Powered by Blogger.

proFtpd | Tổng quan và Cài đặt

ProFTPD is a proven, high-performance, scalable FTP server written from scratch, with a focus toward simplicity, security, and ease of configuration. Naturally, ProFTPD powers some of the largest sites on the Internet. It features a very Apache-like configuration syntax, modules, and a highly customizable server infrastructure, including support for multiple ‘virtual’ FTP servers, anonymous FTP, and permission-based directory visibility.

ProFTPD Features
  • Single main configuration file, with directives and directive groups which are intuitive to any administrator who has ever used the Apache web server.
  • Per directory “.ftpaccess” configuration similar to Apache’s “.htaccess”.
  • Easy to configure multiple virtual FTP servers and anonymous FTP services.
  • Designed to run either as a stand-alone server or from inetd/xinetd, depending on system load.
  • Anonymous FTP root directories do not require any specific directory structure, system binaries or other system files.
  • No SITE EXEC command. In modern Internet environments, such commands are a security nightmare. ProFTPD does not execute any external programs at any time. The source is available (and must always be available) for administrators to audit.
  • Hidden directories and files, based on Unix-style permissions or user/group ownership.
  • Runs as a configurable non-privileged user in stand-alone mode in order to decrease chances of attacks which might exploit its “root” abilities. Note: This feature is dependent on the capabilities of the host Unix system.
  • Logging and utmp/wtmp support. Logging is compatible with the wu-ftpd standard, with extended logging available.
  • Shadow password suite support, including support for expired accounts.
  • Modular design, allowing server to be extended easily with modules. Modules have been written for SQL databases, LDAP servers, SSL/TLS encryption, RADIUS support, etc.
  • IPv6 support.


Install Proftpd Server in Ubuntu

If you want to install proftpd in ubuntu use the following command
sudo apt-get install proftpd
This will start the installation this time it will ask one question you want to run proftp server from inetd or standalone here select standalone and press enter after this installation will be completed.
Sử dụng khai báo ServerType để quyết định chế độ vận hành của ProFTPD, có 2 giá trị:
  • inetd: inetd (sau này là xinetd) sẽ chịu trách nhiệm lắng nghe các kết nối trên tất cả các giao tiếp mạng, trên tất cả các cổng kết nối trên máy tính, khi có kết nối đến port FTP, inetd sẽ gọi đến ProFTPD để xử lý yêu cầu.
  • standalone: ProFTPD sẽ lắng nghe các kết nối trên port FTP (mặc định là port 21) và xử lý các yêu cầu đến từ client trên kết nối này.
CONFIGURING PROFTPD SERVER
Mặc định tập tin cấu hình nằm trong thư mục /etc . Ví dụ /etc/proftpd.conf
Để xem file cấu hình mẫu, xem tại đây here
We are going to change the basic configuration for proftp server this includes security configuration also.
Now you need to edit the /etc/proftpd.conf file using vi or any other editor and you need to change the following Directives or add the following directives for proftp server configuration these are only some of basic directives if you want to know available directives check here
Mở tập tin cấu hình:
sudo vi /etc/proftpd.conf
Thay đổi các thông số:
ServerName — Configure the name displayed to connecting users
ServerName “proftp server”
ServerIdent — Set the message displayed on connect
ServerIdent on “Welcome to proftp server”
UseReverseDNS — Toggle rDNS lookups
UseReverseDNS off
IdentLookups — Toggle ident lookups
IdentLookups off
DefaultRoot — Sets default chroot directory
DefaultRoot ~
RequireValidShell — Allow connections based on /etc/shells
RequireValidShell off
MaxClients — Limits the number of users that can connect
DenyFilter — Regular expression of command arguments to be blocked
DenyFilter \*.*/
Maxclients 30
MaxClientsPerHost — Limits the connections per client machine
MaxClientsPerHost 50
Lưu tập tin và khởi động lại dịch vụ ftp:
sudo /etc/init.d/proftpd restart
Để kiểm tra tập tin đã đúng chưa(có sai cú pháp không), gõ lệnh:
sudo proftpd -td5
Mặc định client sẽ truy cập vào thư mục Home.
    Blogger Comment
    Facebook Comment