SFTP server
\nSFTP ( Secure File Transfer Protocol ) is used to encrypt connections between clients and the FTP server. It is highly recommended to use SFTP because data is transferred over encrypted connection using SSH-tunnel on port 22 .
\nBasically we need openssh-server package to enable SFTP .
\nInstall openssh-server package, if its not already installed.<\/p>\n
yum -y install openssh-server<\/p>\n
Create a separate group for FTP access.<\/p>\n
groupadd ftpaccess<\/p>\n
Now open \/etc\/ssh\/sshd_config file and make changes as below.
\nFind and comment the below line ( Line no : 147 ).<\/p>\n
#Subsystem sftp \/usr\/libexec\/openssh\/sftp-server
\nand add these lines below.
\nSubsystem sftp internal-sftp
\nMatch group ftpaccess
\nChrootDirectory %h
\nX11Forwarding no
\nAllowTcpForwarding no
\nForceCommand internal-sftp<\/p>\n
Step 9 \u00bb Now restart sshd service.
\n[root@krizna ~]# systemctl restart sshd
\nNow your SFTP server is configured and ready .<\/p>\n
User creation
\nCreate user jack with \/sbin\/nologin shell and ftpaccess group<\/p>\n
useradd -m mohan -s \/sbin\/nologin -g ftpaccess
\npasswd mohan<\/p>\n
Now assign root ownership for the home directory for chroot access and modify permission.
\nchown root \/home\/mohan
\nchmod 750 \/home\/mohan
\nCreate a directory www inside home directory for writing and modify ownership .<\/p>\n
mkdir \/home\/mohan\/uploaded
\nchown mohan:ftpaccess \/home\/jack\/uploaded<\/p>\n
Now mohan can use both ftp and sftp services . He can upload files in www directory .<\/p>\n
Setup ftp server centos 7
\nIf you are going to use FTP and SFTP together in the same server, you should follow above steps while creating users . For existing users add them to ftpaccess and make below changes.<\/p>\n
usermod test -g ftpaccess
\nchown root \/home\/test
\nchmod 750 \/home\/test
\nmkdir \/home\/test\/www
\nchown test:ftpaccess \/home\/test\/www<\/p>\n
Have a nice day.<\/p>\n","protected":false},"excerpt":{"rendered":"
SFTP server SFTP ( Secure File Transfer Protocol ) is used to encrypt connections between clients and the FTP server. It is highly recommended to use SFTP because data is transferred over encrypted connection using SSH-tunnel on port 22 . Basically we need openssh-server package to enable SFTP . Install openssh-server package, if its not […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[73],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/4552"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4552"}],"version-history":[{"count":2,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/4552\/revisions"}],"predecessor-version":[{"id":4554,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/4552\/revisions\/4554"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4552"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4552"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4552"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}