Apr 3, 2010

VsFTPd user with global FTP privileges (like 'root')

Give VsFTPd user a global (like 'root') privileges

There's not actually need to give a Linux user FTP access to entire server; each user can access its own directory (is chrooted), which locks the user to its directory and can not browse anywhere else.
This can be useful for an admin to create a generic FTP user, with a different username and password from any users with sudo to root capabilities.

Edit vsftpd.conf:
cd etc/vsftpd
vim vsftpd.conf

uncomment these lines (press i to enter insert/edit mode):
chroot_list_file=/etc/vsftpd.chroot_list           (this file can be anything you like, just remember how you name it !)

and save/close the file (ESC, :, x)
Then edit the list,
vim /etc/vsftpd.chroot_list

and type in the user or users (one per line) which you want to break out of the chroot jail and give global FTP to.

Don't forget to restart vsftpd:
service vsftpd restart

No comments: