Vsftp通用安装

VSFTP 普通安装

vsftpd基础安装

shell> yum update -y
shell> yum install vsftpd
shell> useradd -d /ftp -s /sbin/nologin ftpuser
shell> passwd ftpuser
shell> chmod -R 755 /ftp
shell> chown -R ftpuser.ftpuser /ftp

vsftpd配置

local_enable=YES
local_umask=022
dirmessage_enable=YES
dirlist_enable=YES
connect_from_port_20=YES
listen=YES
anonymous_enable=NO
userlist_enable=YES
userlist_deny=NO
userlist_file=/etc/vsftpd/user_list
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd/chroot_list
chroot_local_user=NO
xferlog_file=/var/log/vsftpd.log
xferlog_enable=YES
xferlog_std_format=YES
idle_session_timeout=60
data_connection_timeout=60
accept_timeout=60
connect_timeout=60
max_clients=200
pasv_enable=YES
pasv_min_port=5000
pasv_max_port=6000
ftpd_banner=Welcome to Ftp Server!
pam_service_name=vsftpd
write_enable=YES
allow_writeable_chroot=YES

user_list

ftpuser

ftpusers

root
bin
daemon
adm
lp
sync
shutdown
halt
mail
news
uucp
operator
games
nobody

chroot_list

ftpuser

配置文件结构

1 2	shell> ls /etc/vsftpd chroot_list ftpusers user_list vsftpd.conf vsftpd.conf.bak vsftpd_conf_migrate.sh

SELinux

1
2
3

shell> getsebool -a | grep ftp
shell> setsebool -P allow_ftpd_anon_write on
shell> setsebool -P allow_ftpd_full_access on

/etc/pam.d/vsftpd

#%PAM-1.0
session    optional     pam_keyinit.so    force revoke
auth       required	pam_listfile.so item=user sense=deny file=/etc/vsftpd/ftpusers onerr=succeed
# 这个位置更改用户登录
#auth       required	pam_shells.so
auth       required	pam_nologin.so
auth       include	password-auth
account    include	password-auth
session    required     pam_loginuid.so
session    include	password-auth

Vsftp通用安装

VSFTP 普通安装

vsftpd基础安装

vsftpd配置

user_list

ftpusers

chroot_list

配置文件结构

SELinux

/etc/pam.d/vsftpd

谢谢大爷~