Set the range of ports available for passive FTP. write_enable=YESĪdd force_dot_files=YES in the file to show hidden files such as. Uncomment these lines to allow the FTP user to upload files, and prevent them from accessing any files outside of their home directory. # Uncomment this to allow local users to log in. # Allow anonymous FTP? (Disabled by default). $ sudo nano /etc/nfĮnsure anonymous FTP access is disabled and local users can log in. $ sudo chown ftpaccess:ftpaccess /var/www/html Set the ownership of the webroot to the FTP user. For Apache, the default webroot is /var/www/html. vsftpd restricts the user's access to their specific home directory using chroot jails and requires that the directory be not writable by the user. Set the home directory to the folder above the default webroot. $ sudo nano /etc/ssh/sshd_configĪdd the following line to the bottom of the file. $ sudo adduser ftpaccessįor increased security, block this user from logging in via SSH. If the firewall is enabled, the rules should look like this: OutputĬreate a dedicated user to log in to FTP, and use a strong password. If it is enabled, open the necessary ports: 20 and 21 for FTP, 40000-50000 for passive FTP, and 990 for TLS. UFW, or Uncomplicated Firewall, is installed by default on Ubuntu systems. PrerequisitesĪ One-Click LAMP server configured with a Fully Qualified Domain Name (FQDN).Ī free Let's Encrypt certificate pointing to your domain name. With minor modifications, you can adapt this guide to any server distribution with vsftpd in their repository, and use Apache or Nginx. This guide is written for the Vultr One-Click LAMP server on Ubuntu 18.04 using a free Let's Encrypt SSL/TLS certificate. This guide explains how to set up vsftpd (Very Secure File Transfer Protocol Daemon), which allows users to upload files via FTPS (also known as FTP-SSL and FTP Secure).
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |