适合初学者FTP服务

FTP服务

1.匿名用户权限设置
更改配置文件
[root&＃64;localhost ~]# vi /etc/vsftpd/vsftpd.conf
anonymous_enable&＃61;YES
anon_root&＃61;/opt
anon_umask&＃61;022
anon_upload_enable&＃61;YES
anon_mkdir_write_enable&＃61;YES
anon_other_write_enable&＃61;YES
dirmessage_enable&＃61;YES
xferlog_enable&＃61;YES
connect_from_port_20&＃61;YES
xferlog_std_format&＃61;YES

更新
[root&＃64;localhost ~]# systemctl restart vsftpd

[root&＃64;localhost ~]# vi /etc/vsftpd/vsftpd.conf

重启
[root&＃64;localhost ~]# systemctl restart vsftpd
开启ftp服务器
[root&＃64;localhost ~]# systemctl start vsftpd
关闭防火墙
[root&＃64;localhost ~]# systemctl stop firewalld
关闭安全性功能
[root&＃64;localhost ~]# setenforce 0
查看端口
[root&＃64;localhost ~]# netstat -ntpl

在opt下创一个aaa的目录
[root&＃64;localhost ~]# cd /opt
[root&＃64;localhost opt]# mkdir /aaa
[root&＃64;localhost opt]# ll
total 2
drwxr-xr-x. 2 root root 33 Nov 10 04:44 aaa
dr-xr-xr-x. 8 root root 2048 Dec 9 2015 cdrom
drwxr-xr-x. 2 root root 6 Nov 10 04:01 media
drwxr-xr-x. 2 root root 18 Nov 10 03:40 test

给aaa改权限
[root&＃64;localhost opt]# chmod 777 aaa
[root&＃64;localhost opt]# ll
total 2
drwxrwxrwx. 2 root root 33 Nov 10 04:44 aaa
dr-xr-xr-x. 8 root root 2048 Dec 9 2015 cdrom
drwxr-xr-x. 2 root root 6 Nov 10 04:01 media
drwxr-xr-x. 2 root root 18 Nov 10 03:40 test

2.端口

listens on IPv4 sockets. This directive cannot be used in conjunction
with the listen_ipv6 directive.

listen&＃61;YES
listen_address&＃61;192.168.200.20
listen_port&＃61;21
pam_service_name&＃61;vsftpd

This directive enables listening on IPv6 sockets. By default, listening

重启
[root&＃64;localhost ~]# systemctl restart vsftpd
确认服务是否存在可以查看端口或状态
[root&＃64;localhost ~]# netstat -ntpl | grep vsftpd
tcp 0 0 192.168.200.20:21 0.0.0.0:* LISTEN 66889/vsftpd
[root&＃64;localhost ~]# systemctl status vsftpd
● vsftpd.service - Vsftpd ftp daemon
Loaded: loaded (/usr/lib/systemd/system/vsftpd.service; disabled; vendor preset: disabled)
Active: active (running) since Thu 2020-11-12 02:11:07 EST; 1min 0s ago
Process: 66888 ExecStart&＃61;/usr/sbin/vsftpd /etc/vsftpd/vsftpd.conf (code&＃61;exited, status&＃61;0/SUCCESS)
Main PID: 66889 (vsftpd)
CGroup: /system.slice/vsftpd.service
└─66889 /usr/sbin/vsftpd /etc/vsftpd/vsftpd.conf

Nov 12 02:11:07 localhost.localdomain systemd[1]: Starting Vsft…
Nov 12 02:11:07 localhost.localdomain systemd[1]: Started Vsftp…
Hint: Some lines were ellipsized, use -l to show in full.

3.限制访问用户&＃xff1a;

1.创立一个用户并设置密码
[root&＃64;localhost ~]# useradd -s /sbin/nologin -g ftp test

[root&＃64;localhost ~]# passwd test
Changing password for user test.
New password:
BAD PASSWORD: The password is a palindrome
Retype new password:
passwd: all authentication tokens updated successfully.

2.修改配置文件&＃xff08; vi /etc/vsftpd/vsftpd.conf&＃xff09;

[root&＃64;localhost ~]# vi /etc/vsftpd/vsftpd.conf
Ctrl&＃43;GG最后一行添加

pam_service_name&＃61;vsftpd
userlist_enable&＃61;NO
userlist_deny&＃61;YES
userlist_file&＃61;/etc/vsftpd/user_list
tcp_wrappers&＃61;YES

在/etc/vsftpd/chroot_list填一个test的用户

查看一下

[root&＃64;localhost ~]# cd /etc
[root&＃64;localhost etc]# cd vsftpd
[root&＃64;localhost vsftpd]# ls
chroot_list user_list vsftpd_conf_migrate.sh
ftpusers vsftpd.conf

[root&＃64;localhost vsftpd]# vi user_list

vsftpd userlist
If userlist_deny&＃61;NO, only allow users in this file
If userlist_deny&＃61;YES (default), never allow users in this file, and
do not even prompt for a password.
Note that the default vsftpd pam config also checks /etc/vsftpd/ftpusers
for users that are denied.

root
bin
daemon
adm
lp
sync
shutdown
halt
mail
news
uucp
operator
games
nobody
test
~
~


恢复一下
[root&＃64;localhost vsftpd]# vi user_list
把test删了

ftp文件夹未错误