents.
In addition, the VSFTPD log file is located at/etc/logrotate. d/vsftpd. log.
Vsftpd. conf
# Access rights Access
Anonymous _Enable= YES
/* If you do not want to enable Anonymous Access, change the value to NO */
Local_enable = NO
/* Disable the Local User Logon Service, which means all non-Anonymous Users */
Write_ Enable = NO
/* Disable write permissions for any user */
Anon_upload_enable = NO
/* Disable the data upload capability of anonymous users */
Anon _Mkdir_ Write_enable = NO
/* Disable the Directory creation capability of anonymous users */
Anon_other_write_enable = NO
/* Disable writing classes other than creation and upload by anonymous usersCommandFor example
Ability to change names and delete operations */
# Security
Anon_world_readable_only = YES
/* Enable Anonymous Users to only use resources with full permission */
Connect_from_port_20 = YES
/* Trigger a connection from Standard Port 20 */
HIdE_ids = YES
/* Hide the user ID on the FTP server and replace it with "FTP */
Pasv_min_port = 50000
Pasvanderbilt max_port = 60000
/* Set the port range in pasv transmission mode to 50000-60000 */
# Features functions
Xferlog_enable = YES
/* Enable the log and record the transfer status to the file/var/log/vsftpd. log */
Ls_ Recurse_enable = NO
/* Shut down the "ls-R" command, which is often used for DoS attacks and is a waste of system resources,
But the "mirror" image tool will use it */
Ascii_download_enable = NO
/* Disable ASCII download to prevent DoS attacks. ASCII download consumes a lot of CPU resources */
AsyNc_ Abor_enable = YES
/* Enable support for early FTP client ""SyncABOR "command capability */
# PorfoRmAnce Performance
One_process_model = YES
/* Enable the single process mode for each IP address. This mode only supports kernels with certain capabilities,
For example, linux kernel 2.4 */
Idle_session _TimeOut = 120
/* The user who has been idle for two minutes */
Data _ connection_timeout = 300
/* Download from idle for five minutes */
Accept_timeout = 60
/* The passive connection after one minute of suspension */
Connect_timeout = 60
/* Disconnect an active connection after one minute of suspension */
Anon_max_rate = 50000
/* The download speed of a single user cannot exceed 50 Kbytes per second */