CentOS7 deployment vsftpd service

Others 2019-08-14 03:25:16 views: null

1, check whether they have installed vsftpd

vsftpd -version

2, mounting the vsftpd ( CentOS7 )

yum install -y vsftpd

3, the new FTP directory

FTP directory is created as follows:

/data/KodServer/data/User/tomas/home

4. Create a new user

ftpname ftp created for you for a user name, / data / KodServer / data / User / tomas / home position after log in

useradd -d /data/KodServer/data/User/tomas/home -s /bin/bash ftpname

5, set a password for the new user

passwd ftpname

[Note: / passwd user can view the current system with a cat etc]

6, set the home directory (the directory you see when you log in to change, individuals need to look for changes, if step 4 has been set, this step can be ignored)

usermod -d /data/KodServer/data/User/tomas/home ftpname

7, add the user group (this step can be ignored)

groupadd ftpgroup

8, firewall add FTP service

firewall-cmd --permanent --zone=public --add-service=ftp
firewall-cmd --reload

Solution:

①, see the ftp Selinux status: sestatus -b | grep ftp
②, the result can be seen: ftp_home_dir OFF
③, the status to ON: setsebool -P ftp_home_dir ON
④, Restart vsftp service: systemctl  restart vsftpd.service

setsebool -P ftpd_full_access on

systemctl restart firewalld.service

9, the configuration can only access its own directory (/ data / KodServer / data / User / tomas / home), you can not access other paths

Modify /etc/vsftpd.conf

cd /etc/vsftpd/
vi vsftpd.conf

#去掉前面的注释
chroot_local_user=YES

ascii_upload_enable=YES
ascii_download_enable=YES

#文件末尾添加
allow_writeable_chroot=YES

Save and restart vsftpd

Set boot:

systemctl enable vsftpd.service

Start vsftpd service

systemctl start  vsftpd.service

Ftp ban users log on ftp server via port 22:

Because of the need to limit ftp users in their own directory, no problem at port 21, but when the user ftp with sftp login, you can still access the parent directory, so the ban ftp user ssh login, cutting off communication port 22.

First, run the following command to find the nologin shell :

vi /etc/shells

You can see forbid login shell file / usr / sbin / nologin, then execute the following command:

usermod -s /usr/sbin/nologin tomas

If you want to restore the tomas ssh login, execute the following command:

usermod -s /bin/bash tomas

Guess you like

Origin www.cnblogs.com/fan-yuan/p/11347943.html
Recommended
Face Wall Intelligence releases the Eurux-8x22B open source large model - it can be called the "science champion"
Kaiyuan Daily | Google supports Hongmeng to take over; open source Rabbit R1; Android phones supported by Docker; Microsoft’s anxiety and ambition; Haier Electric shuts down the open platform
Ranking
Jianzhi offer interview questions 68-II. The nearest common ancestor of a binary tree (recursive)
jQuery Mobile development 1-UI components
Summary of Kotlin function knowledge
[ZZ] The Naked Truth About Anisotropic Filtering
Diagnosis: record a recovery of abnormal CRASH storage caused the database to be unable to be opened normally
Redis introduction and Linux installation Redis
Experiment 2 Introduction to switches
glances open source command-line system monitoring tools introduced
Use of selector
vue3 handwriting a carousel picture
Daily
More
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)
2024-04-28(12)
2024-04-27(29)

Code World

© 2018 codetd.com