Build a VSFTP Server

Set up a VSFTP server-Linux Enterprise Application-Linux server application information. The following is a detailed description. 1. Boris @ borisPC :~ $ Sudo apt-get install vsftpd
2. Boris @ borisPC :~ $ Sudo gedit/etc/vsftpd. conf

# Example config file/etc/vsftpd. conf
#
# The default compiled in settings are fairly paranoid. This sample file
# Loosens things up a bit, to make the ftp daemon more usable.
# Please see vsftpd. conf.5 for all compiled in defaults.
#
# Read this: This example file is NOT an exhaustive list of vsftpd options.
# Please read the vsftpd. conf.5 manual page to get a full idea of vsftpd's
# Capabilities.
#
#
# Run standalone? Vsftpd can run either from an inetd or as a standalone
# Daemon started from an initscript.
# The server runs in standalong mode, so that the following control can be performed
Listen = YES

# Transfer ratio of anonymous users (B/s)
Anon_max_rate = 51200

# Local user transmission rate (B/s)
Local_max_rate = 512000

# Maximum number of acceptable clients
Max_clients = 100

# Maximum number of clients for each ip Address
Max_per_ip = 5

#
# Run standalone with IPv6?
# Like the listen parameter, parameter t vsftpd will listen on an IPv6 socket
# Instead of an IPv4 one. This parameter and the listen parameter are mutually
# Exclusive.
# Listen_ipv6 = YES
#
# Allow anonymous FTP? (Beware-allowed by default if you comment this out ).
# Accepting Anonymous Users
Anonymous_enable = YES

# Do not ask for a password when an anonymous user logs in
No_anon_password = YES

#
# Uncomment this to allow local users to log in.
# Accept local users
Local_enable = YES
# Local User login directory
Local_root =/home/ftp

# Upload allowed (global control ). if you want anonymous users to upload files, you need to set anon_upload_enable = YES. If you want anonymous users to create directories, you need anon_mkdir_write_enable = YES. upload by anonymous users is prohibited, so these two items are not set.
Write_enable = YES

# Default umask for local users is 077. You may wish to change this to 022,
# If your users CT that (022 is used by most other ftpd's)

# Umask for local user to upload files
Local_umask = 022

#
# Uncomment this to allow the anonymous FTP user to upload files. This only
# Has an effect if the above global write enable is activated. Also, you will
# Obviously need to create a directory writable by the FTP user.
# Anon_upload_enable = YES
#
# Uncomment this if you want the anonymous FTP user to be able to create
# New directories.
# Anon_mkdir_write_enable = YES
#
# Activate directory messages-messages given to remote users when they
# Go into a certain directory.
Dirmessage_enable = YES
#
# Activate logging of uploads/downloads.
# Use upload/download logs. The default log file is/var/log/vsftpd. log, which can be modified using the xferlog_file option.
Xferlog_enable = YES

#
# Make sure PORT transfer connections originate from port 20 (ftp-data ).
Connect_from_port_20 = YES
Tcp_wrappers = YES

#
# If you want, you can arrange for uploaded anonymous files to be owned
# A different user. Note! Using "root" for uploaded files is not
# Recommended!
# Chown_uploads = YES
# Chown_username = whoever
#
# You may override where the log file goes if you like. The default is shown
# Below.
# Xferlog_file =/var/log/vsftpd. log
#
# If you want, you can have your log file in standard ftpd xferlog format
# Use standard xferlog format for logs
Xferlog_std_format = YES

#
# You may change the default value for timing out an idle session.
# Idle_session_timeout = 600
#
# You may change the default value for timing out a data connection.
# Data_connection_timeout = 120
#
# It is recommended that you define on your system a unique user which
# Ftp server can use as a totally isolated and unprivileged user.
# Nopriv_user = ft1_cure
#
# Enable this and the server will recognize asynchronous ABOR requests. Not
# Recommended for security (the code is non-trivial). Not enabling it,
# However, may confuse older FTP clients.
# Async_abor_enable = YES
#
# By default the server will pretend to allow ASCII mode but in fact ignore
# The request. Turn on the below options to have the server actually do ASCII
# Mangling on files when in ASCII mode.
# Beware that on some FTP servers, ASCII support allows a denial of service
# Attack (DoS) via the command "SIZE/big/file" in ASCII mode. vsftpd
# Predicted this attack and has always been safe, reporting the size of
# Raw file.
# ASCII mangling is a horrible feature of the protocol.
# Ascii_upload_enable = YES
# Ascii_download_enable = YES
#
# You may fully customise the login banner string:
# Welcome information for login
Ftpd_banner = Welcome to newfield FTP service.

#
# You may specify a file of disallowed anonymous e-mail addresses. Apparently
# Useful for combatting certain DoS attacks.
# Deny_email_enable = YES
# (Default follows)
# Banned_email_file =/etc/vsftpd. banned_emails
#
# You may restrict local users to their home directories. See the FAQ
# The possible risks in this before using chroot_local_user or
# Chroot_list_enable below.
# The user will be chroot in the directory after login
Chroot_local_user = YES

#
# You may specify an explicit list of local users to chroot () to their home
# Directory. If chroot_local_user is YES, then this list becomes a list
# Users to NOT chroot ().
# If YES, the following controls are valid:
# Chroot_list_enable = YES

# (Default follows)
# Chroot_list_file =/etc/vsftpd. chroot_list
#
# You may activate the "-R" option to the builtin ls. This is disabled
# Default to avoid remote users being able to cause excessive I/O on large
# Sites. However, some broken FTP clients such as "ncftp" and "mirror" assume
# The presence of the "-R" option, so there is a strong case for enabling it.
# Ls_recurse_enable = YES
#
#
# Debian customization
#
# Some of vsftpd's settings don't fit the Debian filesystem layout
# Default. These settings are more Debian-friendly.
#
# This option shoshould be the name of a directory which is empty. Also,
# Directory shocould not be writable by the ftp user. This directory is used
# As a secure chroot () jail at times vsftpd does not require filesystem
# Access.
Secure_chroot_dir =/home/ftp

#
# This string is the name of the PAM service vsftpd will use.
Pam_service_name = vsftpd
#
# This option specifies the location of the RSA certificate to use for SSL
# Encrypted connections.
Rsa_cert_file =/etc/ssl/certs/ssl-cert-snakeoil.pem
# This option specifies the location of the RSA key to use for SSL
# Encrypted connections.
Rsa_private_key_file =/etc/ssl/private/ssl-cert-snakeoil.key

3. Boris @ borisPC :~ $ Sudo gedit/etc/vsftpd. user_list
Boris
Anonymous
4. sudo chmod 777/home/ftp/
Sudo chown-R boris: root/home/ftp
5. boris @ borisPC :~ $ Sudo/etc/init. d/vsftpd restart

Vsftpd virtual path settings
Problems to be Solved
Assume that the default ftp directory is/home/ftp. We want to map the/media/hda5/download folder to the/home/ftp directory.

Solution
First, create a directory in the/home/ftp directory.

Sudo mkdir/home/ftp/virtual
Then run the mount command.

Sudo mount -- bind/media/hda5/download/home/ftp/virtual
In this case, OK.