how to add users in VSFTPD w/ RHEL 4 AS?

guest · 03-29-2005, 03:34 AM

I'm pulling my hair out on this one... i can't seem to find any documentation that tells me how to add a user to this VSFTPD program.. Linux is so difficult to use..... they have to make it a lot easier to use!!!!!!! arghhhh

geek_to_core · 03-29-2005, 06:40 AM

this is from vsftpd.conf (default) file.

Quote:

# Allow anonymous FTP? (Beware - allowed by default if you comment this out).
anonymous_enable=YES
#
# Uncomment this to allow local users to log in.
#local_enable=YES

local users suffice as ftp users too. So make a new user on your machine and for security reasons make her shell as /bin/nologin.

selfxplanatory · 03-30-2005, 11:18 PM

useradd newusername

r0man · 01-10-2009, 03:24 PM

the matter of the ftp users is that the system users are valid in the ftp(vsftp) service.

for example if you have a "test" user in the system, you can do this:
ftp <ip>
and you put the username name of the system:"test"
and the password for that user...

if you want some security what you could do is make chroot in /etc/vsftpd.conf file and limit the users to a gage.

chroot_local_user=yes #To enable the chroot users (gage)
chroot_list_enable=yes #To enable the chroot
chroot_list_file=/etc/vsftpd/vsftpd.chroot_list #add the users to this file.

phgrey · 04-17-2009, 08:15 AM

please, one more question. I need to create a new user for VSFTPD that uses PAM on freeBSD. can I too just create a system user? Or not?
thanks a lot.

that's what I see in /etc/pam.d/vsftpd:
auth required /usr/local/lib/pam_pwdfile.so pwdfile /usr/local/etc/vsftpd/vsftpd_logins
account required /usr/lib/pam_permit.so

mmasseo · 03-31-2010, 12:51 PM

Hi there,
I know this is an old post, but I too was looking to ease the steps in adding vsftp users.
I managed to put together a script using dialogs on centos(based on stuff i found online), to create a simple wizard. Before I lose it, here it is...

This makes it simple for anyone to add a user from the commandline.

here is how you can do it:
1. open a terminal window (command prompt)

2. Create a script called vsftp_add.sh:
"sudo vi /usr/bin/vsftp_add.sh" (or graphically `sudo gedit /usr/bin/vsftp_add.sh`)

3. enter in the following code, and save the file:

Code:

Code:

### VSFTP user add script
#!/bin/bash
# m masseo Jan 7, 2010
# 
# This script uses dialog, as a wizardlike interface to add users to an existing vsftp setup.
 
 
 
 
# Make sure only root can run our script
if [[ $EUID -ne 0 ]]; then
   echo "This script must be run as root, or use sudo" 1>&2
   exit 1
fi
 
 
tempfile=`tempfile 2>/dev/null` || tempfile=/tmp/test$$
trap "rm -f $tempfile" 0 1 2 5 15
 
 
USERSFILE="/etc/vsftpd/vsftpd_users.txt"
 
#FUNCTIONS
function check_name() {
	grep $USERNAME $USERSFILE
	if [ "$?" = "0" ];
	then
		NAMEOK="no"
		#username exits
        	dialog --title "ERROR" --msgbox "You have chosen a username that exists already, please try again" 10 50
	else
		NAMEOK="yes"
	fi
}
 
 
# Display message with option to cancel
dialog --title "VSFTP user setup" --msgbox "We will now add a new user to this FTP server\" Press  <Enter>  to start or  <Esc> to cancel." 10 50
# Return status of non-zero indicates cancel
if [ "$?" != "0" ]
then
  dialog --title "VSFTP" --msgbox "You canceled your user add. Now exiting..." 10 50
else
  dialog --title "VSFTP" --infobox "user add in \ process..." 10 50
cd /etc/vsftp
 
 
### Prompt user to enter a name
NAMEOK="no"
while [ $NAMEOK != "yes" ]; 
do
	dialog --title "Name" --inputbox "Enter the user you wish to add:" 8 40 2>$tempfile
	retval=$?
case $retval in
  0)
    USERNAME=`cat $tempfile`
    check_name
  ;;
  1)
    echo "Cancel pressed."
    exit 0 ;;
  255)
    if test -s $tempfile ; then
      cat $tempfile
    else
      exit 0
      echo "ESC pressed." 
    fi
    ;;
esac
    VSFTPUSER=$USERNAME
done
 
###Prompt to enter password
dialog --title "Name" --inputbox "Please enter a password for $VSFPTUSER:" 8 40 2>$tempfile
retval=$?
case $retval in
  0)
    PASSWORD=`cat $tempfile`
    VSFTPPASS=$PASSWORD
  ;;
  1)
    echo "Cancel pressed."
    exit 0 ;;
  255)
    if test -s $tempfile ; then
      cat $tempfile
    else
      exit 0
      echo "ESC pressed."
 
