Setting up secure FTP server in Ubuntu 10.10
Initial requirements
If you already running any other FTP services in your network environment, decide which port you want to use with FTP.
Create users for accessing FTP services and change user directories accordingly in /etc/passwd file
Download and install
- sudo apt-get install vsftpd
- configure the vsftpd.conf to change the settings. Most of the default settings will work with vsftpd but few changes are mandatory.
- Edit /etc/vsftpd.conf using nano.
- By default passive mode is enabled on vsftpd. If you want to disable passive mode just add pasv-enable=NO
- Also if you want to change the default port no add or change this line listen_port=21
- Try to jail FTP users within their directory
Troubleshooting vsFTP errors
- 1. vsFTP Login authentication failed
Possible solutions:
1.1 In FTP, client use only FTP service rather than choosing SFTP or different one.
1.2 Select the password which is not more complex. Means if you include complex ASCII characters, FTP server won’t recognize.
1.3 Disable SSL on vsftp. Add this command to vsftpd.conf file ssl_enable=NO
1.4 Makes sure to disable anonymous authentication.
2. Can’t access the directories. Listing the remote directories ‘/’ failed. Error numbers include 500, 533 or any series in 500.E.x chmod –R 777 folder_name_of_FTP_Access
2.2 set umask value in vsftpd.conf to 002. Umask_value=002
2.3 edit etc/passwd file to change directories for FTP users
No comments:
Post a Comment