How to Install Vsftpd on Centos 6

Unable to install vsftpd on centos 6

Install Repository

wget http://dl.fedoraproject.org/pub/epel/6/x86_64/epel-release-6-8.noarch.rpm
rpm -Uvh epel-release-6*.rpm

Install vsftpd

yum install vsftpd

Setting up VSFTPD user to have write access to apache2's html directory

You may need to add a few more options to your vsftpd.conf file. This is generally the settings that I've used in the past:

anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=0022
anon_upload_enable=YES
anon_mkdir_write_enable=YES
file_open_mode=0777

This allows local accounts to set the default permissions (umask) for the files uploaded. For the mask to work properly anon_upload_enable and anon_mkdir_write_enable needs to be set to YES. If these are not set, then the uploaded files will see 700 permissions applied, which is of no value.

The file_open_mode option sets the default setting of files. Even though the value is 777, the local_umask setting of 022 ensures the files are given a 755.

Once this is set, you can restart the FTP server for everything to take effect.

For user accounts, it's often easiest to have their home directory set as the Apache root, and add them to the www-data group.

sudo adduser ftpuser
sudo usermod -d /var/www -m ftpuser
sudo usermod -a -G www-data ftpuser

Be sure to change ftpuser to whatever you'd like people or services to use when signing in to the web server.

From here we can ensure the proper permissions are set in the /var/www directory:

sudo chgrp -R www-data /var/www
sudo chmod -R g+w /var/www

Next we can set the directory and all sub-directories below it to "set GID", meaning all new files and directories created under /var/www are owned by the www-data group. The second command will ensure files are properly set:

sudo find /var/www -type d -exec chmod 2775 {} \;
sudo find /var/www -type f -exec chmod ug+rw {} \;

And that's that /p>

How to create ftp (vsftpd) in google cloud compute engine?

I found a way to do this, Please advice is there any risks.

apt-get install vsftpd libpam-pwdfile

nano /etc/vsftpd.conf

And inside the vsftpd.conf config file.

    # vim /etc/vsftpd.conf

    listen=YES
    listen_ipv6=NO
    anonymous_enable=NO
    local_enable=YES
    write_enable=YES
    local_umask=022
    nopriv_user=vsftpd
    chroot_local_user=YES
    allow_writeable_chroot=yes
    guest_username=vsftpd
    virtual_use_local_privs=YES
    guest_enable=YES
    user_sub_token=$USER
    local_root=/var/www/$USER
    hide_ids=YES

    listen_address=0.0.0.0
    pasv_min_port=12000
    pasv_max_port=12100
    pasv_address=888.888.888.888 # My server IP
    listen_port=211

Remove everything from the file and add these lines instead

auth required pam_pwdfile.so pwdfile /etc/ftpd.passwd

account required pam_permit.so

Create the main user that will be used by the virtual users to authenticate:

useradd --home /home/vsftpd --gid nogroup -m --shell /bin/false vsftpd

Once that is done we can create our users/passwords file.

htpasswd -cd /etc/ftpd.passwd helloftp

Next, add the directories for the users since vsftpd will not create them automatically.

mkdir /var/www/helloproject

chown vsftpd:nogroup /var/www/helloproject

chmod +w /var/www/helloproject

Finally, start the vsftp daemon and set it to automatically start on system boot.

systemctl start vsftpd && systemctl enable vsftpd

Check the status to make sure the service is started:

systemctl status vsftpd

    ● vsftpd.service - vsftpd FTP server
    Loaded: loaded (/lib/systemd/system/vsftpd.service; enabled)
    Active: active (running) since Sat 2016-12-03 11:07:30 CST; 23min ago
    Main PID: 5316 (vsftpd)
    CGroup: /system.slice/vsftpd.service
    ├─5316 /usr/sbin/vsftpd /etc/vsftpd.conf
    ├─5455 /usr/sbin/vsftpd /etc/vsftpd.conf
    └─5457 /usr/sbin/vsftpd /etc/vsftpd.conf

Finally add firewall rules to access via cloud.

Later I have changed my IP from 0.0.0.0 for more restriction

CentOS 7 vsftpd keeps rejecting PhpStorm FTP Connection

Alright, so here is the answer, after looking in to what @LazyOne posted. I needed to change permissions as the first step. chmod 644 / 755 for files / dirs.

After that, I added in a listen_port=40000 to my vsftpd.conf file.

Then, I added in port_enable, pasv_address=<my internal ip address for my server> and lastly, pasv_addr_resolve=NO, as I have a static IP on my server.

I also added additional ports to the passive settings 40000-40500, as I've read this will allow multiple connections and will solve another error I was having.

After all of this, I opened up the ports in my server firewall-cmd --add-port=40000-40500/tcp --permanent, and added port forwarding in my router to allow this.

After all was said and done, I was finally able to connect to my FTP.

Hopefully this will help someone.

CentOS 6.2 Jailing sftp account

You are on good way.

Personally I am using chrooting of sftp user described here: http://www.thegeekstuff.com/2012/03/chroot-sftp-setup/

IMHO in article is not stressed out enough that user's home directory has to be owned by root

    # ls -ld /var/www/PATH
    drwxr-xr-x 3 root root 4096 Dec 28 23:49 /var/www/PATH

You can get a lot of helpful info from logs, it this case you can search

    tail -f /var/log/secure

while connecting from external host.

Let me know if you have any more help with this problem.

Installing perl/cpan from source on Centos 6 64-bit

Force install the Taint module first:

cpan[1]> force install Taint

Then: cpan Apache2::TaintRequest

---

Related Topics