Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hello Folks.
I want to launch a public FTP server that other users in the world can access to it. I have a dedicated IP address. In your opinion is vsftp secure? In vsftp configure file I see "listen_address=" it should be my dedicated IP address?
I haven't run a public FTP server in ages, but as far as I know, vsftp has a pretty good reputation for security. Just make sure it's configured correctly (i.e. disabling uploads by anonymous users, permissions set correctly, etc.) and follow security errata for the distribution you will be using.
The listen address can be your public IP or just 0.0.0.0, which will tell vsftpd to listen on every interface (including the local loopback).
Here's the home site: https://security.appspot.com/vsftpd.html.
The 'VS' stands for 'Very Secure', but its still up to you to setup correctly, its not a Strong AI you know
Inded , VS stands for very secure , but some steps are required !
In orded to avoid virusses attacks , change port to a higher one like 20100 , it is harder for nmap to scan it.
Install fail2ban and look over internet for a proper configuration , mine is set to ban offender's ip for 24 hours only for 3 wrong attempts.
You as owner , can login into ftp over ssh like sftp://user@ip_address, of course not using plain passwords but RSA private key.
listen addr should be left as it is , 0.0.0.0 or blank , it means that it is allowed to listen entire range of IPv4 addresses
Sincerely
, can login into ftp over ssh like sftp://user@ip_address,
sftp != ftp ; you can't login like that. sftp is over the ssh channel.
You could use ftps (ftp+ssl) as supported by vsftpd, but personally I prefer just ssh/scp (& sftp if necessary).
true , ftp != sftp. i did not say otherwise !
I just said that can ftp (file transfer protocol ) over ssh
I always use sftp in Nautilus to transfer files towards my main server
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.