User OPTIONS For VSFTPD settings

VsftpdIs the most popular FTP server program in the Linux release. Features: small, light, secure, and easy to use. Configuration is a little troublesome. The vsftpd. conf file configuration is relatively simple. You can set it as follows:

VSFTPD settings

The configuration file/etc/VSFTPD/vsftpd. conf of vsftpd is a text file. The line starting with "#" is a comment line. Each option is set to a row in the format of "option = value". Note that there cannot be blank characters on both sides of "=. In addition to the main configuration file, you can also set a personal configuration file for a specific user. For details, see.

The VSFTPD. conf file in the vsftpd package is easy to configure and is very paranoid (this document claims to be ). We can make some settings based on the actual situation to make VSFTPD more available.

1. User options

VSFTPD users include Anonymous Users, local Users, and virtual users (guest ).

1.1 Anonymous Users

Anonymous_enable = YES | NO

Checks whether anonymous users are allowed to log on. YES indicates YES. NO indicates NO. The default value is YES.

Ftp_username =

The system username used by anonymous users. By default, this parameter is not displayed in the configuration file and its value is ftp.

No_anon_password = YES | NO

Controls whether anonymous users need a password when logging on. YES, NO. The default value is NO.

Deny_email_enable = YES | NO

The default value of this parameter is NO. When the value is YES, anonymous users who use the banned_email_file parameter to specify the e-mail address listed in the file for Logon are denied. That is, anonymous users are denied logon by using the e-mail listed in the banned_email_file file. Obviously, this is effective for blocking some Dos attacks. When this parameter is valid, You need to append the banned_email_file parameter.

Banned_email_file =/etc/vsftpd. banned_emails

Specifies the file containing the rejected email address. The default file is/etc/vsftpd. banned_emails.

Anon_root =

Set the root directory of the anonymous user, that is, the root directory of the anonymous user. The default value is/var/ftp /.

Anon_world_readable_only = YES | NO

Controls whether only anonymous users are allowed to download readable documents. YES. Only anonymous users are allowed to download readable files. NO. allows anonymous users to browse the file system of the entire server. The default value is YES.

Anon_upload_enable = YES | NO

Controls whether anonymous users are allowed to upload files. YES, NO, NO, default value: NO. In addition to this parameter, an anonymous user needs two conditions to upload a file: 1. The write_enable parameter is YES; 2. on the file system, anonymous FTP users have write permission on a directory.

Anon_mkdir_write_enable = YES | NO

Controls whether anonymous users are allowed to create new directories. YES indicates YES. NO indicates NO. By default, NO indicates NO. Of course, in the file system, anonymous FTP users must have the write permission on the upper-level directory of the new directory.

Anon_other_write_enable = YES | NO

Controls whether anonymous users have permissions other than uploading and creating directories, such as deleting and renaming. YES. NO. The default value is NO.

Chown_uploads = YES | NO

Whether to modify the ownership of the files uploaded by anonymous users. YES, the ownership of the files uploaded by anonymous users will be changed to that of another different users. The user is specified by the chown_username parameter. The default value of this option is NO.

Chown_username = whoever

Specifies a user with the ownership of the uploaded files by an anonymous user. This parameter is used with chown_uploads. Root users are not recommended.

1.2 Local Users

Among users using the FTP service, in addition to anonymous users, there is also a type of user with an account on the host to which the FTP server belongs. In VSFTPD, such users are local users, which is equivalent to real users on other FTP servers.

Local_enable = YES | NO

Controls whether users of the system where vsftpd is located can log on to vsftpd. The default value is YES.

Local_root =

Define the root directory of all local users. When a local user logs in, it is replaced with this directory. The default value is none.

User_config_dir =

Define the directory where the user's personal configuration file is located. The user's personal configuration file is a file of the same name under this directory. The format of the personal configuration file is the same as that of vsftpd. conf. For example, to define user_config_dir =/etc/vsftpd/userconf and host users xiaowang and lisi, we can add two files named xiaowang and lisi in the user_config_dir directory. When you log on to lisi, VSFTPD reads the set value in the lisi file under user_config_dir and applies it to lisi. The default value is none.

1.3. Virtual users

Guest_enable = YES | NO

If this function is enabled, all non-Anonymous logins are considered as guest. The default value is disabled.

Guest_username =

Define the username of the guest user of VSFTPD in the system. The default value is ftp.

Through the above reading, we have some knowledge about the user options of VSFTPD settings, and hope to help you!