1. 安装VSFTP
1 yum -y install vsftpd
2. 配置vsftpd.conf文件
1 # Example config file /etc/vsftpd/vsftpd.conf 2 # 3 # The default compiled in settings are fairly paranoid. This sample file 4 # loosens things up a bit, to make the ftp daemon more usable. 5 # Please see vsftpd.conf.5 for all compiled in defaults. 6 # 7 # READ THIS: This example file is NOT an exhaustive list of vsftpd options. 8 # Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd‘s 9 # capabilities. 10 # 11 # Allow anonymous FTP? (Beware - allowed by default if you comment this out). 12 #anonymous_enable=YES 13 # 14 # Uncomment this to allow local users to log in. 15 local_enable=YES 16 # 17 # Uncomment this to enable any form of FTP write command. 18 write_enable=YES 19 # 20 # Default umask for local users is 077. You may wish to change this to 022, 21 # if your users expect that (022 is used by most other ftpd‘s) 22 local_umask=022 23 # 24 # Uncomment this to allow the anonymous FTP user to upload files. This only 25 # has an effect if the above global write enable is activated. Also, you will 26 # obviously need to create a directory writable by the FTP user. 27 #anon_upload_enable=YES 28 # 29 # Uncomment this if you want the anonymous FTP user to be able to create 30 # new directories. 31 #anon_mkdir_write_enable=YES 32 # 33 # Activate directory messages - messages given to remote users when they 34 # go into a certain directory. 35 dirmessage_enable=YES 36 # 37 # The target log file can be vsftpd_log_file or xferlog_file. 38 # This depends on setting xferlog_std_format parameter 39 xferlog_enable=YES 40 # 41 # Make sure PORT transfer connections originate from port 20 (ftp-data). 42 connect_from_port_20=YES 43 # 44 # If you want, you can arrange for uploaded anonymous files to be owned by 45 # a different user. Note! Using "root" for uploaded files is not 46 # recommended! 47 #chown_uploads=YES 48 49 #chown_username=whoever 50 # 51 # The name of log file when xferlog_enable=YES and xferlog_std_format=YES 52 # WARNING - changing this filename affects /etc/logrotate.d/vsftpd.log 53 #xferlog_file=/var/log/xferlog 54 # 55 # Switches between logging into vsftpd_log_file and xferlog_file files. 56 # NO writes to vsftpd_log_file, YES to xferlog_file 57 xferlog_std_format=YES 58 # 59 # You may change the default value for timing out an idle session. 60 idle_session_timeout=600 61 # 62 # You may change the default value for timing out a data connection. 63 data_connection_timeout=120 64 # 65 # It is recommended that you define on your system a unique user which the 66 # ftp server can use as a totally isolated and unprivileged user. 67 #nopriv_user=ftpsecure 68 # 69 # Enable this and the server will recognise asynchronous ABOR requests. Not 70 # recommended for security (the code is non-trivial). Not enabling it, 71 # however, may confuse older FTP clients. 72 #async_abor_enable=YES 73 # 74 # By default the server will pretend to allow ASCII mode but in fact ignore 75 # the request. Turn on the below options to have the server actually do ASCII 76 # mangling on files when in ASCII mode. 77 # Beware that on some FTP servers, ASCII support allows a denial of service 78 # attack (DoS) via the command "SIZE /big/file" in ASCII mode. vsftpd 79 # predicted this attack and has always been safe, reporting the size of the 80 # raw file. 81 # ASCII mangling is a horrible feature of the protocol. 82 ascii_upload_enable=YES 83 ascii_download_enable=YES 84 85 # 86 # You may fully customise the login banner string: 87 ftpd_banner=Welcome to lightnear FTP service. 88 # 89 # You may specify a file of disallowed anonymous e-mail addresses. Apparently 90 # useful for combatting certain DoS attacks. 91 #deny_email_enable=YES 92 # (default follows) 93 #banned_email_file=/etc/vsftpd/banned_emails 94 # 95 # You may specify an explicit list of local users to chroot() to their home 96 # directory. If chroot_local_user is YES, then this list becomes a list of 97 # users to NOT chroot(). 98 chroot_local_user=YES 99 #chroot_list_enable=YES 100 # (default follows) 101 #chroot_list_file=/etc/vsftpd/chroot_list 102 # 103 # You may activate the "-R" option to the builtin ls. This is disabled by 104 # default to avoid remote users being able to cause excessive I/O on large 105 # sites. However, some broken FTP clients such as "ncftp" and "mirror" assume 106 # the presence of the "-R" option, so there is a strong case for enabling it. 107 ls_recurse_enable=YES 108 # 109 # When "listen" directive is enabled, vsftpd runs in standalone mode and 110 # listens on IPv4 sockets. This directive cannot be used in conjunction 111 # with the listen_ipv6 directive. 112 listen=YES 113 # 114 # This directive enables listening on IPv6 sockets. To listen on IPv4 and IPv6 115 # sockets, you must run two copies of vsftpd with two configuration files. 116 # Make sure, that one of the listen options is commented !! 117 #listen_ipv6=YES 118 119 pam_service_name=vsftpd 120 userlist_enable=YES 121 userlist_deny=NO 122 local_root=/var/public_root 123 tcp_wrappers=YES 124 use_localtime=YES
3. 增加FTP帐户
这里设置的账户名为“objectyan”,密码为“objectyan”
1 [[email protected] ~]# useradd objectyan -s /sbin/nologin 2 [[email protected] ~]# passwd objectyan
4. 编辑user_list文件,允许objectyan用户访问FTP
1 [[email protected] ~]# vi /etc/vsftpd/user_list 2 3 # vsftpd userlist 4 # If userlist_deny=NO, only allow users in this file 5 # If userlist_deny=YES (default), never allow users in this file, and 6 # do not even prompt for a password. 7 # Note that the default vsftpd pam config also checks /etc/vsftpd/ftpusers 8 # for users that are denied. 9 root 10 bin 11 daemon 12 adm 13 lp 14 sync 15 shutdown 16 halt 17 mail 18 news 19 uucp 20 operator 21 games 22 nobody 23 objectyan
5. 建立我们的根目录,并设置访问权限
1 [[email protected] ~]# mkdir /var/public_root 2 [[email protected] ~]# chown -R objectyan /var/public_root 3 [[email protected] ~]# chmod -R 755 /var/public_root
6. 开启vsftpd服务
1 [[email protected] ~]# service vsftpd start
7.默认开启vsftp服务
1 [[email protected] var]# chkconfig vsftpd on
centos 卸载vsftpd方法
如果服务器上安装了vsftpd,配置出错需要卸载vsftpd
1 [[email protected] ~]# rpm -aq vsftpd
vsftpd-2.0.5-16.el5_5.1 #此处是查找vsftpd的返回结果
1 [[email protected] ~]# rpm -e vsftpd-2.0.5-16.el5_5.1
#用rpm -e 查找结果 进行删除就ok了。
warning: /etc/vsftpd/user_list saved as /etc/vsftpd/user_list.rpmsave
warning: /etc/vsftpd/ftpusers saved as /etc/vsftpd/ftpusers.rpmsave #删除时将备份vsftp的用户列表文件。
时间: 2024-10-18 04:44:50