|
FTP Server : Install Vsftpd
2017/07/23 |
|
Install Vsftpd to configure FTP Server.
|
|
| [1] | Install and Configure Vsftpd. |
|
[root@www ~]#
dnf -y install vsftpd
[root@www ~]#
vi /etc/vsftpd/vsftpd.conf # line 12: no anonymous anonymous_enable= NO
# line 82,83: uncomment ( allow ascii mode ) ascii_upload_enable=YES ascii_download_enable=YES # line 100,101: uncomment ( enable chroot ) chroot_local_user=YES chroot_list_enable=YES # line 103: uncomment ( chroot list file ) chroot_list_file=/etc/vsftpd/chroot_list # line 109: uncomment ls_recurse_enable=YES # line 114: change (if listening IPv4 only) # if listning IPv4 and IPv6 both, specify "NO" listen= YES
# line 123: change (if listening IPv6 only) # if listning IPv4 and IPv6 both, specify "YES" listen_ipv6= NO
# add to the end # specify root directory (if don't specify, users' home directory become FTP home directory) local_root=public_html
# use local time use_localtime=YES
# turn off for seccomp filter (if you cannot login, add this line) seccomp_sandbox=NO
[root@www ~]#
vi /etc/vsftpd/chroot_list # add users you allow to move over their home directory fedora
systemctl start vsftpd [root@www ~]# systemctl enable vsftpd |
| [2] | If Firewalld is running, allow FTP service. If Firewalld and PASV mode on Vsftpd are enabled both, refer to the example here. |
|
[root@www ~]#
vi /etc/vsftpd/vsftpd.conf # add to the end: disable PASV mode pasv_enable=NO
[root@www ~]#
[root@www ~]# systemctl restart vsftpd
firewall-cmd --add-service=ftp --permanent success [root@www ~]# firewall-cmd --reload success |
| [3] | If SELinux is enabled, change Boolean setting. |
|
[root@www ~]# setsebool -P ftpd_full_access on |