    fi
    ;;
esac
 
dialog --title "Credentials" --msgbox "Here is what I am using: \n Username: $VSFTPUSER \n Password: $VSFTPPASS" 10 50
 
##backup the existing config
DATE=`date '+%Y.%m.%d-%H:%M'`
#backup user file
cp /etc/vsftpd/vsftpd_users.txt /etc/vsftpd/vsftpd_users.txt.$DATE
#backup db file
cp /etc/vsftpd/vsftpd_users.db /etc/vsftpd/vsftpd_users.db.$DATE
 
##Append new user and password to the users file
 
echo "$VSFTPUSER" >> $USERSFILE
echo "$VSFTPPASS" >> $USERSFILE
 
#Creating the ftp users database
echo "Creating the FTP user database"
db42_load -T -t hash -f /etc/vsftpd/vsftpd_users.txt /etc/vsftpd/vsftpd_users.db
sleep 2
#make directory for the user
echo "Creating directory for $VSFTPUSER"
mkdir /ftp/$VSFTPUSER
if [ "$?" = "0" ]
then
	echo "Directory created successfully"
	sleep 2
else
	echo "ERROR: Could not create directory, exiting"
	exit 1
fi
 
#Change ownership
echo "Changing ownership of directory for the vsftp user"
chown  -R virtualftp:virtualftp /ftp/$VSFTPUSER
if [ "$?" = "0" ]
then
        echo "Ownership  created successfully"
        sleep 1
else
        echo "ERROR: Could not change ownership, exiting"
        exit 1
fi
if [ "$?" = "0" ]
    then
    dialog --title "Add user" --msgbox "User added successfully." 10 50
    # Mark script with current date and time
    touch ~/.backup
  else
    # Backup failed, display error log
    dialog --title "Backup" --msgbox "User add failed-- Press
<Enter>
    to see error log." 10 50
   dialog --title "Error Log" --textbox /tmp/ERRORS$$ 22 72
  fi
fi
rm -f /tmp/ERRORS$$
clear

4. make it executable (from the command line):
sudo chmod +x /usr/bin/vsftp_add.sh

5. run it:
sudo /usr/bin/vsftp_add.sh

6. Follow the steps onscreen.

(* You need to have the program called dialog installed on the system)

khodamn · 04-03-2010, 01:06 PM

Quote:

Originally Posted by mmasseo

Hi there,
I know this is an old post, but I too was looking to ease the steps in adding vsftp users.
I managed to put together a script using dialogs on centos(based on stuff i found online), to create a simple wizard. Before I lose it, here it is...

This makes it simple for anyone to add a user from the commandline.

here is how you can do it:

mmasseo tanks for the efforts. I have a problem, when i try to run this command: /usr/bin/vsftp_add.sh i get these error's:

/usr/bin/vsftp_add.sh: line 38: dialog: command not found
/usr/bin/vsftp_add.sh: line 42: dialog: command not found

Do you know how can i fix this?

mmasseo · 04-05-2010, 09:34 AM

Hi there,

For this script to work, You need to make certain the program called "dialog" is installed.
in Redhat and Centos you can do this to install it:

1. open up a terminal
2. as root, type: 'yum install dialog' , you should be asked is you would like to install dialog. Just press 'Y' to continue.

mike

nonamenobody · 04-06-2010, 05:51 AM

u

Quote:

Originally Posted by mmasseo

Hi there,
I know this is an old post, but I too was looking to ease the steps in adding vsftp users.

Just to clarify mmasseo, is this a script to add a virtual user? Does RHEL/CentOS use virtual users by default for vsftpd? I am amazed that more distros don't.

hyperdaz · 04-07-2010, 11:37 AM

here is the output from (pretty default centos 5.4 install)

cp: cannot stat `/etc/vsftpd/vsftpd_users.txt': No such file or directory
cp: cannot stat `/etc/vsftpd/vsftpd_users.db': No such file or directory
Creating the FTP user database
./vftp_add.sh: line 112: db42_load: command not found
Creating directory for dllguest
mkdir: cannot create directory `/ftp/dllguest': No such file or directory
ERROR: Could not create directory, exiting

Cheers

mmasseo · 04-12-2010, 01:24 PM

Hello,

Sorry, I realize now that the script I have would only work on the enviroment where I work (Someone configured VSFTP in a non-standard fashion) which is why I wrote the script as i did. I will try to create a better script that works with a more standard vsftp setup.

Sorry for any inconvenience.

Thank you