vsftpd configuration notes

Experimental environment CentOS7, vsftpd3.0.2

Create two accounts fanyc1, fanyc2

 

1. Login account restrictions:

Conclusion 1: ftpuusers is a blacklist, as long as there are only users here, they cannot log in

Conclusion 2: user_list is a whitelist. After the following configuration, users who are not in ftpusers but in user_list can log in

# vsftpd.conf
userlist_enable=YES
userlist_deny=NO

 Conclusion 3: user_list is a blacklist. After the following configuration, users who are not in ftpusers and not in user_list can log in

 

 

# vsftpd.conf
userlist_enable=YES
userlist_deny=YES

 

 

2. Home directory restriction: first ensure that both fanyc1 and fanyc2 can log in through the above user_list whitelist

Conclusion 1: Users in the chroot_list are restricted to the home directory

 

chroot_local_user=NO
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd/chroot_list
allow_writeable_chroot=YES // Solve the problem of 500 OOPS error on the client side

 Conclusion 2: Users not in the chroot_list are restricted to the home directory

 

chroot_local_user=YES
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd/chroot_list
allow_writeable_chroot=YES // Solve the problem of 500 OOPS error on the client side

 

 

 

 

Guess you like

Origin http://10.200.1.11:23101/article/api/json?id=327073388&siteId=291194637