Linux vsftp configuration tutorial

vsftp is a commonly used ftp server on Linux. Installing vsftp is also very simple. You can use redhat to install it locally. Use the rpm -ivh command to install it, or use tarball to install it. Use ./configure and then make. Make install can be done in three steps:

I don't think it's very difficult to set up this server. As long as I am familiar with the configuration file, I can configure it very well. Here are some vsftp configurations:

Configuration options for anonymous users:

anonymous_enable=yes Enable anonymous user login.

no_anon_password=yes Anonymous user login does not ask for a password.

anon_upload_enable=yes Anonymous user uploads permissions to files (non-directories).

anon_world_readable_only=yes Anonymous user permission to create a folder.

anon_mkdir_write_enable=yes Deleting and Renaming Files and Folders by Anonymous Users

anon_root=(none) Anonymous User Home Directory.

anon_max_rate=100 Anonymous user speed limit.

anon_umask=(077) Anonymous users have a mask when uploading files.

chown_uploads=yes The user of all anonymous upload files will be changed to chown_username.

chown_username=whoever The username of the anonymous upload file.

allow_anon_ssl=NO Allow anonymous users to connect using ssl.

anon_other_write_enable=NO Allow anonymous users to delete, modify names and other permissions.

anon_max_rate The maximum speed at which anonymous users can download.

anon_umask The default permission mask for anonymous user-created files.

anon_root Specifies the default directory for anonymous user logins.

Local User Configuration Options:

local_umask=022 The umask of the local user upload file.

userlist_enable=yes Limits that users here cannot access it.

userlist_deny=YES Whether to reject some of the usage, only the specified user is allowed to log in.

userlist_file= Stores users who are specified to be able to log in or not.

userlist_log=NO Whether to enable logging of user login failures specified in userlist_file.

local_root Sets the directory to be entered by a local user after logging in.

user_config_dir Set the user's separate configuration file, log in with that account and name it with that account.

download_enable Limits user download rights.

chown_uploads=yes The user of all anonymously uploaded files will be changed to chown_username.

chown_username=whoever The username of the anonymous upload file.

chroot_list_enable=yes All users listed in the chroot_list_file cannot change the root directory.

chroot_list_file=/etc/vsftpd/chroot_list Specifies the restricted user file.

chroot_local_user=NO Whether to allow local users to change directories after logging in.

user_config_dir= Stores the user's configuration file to implement different permissions for different users.

local_max_rate Local user speed limit.

Virtual User Configuration Options:

pam_service_name=vsftpd Set the name used by PAM. The default value is /etc/pam.d/vsftpd.

guest_enable=yes Enable Virtual Users . The default value is NO.

guest_username=ftp This is used to map virtual users.

virtual_use_local_privs=yes yes stands for the same permissions as local users. No is the same as anonymous user rights.

Global Settings:

write_enable=yse (global configuration) can be uploaded and deleted, renamed.

max_clients Maximum number of connections.

max_per_ip The maximum number of connections per ip.

data_connect_timeout The data connection timed out.

connect_timeout Connection timed out.

accept_timeout Establish a connection timeout.

ascii_download_enable Download in ascii mode.

ascii_upload_enable Uploaded in ascii mode.

async_abor_enable

check_shell Whether to check the logger's shell.

connect_from_port_20=NO Whether to connect with 20 ports.

deny_email_enable=NO Whether to send an email to a user who failed to log in after a failed login.

banned_email_file=/etc/vsftpd/banned_mail specifies the list of users to send mail to.

dirlist_enable=YES Whether to allow users to list directories using commands.

dirmessage_enable=ON Whether to display a message when the user logs in to the directory.

download_enable=YES Allow downloads

dual_log_enable=NO

force_dot_files=NO

force_anon_data_ssl=NO Force anonymous users to use ssl for data exchange.

force_anon_logins_ssl=NO Force anonymous users to log in using ssl.

force_local_data_ssl=YES Forces local users to use ssl for data exchange.

force_local_logins_ssl=YES Force local users to log in using ssl.

hide_ids=NO The uid and gid of non-anonymous users will be displayed as ftp.

listen Listen to ipv4.

listen_ipv6 Listen to ipv6.

lock_upload_files

log_ftp_protocol

ls_recurse_enable

mdtm_write

no_anon_password Anonymous user login does not require a password.

no_log_lock

one_process_model

pasv_enable Activates passive mode.

pasv_promiscuous

port_enable Enable port mode for data connections.

port_promiscuous Whether to start port security check.

ssl_enable Enables ssl mode.

ssl_ciphers Specifies the encryption mode for ssl.

Ssl_sslv2 Support for version 2 ssl.

Ssl_sslV3 Whether to support version 3 ssl.

ssl_tlsv1 Whether to enable the TLSv1 version.

syslog_enable Whether to enable logging.

tcp_wrappers

text_userdb_names

tilde_user_enable

use_localtime

xferlog_enable

xferlog_std_format

accept_timeout Client The end connection timed out.

connect_timeout Idle time connection timeout.

data_connection_timeout The data transfer connection timed out.

delay_failed_login

delay_successful_login

file_open_mode

ftp_data_port Specifies the data connection port.

idle_session_timeout

listen_port Command connection port.

max_client Maximum number of user connections.

max_login_fails

max_per_ip The number of connections each ip can make.

pasv_max_port The largest passive connection port.

pasv_min_port The smallest passive connection port.

banned_email_file

banner_file The welcome message displayed when the user logs in.

chown_username

hide_file= When you use the command to list files, the specified file will not be listed.

cmds_allowed Only specified commands can be used.