Install, configure, and manage proftpd in Linux (1)

 

Figure-ProFTPD

1. Introduction to proftpd.

ProftpdIt is an open source ftp server software, which is the most widely used domestic version of wu-ftpd in the world. It fixes many defects of wu-ftpd, significant improvements have been made in many aspects. One of the important changes is that it learns the Apache configuration method, making proftpd configuration and management easier and easier to understand. This article describes the most basic installation and configuration in Red hat Linux 9.

2. software-related resources.

Http://www.proftpd.org/

Source code package: proftpd is an open source software that can be downloaded from its official website. The latest stable version is 1.2.10.

Help document: this software package is included.

FAQ: this software package is included.

Configuration File example: this software package contains.

Iii. Software Installation.

1. Install

Download its source code package proftpd-1.2.10. tar.gz from its official website. Next, I will explain some important steps in the installation process:

[Root @ localhost root] # tar xzvf proftpd-1.2.10. tar.gz [root @ localhost root] # cd bind-9.3.1 [root @ localhost bind-9.3.1] #. /configure [root @ localhost bind-9.3.1] # make [root @ localhost bind-9.3.1] # make install

Tar xzvf bind-9.3.1.tar.gz decompression package.

./Configure for machine Installation check and settings, most of the work is automatically done by the machine, but you can complete some settings through some parameters, the common options are:

./Configure -- help view the parameter settings help.

-- The enable-ipv6 supports IPv6.

You can set many parameters. You can use-help to view the required parameters. Generally, you can set the parameters by default.

By default, the installation process should be:

Deamon of proftpd is/usr/local/sbin/proftpd

Proftpd configuration file,/usr/local/etc/proftpd. conf.

2. Start:

[Root @ localhost root] #/usr/local/sbin/proftpd-c/usr/local/etc/proftpd. conf

-C option is used to specify the location of the configuration file. If not specified, the default location is/usr/local/etc/proftpd. conf.

Under normal circumstances, proftpd should be started, ps aux should be able to check the proftpd process, or netstat-an can also see that the Service on port 21 is up. (Default ftp port)

If you want to enable the ftp server to start automatically at startup, you only need to add a line in/etc/rc. d/rc. local.

 
 

  
  
/usr/local/sbin/proftpd  
  
  
 
  
  
#!/bin/sh## This script will be executed*after* all the other init scripts.# You can put your own initialization stuff in here if you don't# want to do the full Sys V style init stuff.touch /var/lock/subsys/local/usr/local/sbin/proftpd  
  
  
 
 
 

4. Software Configuration.

1. Initial Configuration File

The default configuration file is located:

/Usr/local/etc/proftpd. conf (if the file does not exist, you can copy the configuration file sample from the compressed package.) The following describes some common options one by one: (# The following part is a comment)

 
 

  
  
# This is a basic ProFTPD configuration file (rename it to # 'proftpd.conf' for actual use.It establishes a single server# and a single anonymous login. It assumes that you have a user/group# "nobody" and "ftp" for normal operation and anon.ServerName "ServerType standaloneDefaultServer on# Port 21 is the standard FTP port.Port 21  
 
 

ServerType specifies the Startup Type of the FTP Server. The standalone method is generally relatively simple. if the traffic is small, xinetd must be used to listen for startup to save resources. Port: Specifies the FTP listening Port. Port 21 is generally used.

 
 

  
  
# Umask 022 is a good standard umask to prevent new dirs and files# from being group and world writable.Umask 022# To prevent DoS attacks, set themaximum number of child processes# to 30. If you need to allow more than 30 concurrent connections# at once, simply increase this value. Note that this ONLY works# in standalone mode, in inetd modeyou should use an inetd server# that allows you to limit maximumnumber of processes per service# (such as xinetd).MaxInstances 30  
  
  
 
 
 

Umask specifies the Umask value of the FTP server process. The default value of 022 is the same as that of Linux.

MaxInstances specifies the maximum number of connections to the FTP server.

 
 

  
  
# Set the user and group under which the server will run.User nobody Group nogroup # To cause every FTP user to be"jailed" (chrooted) into their home# directory, uncomment this line.#DefaultRoot ~DefaultRoot  
 
 

The User and Group specify the valid User ID when the proftpd process starts. The default identity is nobody for security reasons. Note that, in Red Linux 9.0, nogroup is not set by default, set Group to nobody.

The DefaultRoot option restricts Linux users from logging on to the home Directory through FTP.

 
 

  
  
# Set the maximum number of secondsa data connection is allowed# to "stall" before being aborted.#TimeoutStalled 300AllowRetrieveRestart onAllowStoreRestart on# Normally, we want files to be overwriteable. AllowOverwrite on  
 
 

TimeoutStalled specifies the connection timeout.

AllowRetriveRestart and AllowStroeRestart specify that resumable upload is allowed.

User ftp Group ftp # We want clients to be able to login with "anonymous" as well as "ftp" UserAlias anonymous ftp # Limit the maximum number of anonymous logins MaxClients 10 # We want' welcome. msg 'displayed at login, and '. message 'displayed # in each newly chdired directory. displayLogin welcome. msg DisplayFirstChdir. message # Limit WRITE everywhere in the anonymous chroot DenyAll

This section will be detailed later.