I. Partial security settings for FTP
1. Installing VSFTP
Install vsftp using the Apt-get command
#apt-get Install Vsftpd-y
3. Add FTP Account and directory
Check the position of the nologin first, usually under/usr/sbin/nologin or/sbin/nologin.
Create an account using the following command, which specifies the home directory where/alidata/www/wwwroot is the user pwftp, and you can define your account name and directory yourself:
#useradd-D/alidata/www/wwwroot-s/sbin/nologin pwftp
#passwd pwftp
Modify permissions for the specified directory
#chown-R Pwftp.pwftp/alidata/www/wwwroot
4. Configure Vsftp
Edit the Vsftp configuration file with the following command:
#vi/etc/vsftpd.conf
Change "Anonymous_enable=yes" in the configuration file to "Anonymous_enable=no"
Remove the comment symbol before the following configuration:
Local_enable=yes
Write_enable=yes
Chroot_local_user=yes
Chroot_list_enable=yes
Chroot_list_file=/etc/vsftpd.chroot_list
Save exit
Edit the/etc/vsftpd.chroot_list file, add the FTP account name, save the exit
5. Modify the shell configuration
VI Edit/etc/shells, if there is no/usr/sbin/nologin or/sbin/nologin in the file (depending on the current system configuration) is appended
6. Restart the VSFTP service and test the login
To start the VSFTP service with a command:
#service vsftpd Restart
Then use the Account PWFTP test whether you can login ftp. The directory is/alidata/www/wwwroot.
Ii. between different users
chmod 700 (directory name) you can change it to only your own access. Write a shell
Actions required for Ubuntu Server Management