Build sftp with mysecureshell in CentOS

Source: Internet
Author: User

Build sftp with mysecureshell in CentOS

O & M personnel should have such requirements on the file server:

1. Modify the server to store important files.

2. plaintext transmission is not allowed.

3. Lock the user directory.

4. You cannot log on to linux.

5. restrict the access speed and number of login users.

Our company often has such requirements, and the security department explicitly prohibits plaintext transmission of information related to user names and passwords. Here, mysecureshell can be used to meet this requirement.

Install the rpm package according to the following requirements, and change your shell to MySecureShell. As follows:

Generally, the yum source does not exist. You need to download it from the official website. Http://mysecureshell.sourceforge.net/en/download.html

There are many versions in it. You can download different versions based on your system requirements. In fact, it depends on your openss-devel version.

My version is CentOS6.2. Because openssl has been updated, I downloaded the version for centos6.4. Please note that.

You can use rpm for installation. Such as: rpm-vih mysecureshell-1.33-1.x86_64.rpm

If you do not know where the configuration file of the installation package is, run the following command to find it.

Rpm-qc package name, which is rpm-qc mysecureshell.

Main Content in the configuration file:

GlobalDownload/GlobalUpload is used to set the global download speed.

Whether StayAtHome locks users in their home directories.

LimitConnection sets the maximum number of connections.

LimitConnectionByUser/LimitConnectionByIP limits the maximum number of connections of each user/ip address.

Home specifies where the user directory is.

At this time, for example, test1 user, modify/etc/passwd. Change to mysecureshell as follows:

You do not need to restart any service. Use sftp software for testing. I often use winscp in windows.

The logon interface is as follows:

This method is a good solution I have used. You are welcome to propose other good solutions.

Configure the SFTP environment for non-SSH users in Linux

Set up FTP server and Apache server on Ubuntu

Install the LAMP \ vsftpd \ Webmin \ phpMyAdmin service and settings in Ubuntu 13.04

Simple case of anonymous uploading of SeLinux and vsftpd on the RHEL6 Platform

Install vsftpd source code in Linux

Case study of vsftpd Security Configuration

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.