How to Use the gssftp service provided by Linux

For new contactsLinuxOperating system personnel, for how to useGssftpThe service must be unclear. It doesn't matter. This article will explain how to use this service.

Both RedHat and CentOS provide a gssftp service. The usage is as follows:

[root@linux local]# cd /etc/xinetd.d [root@linux xinetd.d]# ls chargen cups-lpd daytime-udp echo-udp gssftp krb5-telnet rsync time-udp chargen-udp daytime echo eklogin klogin kshell time

Edit the gssftp file, change server_args to-l, and change disable to no:

[root@linux xinetd.d]# vi gssftp[root@linux xinetd.d]# vi gssftp
# default: off
# description: The kerberized FTP server accepts FTP connections \
# that can be authenticated with Kerberos 5.
service ftp
{
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/kerberos/sbin/ftpd
#server_args = -l -a
server_args = -l
log_on_failure += USERID
#disable = yes
disable = no
}

Restart the xinetd service:

[root@linux xinetd.d]# service xinetd restart Stopping xinetd: [ OK ] Starting xinetd: [ OK ]

Check that port 21 is Enabled:

[root@linux xinetd.d]# netstat -tnlp Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 22543/xinetd

If the firewall does not open the port, open port 21 and restart the Firewall Service:

[root@linux xinetd.d]# vi /etc/sysconfig/iptables [root@linux xinetd.d]# service iptables restart Flushing firewall rules: [ OK ] Setting chains to policy ACCEPT: filter [ OK ] Unloading iptables modules: [ OK ] Applying iptables firewall rules: [ OK ]

In this way, the ftp service is available and users can log on to the linux system. However, gssftp is not secure enough for temporary emergency or internal use. vsftp is recommended for stable FTP services.