How to use Linux to build the best FTP server "continued"-Linux Enterprise Application-Linux server application information, the following is a detailed description.
Configure virtual user FTP
The FTP server configured above has a feature that the FTP server user is also a system user. This is obviously a security risk because these users can not only access FTP, but also access other system resources. How can this problem be solved? The answer is to create an FTP server for a virtual user. A virtual user can only access the FTP service provided by the server, but cannot access other resources of the system. Therefore, if you want to grant the write permission to the FTP server station but do not allow access to other system resources, you can use virtual users to improve system security.
In VSFTP, virtual users are authenticated using a separate password library file (pam_userdb), which is authenticated by the pluggable authentication module (PAM. This method is safer and more flexible. The following describes the configuration process.
1. Generate a virtual user password Library File
To create a password library file, you must first generate a text file. The file format is as follows: singular behavior username, even behavior password:
CODE: # vi account.txt Ylg 1234 Zhanghong 4321 Gou 5678 |