CentOS installation configuration FTP server
CentOS install FTP server is configured under a simple procedure notes.
192.168.1.12 client
192.168.1.10 server
Installation
yum install vsftpd
[root@server ~]# yum install -y vsftpd
Loaded plugins: fastestmirror
Setting up Install Process
Loading mirror speeds from cached hostfile
* base: centos.mirror.secureax.com
* extras: centos.mirror.secureax.com
* updates: centos.mirror.secureax.com
Resolving Dependencies
–> Running transaction check
—> Package vsftpd.x86_64 0:2.2.2-13.el6_6.1 will be installed
–> Finished Dependency Resolution
Dependencies Resolved
========================================================================================================================================
Package Arch Version Repository Size
========================================================================================================================================
Installing:
vsftpd x86_64 2.2.2-13.el6_6.1 updates 151 k
Transaction Summary
========================================================================================================================================
Install 1 Package(s)
Total download size: 151 k
Installed size: 332 k
Downloading Packages:
vsftpd-2.2.2-13.el6_6.1.x86_64.rpm | 151 kB 00:00
Running rpm_check_debug
Running Transaction Test
Transaction Test Succeeded
Running Transaction
Installing : vsftpd-2.2.2-13.el6_6.1.x86_64 1/1
Verifying : vsftpd-2.2.2-13.el6_6.1.x86_64 1/1
Installed:
vsftpd.x86_64 0:2.2.2-13.el6_6.1
Complete!
Start/Restart/Shutdown
/sbin/service vsftpd start
/sbin/service vsftpd restart
/sbin/service vsftpd stop
/etc/vsftpd/vsftpd.conf
Anonymous uploading and downloading
Modify the configuration file to vsftpd.conf
anonymous_enable=yes
anon_upload_enable=yes
anon_mkdir_write_enable=yes
anon_umask=022
Configuration vsftpd.conf
anonymous_enable=NO # prohibit anonymous
local_enable=YES # Allow log on locally
write_enable=YES # allowed to write, For uploading, you must
llocal_umask=027 # upload the file permissions set to: 777 – local_umask
anon_upload_enable=YES # allows virtual users and anonymous users to upload
anon_other_write_enable=YES # allows virtual users and anonymous users to modify file names and delete files
dirmessage_enable=YES
xferlog_enable=YES # turn on logging
connect_from_port_20=YES
xferlog_file=/var/log/vsftpd.log # standard log format
xferlog_std_format=YES
idle_session_timeout=600 # idle connection timeout
data_connection_timeout=120
ftpd_banner=Welcome to Server FTP service # welcome message
chroot_local_user=NO
chroot_list_enable=YES # The above two lines virtual user restrictions in its directory, you can not access other directories, or directly with
chroot_local_user=YES
listen=yes # monitor / passive mode
listen_port=21 # listening port
chroot_list_file=/etc/vsftpd/vsftpd.chroot_list # virtual user to save the file list /etc/vsftpd/vsftpd.chroot_list in
user_config_dir=/etc/vsftpd/vsftpd_user_conf #each virtual user name in the /etc/vsftpd/vsftpd_user_conf in
pam_service_name=vsftpd
userlist_enable=YES
tcp_wrappers=YES
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=027
anon_upload_enable=YES
anon_other_write_enable=YES
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
xferlog_file=/var/log/vsftpd.log
xferlog_std_format=YES
idle_session_timeout=600
data_connection_timeout=120
ftpd_banner=Welcome to Server FTP service
chroot_local_user=NO
chroot_list_enable=YES
chroot_local_user=YES
listen=yes
listen_port=21
chroot_list_file=/etc/vsftpd/vsftpd.chroot_list
user_config_dir=/etc/vsftpd/vsftpd_user_conf
500 oops bad bool value in config file for anonymous_enable
This can be caused by having trailing space at the end of the line. Check that there is no whitespace after “YES”. If that isn’t the case check that you don’t have Windows CRLF line endings.
The following sed command will remove any trailing space and CR characters from the specified file:
sed -i ‘s,\r,,;s, *$,,’ /etc/vsftpd.conf
Enable Chroot Jail in VSFTPD
To enable chroot jail in vsftp, Edit vsftp configuration file in your favorite editor
# vim /etc/vsftpd/vsftpd.conf
and un comment or add following entry in configuration file
chroot_local_user=YES
After adding above line, save file and restart vsftpd service.
# service vsftpd restart
Recent Comments