LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
Reload this Page Questions about VSFTPD (Help Please)
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 03-05-2013, 08:20 PM   #1
Altiris
Member
 
Registered: Mar 2013
Posts: 556

Rep: Reputation: Disabled
Exclamation Questions about VSFTPD (Help Please)

Im not sure if this should be in Server Software or Software in general so I put it in software general.

I have a few questions about configuring VSFTPD. (I am using CentOS 6.3)

1. When I try logging in to my FTP server (using ftp localhost on terminal or ftp://localhost in firefox) I get a weird error message saying that I can't change directories, I looked online and disabled SELinux and restarded my PC and it works, however I feel that this is a security risk and I want SELinux turned on but still have VSFTP working, is this possible?

2. When I got VSFTPD working, I noticed that when I logged in I started in my /home directory but I could navigate higher than that, even to the root folder. I want to make it so each user (ex. sam, bob, joe) can only navigate in there /home folder (/home/sam, /home/bob) and nowhere else.

(I read online also and it said something about #chroot_local_user=YES which is set to "YES" but it doesn't lock users to their home directory)

(OPTIONAL/LEAST IMPORTANT) 3. Is there a way to make VSFTPD public rather than just private/lan use? If you don't know what I mean, I am talking about Port forwarding (21) and allowing other people to connect to my FTP externally by typing in my external IP address.
 
Old 03-05-2013, 11:18 PM   #2
fortran
Member
 
Registered: Nov 2011
Location: Cairo, Egypt
Distribution: CentOS, RHEL, Fedora
Posts: 300
Blog Entries: 2

Rep: Reputation: 51
Have you removed comment sign # from attribute chroot_local_user=YES ?
When you change your vsftpd.conf, it is necessary to restart your vsftpd server.

To access ftp publicly, you should have static IP and port 21 should be opened on it so user outside LAN can access your system.
But remember it increases security risk so be careful before make it public.
 
Old 03-05-2013, 11:59 PM   #3
Elangoooo
LQ Newbie
 
Registered: May 2012
Posts: 1

Rep: Reputation: Disabled
Booleans of SElinux
Check the status of boolean with the following command

# getsebool -a | grep ftp

the output may be as below
***
allow_ftpd_anon_write –> off
allow_ftpd_full_access –> off
allow_ftpd_use_cifs –> off
allow_ftpd_use_nfs –> off
allow_tftp_anon_write –> off[COLOR="Red"]
ftp_home_dir –> off
ftpd_disable_trans –> off
ftpd_is_daemon –> on
httpd_enable_ftp_server –> off
tftpd_disable_trans –> off
***

The highlighted line should be set to ON, in order to access their own home directory
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Secure VSFTPD Installation Questions scucci Linux - Security 12 10-02-2009 09:31 PM
Questions about vsftpd fab_lab_99 Linux - Software 0 08-02-2006 01:55 AM
another vsftpd questions boToo Linux - Newbie 1 12-29-2005 10:25 AM
Vsftpd Questions john_d13 Linux - Networking 1 12-18-2004 05:33 AM
newbie with vsftpd questions neo.sarcastic Linux - Newbie 1 10-14-2004 03:07 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 04:11 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration