VsftpdIs the most popular FTP server program in the Linux release. Vsftpd is a very popular FTP server program. Our new users not only need to understand how to install vsftpd, but also know how to configure vsftpd after it is installed.
Configure vsftpd. conf
The following describes the core configuration file vsftpd. conf. Its address is "/etc/vsftpd. conf", and the control statement format is "Statement = value". Do not add any space or punctuation between the formats. On the man manual page, the control statements are divided into three types: Boolean (value: YES or NO), numeric (value: Number), and string (value: string. For ease of management and clear thinking, there are four categories: Access rights, Security, feature, and Performance. The following is a sample configuration file that describes common control statements:
Code:
# Access rights
Anonymous_enable = YES?
/* If you do not want to enable Anonymous Access, change the value to NO */
Local_enable = NO?
/* Disable the Local User Logon Service, which means all non-Anonymous Users */
Write_enable = NO?
/* Disable write permissions for any user */
Anon_upload_enable = NO?
/* Disable the data upload capability of anonymous users */
Anon_mkdir_write_enable = NO?
/* Disable the Directory creation capability of anonymous users */
Anon_other_write_enable = NO?
/* Disable anonymous users from executing write commands other than create and upload. For example
Ability to change names and delete operations */
# Security
Anon_world_readable_only = YES?
/* Enable Anonymous Users to only use resources with full permission */
Connect_from_port_20 = YES?
/* Trigger a connection from Standard Port 20 */
Hide_ids = YES?
/* Hide the user ID on the FTP server and replace it with "FTP */
Pasv_min_port = 50000?
Pasv_max_port = 60000?
/* Set the port range in pasv transmission mode to 50000-60000 */
# Features
Xferlog_enable = YES?
/* Enable the log and record the transfer status to the file/var/log/vsftpd. log */
Ls_recurse_enable = NO?
/* Shut down the "ls-R" command, which is often used for DoS attacks and is a waste of system resources,
But the "mirror" image tool will use it */
Ascii_download_enable = NO?
/* Disable ASCII download to prevent DoS attacks. ASCII download consumes a lot of CPU resources */
Async_abor_enable = YES?
/* Enable the "async ABOR" command to support the early FTP client */
# Porformance
One_process_model = YES?
/* Enable the single process mode for each IP address. This mode only supports kernels with certain capabilities,
For example, linux kernel 2.4 */
Idle_session_timeout = 120?
/* The user who has been idle for two minutes */
Data_connection_timeout = 300?
/* Download from idle for five minutes */
Accept_timeout = 60?
/* The passive connection after one minute of suspension */
Connect_timeout = 60?
/* Disconnect an active connection after one minute of suspension */
Anon_max_rate = 50000?
/* The download speed of a single user cannot exceed 50 Kbytes per second */
So far, an anonymous server can run normally and has security settings. In reality, depending on the needs of the FTP server, such as enabling local user logon, allowing certain users to upload, and allowing users to see a friendly welcome message, you can also. conf. for more details, see the man manual ).
Some setting options are related to the running mode or plug-in module, and some options must depend on the enabling status of another option. In short, as long as they are well matched, you can create a satisfactory FTP server.
Summary
All the above instances have passed the test on the Red Hat 8.0 system. If you encounter any problems, please carefully check the correctness of each detail. The content in the instance can be increased, decreased, or modified according to the specific environment. I believe that a satisfactory and secure FTP server can be created with a slight flexibility.
I hope you can build a satisfactory and secure FTP server.
- Vsftpd Installation Process
- VsFTPd common minor Functions
- How to enable and disable the vsFTPd Server
- Install vsFTPd in one minute
- How to add Vsftpd virtual users
- Getting started with vsftpd-installation, configuration, cases and FAQs
- Custom welcome information for common vsFTPd Functions
- Common vsFTPd functions: Setting virtual paths and viewing log information