There's not actually need to give a Linux user FTP access to entire server; each user can access its own directory (is chrooted), which locks the user to its directory and can not browse anywhere else.
This can be useful for an admin to create a generic FTP user, with a different username and password from any users with sudo to root capabilities.
Edit vsftpd.conf:
cd etc/vsftpd
vim vsftpd.conf
uncomment these lines (press i to enter insert/edit mode):
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd.chroot_list (this file can be anything you like, just remember how you name it !)
and save/close the file (ESC, :, x)
Then edit the list,
vim /etc/vsftpd.chroot_list
and type in the user or users (one per line) which you want to break out of the chroot jail and give global FTP to.
Don't forget to restart vsftpd:
service vsftpd restart
No comments:
Post a Comment