- Rongsen.Com.Cn 版权所有 2008-2010 京ICP备08007000号 京公海网安备11010802026356号 朝阳网安编号:110105199号
- 北京黑客防线网安工作室-黑客防线网安服务器维护基地为您提供专业的
服务器维护
,企业网站维护
,网站维护
服务 - (建议采用1024×768分辨率,以达到最佳视觉效果) Powered by 黑客防线网安 ©2009-2010 www.rongsen.com.cn
LINUX学习笔记--FTP服务器设置篇2
作者:黑客防线网安FTP教程网 来源:黑客防线网安FTP教程网 浏览次数:0 |
黑客防线网安网讯:第二步:配置incoming子目录的权限 打开proftpd.conf,在和段之间添加如下设置: Order allow,deny Allow from 10.0.8. Deny from all 表示在incoming这个子目录下,从10.0.8这个网...
第二步:配置incoming子目录的权限
打开proftpd.conf,在和段之间添加如下设置:
Order allow,deny
Allow from 10.0.8.
Deny from all
表示在incoming这个子目录下,从10.0.8这个网段登录的客户端有写入“WRITE”权限,其它人对该目录的写如权限都是被禁止的。如果要对所有的用户开放写入权限,只要把和 之间的内容换成“Allowall“。
四、FTP服务器相关命令
1、fthut:关闭FTP服务,并在/etc下生成文件shutmsg。要重新开放FTP服务,把/etc/shutmsg删除。
2、ftpcout:FTP服务器在线人数信息显示。
3、ftpwho:FTP服务器在线人员名单。
附录:Proftpd.conf全文及解释
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It aumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.
ServerName "MY REDHAT LINUX FTP" #设定FTP服务器的名称
ServerType standalone #设置FTP以Standalone模式运行,而不是以dameon模式
DefaultServer on #默认FTP服务器工作
# Port 21 is the standard FTP port.
Port 21 #FTP服务默认占用的端口
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022 #默认
RequireValidShell off #保证匿名用户正常登录,不要更改
ServerIdent off #不显示ftp服务器版本信息,以增强安全性
# To prevent DoS attacks, set the maximum number of child procees
# to 30. If you need to allow more than 30 concurrent coectio
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of procees per service
# (such as xinetd)
MaxItances 30
# Set the user and group that the server normally ru at.
User nobody #设置FTP服务以nobody运行
Group nobody #注意:原来是“Group nobody”,一定要改为“Group nobody”
# Normally, we want files to be overwriteable.
AllowOverwrite on
# A basic anonymous configuration, no upload directories.下面一段就是匿名服务的设置。
User ftp #匿名登录使用ftp用户
Group ftp #匿名登录使用ftp组
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous guest #给ftp用户anonymous的别名,使得anonymous登录就是ftp用户登录。
# Limit the maximum number of anonymous logi
MaxClients 10 #最多10个匿名用户同时在线
# We want 'welcome.msg' dilayed at login, and '.meage' dilayed
# in each newly chdired directory.
DilayLogin welcome.msg #登录FTP显示的欢迎信息。放在FTP的根目录下。
DilayFirstChdir .meage
# Limit WRITE everywhere in the anonymous chroot
#说明看正文。
Order allow,deny
Allow from 10.0.8.
Deny from all
打开proftpd.conf,在和段之间添加如下设置:
Order allow,deny
Allow from 10.0.8.
Deny from all
表示在incoming这个子目录下,从10.0.8这个网段登录的客户端有写入“WRITE”权限,其它人对该目录的写如权限都是被禁止的。如果要对所有的用户开放写入权限,只要把
四、FTP服务器相关命令
1、fthut:关闭FTP服务,并在/etc下生成文件shutmsg。要重新开放FTP服务,把/etc/shutmsg删除。
2、ftpcout:FTP服务器在线人数信息显示。
3、ftpwho:FTP服务器在线人员名单。
附录:Proftpd.conf全文及解释
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It aumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.
ServerName "MY REDHAT LINUX FTP" #设定FTP服务器的名称
ServerType standalone #设置FTP以Standalone模式运行,而不是以dameon模式
DefaultServer on #默认FTP服务器工作
# Port 21 is the standard FTP port.
Port 21 #FTP服务默认占用的端口
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022 #默认
RequireValidShell off #保证匿名用户正常登录,不要更改
ServerIdent off #不显示ftp服务器版本信息,以增强安全性
# To prevent DoS attacks, set the maximum number of child procees
# to 30. If you need to allow more than 30 concurrent coectio
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of procees per service
# (such as xinetd)
MaxItances 30
# Set the user and group that the server normally ru at.
User nobody #设置FTP服务以nobody运行
Group nobody #注意:原来是“Group nobody”,一定要改为“Group nobody”
# Normally, we want files to be overwriteable.
AllowOverwrite on
# A basic anonymous configuration, no upload directories.下面一段就是匿名服务的设置。
User ftp #匿名登录使用ftp用户
Group ftp #匿名登录使用ftp组
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous guest #给ftp用户anonymous的别名,使得anonymous登录就是ftp用户登录。
# Limit the maximum number of anonymous logi
MaxClients 10 #最多10个匿名用户同时在线
# We want 'welcome.msg' dilayed at login, and '.meage' dilayed
# in each newly chdired directory.
DilayLogin welcome.msg #登录FTP显示的欢迎信息。放在FTP的根目录下。
DilayFirstChdir .meage
# Limit WRITE everywhere in the anonymous chroot
Order allow,deny
Allow from 10.0.8.
Deny from all
黑客防线网安服务器维护方案本篇连接:http://www.rongsen.com.cn/show-19508-1.html
新闻栏目
| 我要申请本站:N点 | 黑客防线官网 | |
| 专业服务器维护及网站维护手工安全搭建环境,网站安全加固服务。黑客防线网安服务器维护基地招商进行中!QQ:29769479 |