FAQs about FTP server deployment on Linux

Article title: FAQs about FTP server deployment on Linux. Linux is a technology channel of the IT lab in China. Includes basic categories such as desktop applications, Linux system management, kernel research, embedded systems, and open source.

The File Transfer Protocol (FTP) is a common method for transferring files between computers. The FTP protocol defines the standard for file transfer between a remote computer system and a local computer system. For the sake of security, the FTP server usually needs to set up an FTP account first. The user can upload and download files to and from the FTP server only after obtaining the FTP account.

It is easy for an enterprise to establish an FTP server on Microsoft's operating system. With the Microsoft FTP server build wizard, you can easily build an FTP server. However, few network administrators are building FTP servers on Microsoft's server system. Because Microsoft's operating system is not very stable, and the network administrator needs to perform many security configurations. To this end, many network administrators now like to configure the FTP service on Linux or Unit systems. Because, in terms of stability and security, the latter is much higher than the former.

I also like to configure the FTP service on the Linux operating system, although it is relatively troublesome to configure. However, the FTP server on this platform has high stability and does not require too many settings for security. Therefore, I prefer to configure the FTP server on the Liunx server system. Here, I will talk about some questions and skills about configuring the FTP service on the Linux operating system.

　　Question 1: How can I check whether the FTP service is enabled?

In Microsoft's operating system, you can check whether the FTP service is started normally on the control panel and service department. However, in Linux, it is not as simple as viewing the relevant configuration files.

Generally, in Linux, the FTP server is started and runs through inetd. If you want to know whether the FTP service is enabled normally in Linux, you need to check the/etc/ined. conf file. In this file, we can see whether the FTP service is started normally during the startup of the operating system.

If we see the following record in this file, it indicates that the FTP server is started normally.

Ftp stream tcp nowait root .......

If this record is displayed, the FTP service is started properly. Otherwise, the FTP server is not started by default. Therefore, we need to add this record to the inetd startup file so that the FTP server is automatically started when inetd is started.

Tips:

Sometimes, the inedd configuration file contains a lot of content. If we query the records one by one, we may not be able to quickly find this record. Therefore, we can use the query commands provided by the editor to query related content. In Microsoft operating systems, the F3 key is generally used to open the query window. In the configuration file editing window of Linux, the query function is enabled using the "/" character. You only need to input/ftp to find the ftp-related records. However, you must pay attention to the case sensitivity issue in Linux. That is, if we enter/FTP, we may not be able to find what we need. I often make similar errors when I first get started with Linux.

　　Question 2: How can I have the FTP server record user-related operations?

Sometimes, for the sake of FTP server security, we will allow the FTP server to record user-related operations. For example, when a user logs on to the FTP server and performs some operations. In this case, when the FTP server fails, the network administrator can view the information to find out what is wrong with the FTP server. Generally, over 90% of FTP servers are faulty, and experienced network administrators can solve the problem quickly with the log information.

1. you can set which operations a user performs during logon will be recorded in a specific log file. In other words, you can set the information related to a user category when uploading or downloading files to a log file. To set this information, the network administrator usually needs to set it in the/etc/ftpaccess configuration file.

For example, you can use the log transfer anonymous inbound and outbound commands to set that if the user logs on anonymously, the operations such as file uploading and file downloading will be recorded in the relevant logs.

2. redirect log files. Sometimes for the sake of log file security, we often need to redirect them. This is because if someone maliciously attacks the FTP server, it will usually leave traces on the server. In order to hide their attack behavior, they will modify the relevant log files after the attack is successful. Therefore, we sometimes need to redirect the log file. in this case, it is difficult for an illegal attacker to modify the log file after the attack. Our network administrator can quickly take measures after seeing this information.

[1] [2] Next page