had a 530 message.
i would delete this post if i knew how. i figured it out i had an issue with my alias and user accounts
Yes, it's easy to use and really powerful
Yes, but i won't use it
No, the GUI has to be improved
had a 530 message.
i would delete this post if i knew how. i figured it out i had an issue with my alias and user accounts
Last edited by tetsu7; December 16th, 2011 at 10:54 PM.
Hello!
I'm running ubuntu 11.10. I did what was in the quide and ftp works without any problems, but since I want to use this outside my LAN I want it to be secure. When I add TLS/SSL protection and modify conf file, I'm still able to login to ftp server with normal unsecure connection. But when I try to use sftp or ftps then it just stucks to verifying TLS.
And Also I get following warning when I restart proftpd server:
- mod_tls/2.4.2: compiled using OpenSSL version 'OpenSSL 1.0.0d 8 Feb 2011' headers, but linked to OpenSSL version 'OpenSSL 1.0.0e 6 Sep 2011' library
- mod_sftp/0.9.7: compiled using OpenSSL version 'OpenSSL 1.0.0d 8 Feb 2011' headers, but linked to OpenSSL version 'OpenSSL 1.0.0e 6 Sep 2011' library
- mod_tls_memcache/0.1: notice: unable to register 'memcache' SSL session cache: Memcache support not enabled
Here's what's in my proftpd.conf file:
------------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------------
<IfModule mod_tls.c>
TLSEngine on
TLSLog /var/log/proftpd/tls.log
TLSProtocol TLSv1
# Are clients required to use FTP over TLS when talking to this server?
TLSRequired ON
# Server's certificate
TLSRSACertificateFile /etc/ftpcert/server.crt
TLSRSACertificateKeyFile /etc/ftpcert/server.key
# CA the server trusts
TLSCACertificateFile /etc/ftpcert/ca.crt
# Authenticate clients that want to use FTP over TLS?
TLSVerifyClient off
</IfModule>
Include /etc/proftpd/modules.conf
# To really apply changes reload proftpd after modifications.
AllowOverwrite on
AuthAliasOnly on
# Choose here the user alias you want !!!!
UserAlias micro userftp
ServerName "Ubuntuserver"
ServerType standalone
DeferWelcome on
MultilineRFC2228 on
DefaultServer on
ShowSymlinks off
TimeoutNoTransfer 600
TimeoutStalled 100
TimeoutIdle 2200
DisplayChdir .message
ListOptions "-l"
RequireValidShell off
TimeoutLogin 20
RootLogin off
# It's better for debug to create log files
ExtendedLog /var/log/ftp.log
TransferLog /var/log/xferlog
SystemLog /var/log/syslog.log
#DenyFilter \*.*/
# I don't choose to use /etc/ftpusers file (set inside the users you want to ban, not useful for me)
UseFtpUsers off
# Allow to restart a download
AllowStoreRestart on
# Port 21 is the standard FTP port, so you may prefer to use another port for security reasons (choose here the port you want)
Port 1980
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 5
# Set the user and group that the server normally runs at.
User nobody
Group nogroup
# Umask 022 is a good standard umask to prevent new files and dirs
# (second parm) from being group and world writable.
Umask 022 022
PersistentPasswd off
MaxClients 8
MaxClientsPerHost 8
MaxClientsPerUser 8
MaxHostsPerUser 8
# Display a message after a successful login
AccessGrantMsg "welcome !!!"
# This message is displayed for each access good or not
ServerIdent on "ftp server open"
# Lock all the users in home directory, ***** really important *****
DefaultRoot ~
MaxLoginAttempts 5
#VALID LOGINS
<Limit LOGIN>
AllowUser userftp
DenyALL
</Limit>
<Directory /home/FTP-shared>
Umask 022 022
AllowOverwrite off
<Limit MKD STOR DELE XMKD RNRF RNTO RMD XRMD>
DenyAll
</Limit>
</Directory>
<Directory /home/FTP-shared/download/*>
Umask 022 022
AllowOverwrite off
<Limit MKD STOR DELE XMKD RNEF RNTO RMD XRMD>
DenyAll
</Limit>
</Directory>
<Directory /home/FTP-shared/upload/>
Umask 022 022
AllowOverwrite on
<Limit READ RMD DELE>
DenyAll
</Limit>
<Limit STOR CWD MKD>
AllowAll
</Limit>
</Directory>
------------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------------
please help me
Thank you very much for this nice writeup!
I finally found a way to mount an external folder via ftp.
Was having a tough time doing it with vsftpd.
This one seems alot more better
I have a question though.
When i run ftptop and then press 't'
the rate of download in KB/s is shown as -NeN and the Progress stays at 0% although the download rate is about 165KB/s and progress is at 4%.
Why is this happening and what can i do to get the correct readings?
Hi,
I'm hoping you'll be willing to cast an expert eye over this little conf file.
I've inherited the admin of a webserver and am trying like mad to learn a bit more linux & work out what it's doing.
At the moment I'm just trying to back up one of the domains using Wordpress. For this I need FTP access.
I can log into the server using ssh, I know for certain the password of the adm account as I've just set it.
The problem is that I can't log in at all using FTP. I always get a 530 error.
I have cut down the proftpd.conf file an awful lot getting rid of the extras, and am left with this:
# Server Config — config used for anything outside a <VirtualHost> or <Global>
# See: http://www.proftpd.org/docs/howto/Vhost.html
ServerName “ProFTPD server”
Serverldent on “FTP Server ready.”
ServerAdmin root@localhost
DefaultServer on
RootLogin on
# Don’t do reverse DM5 lockups (hangs on DNS problems)
UseReverseDNS off
# Set the user and group that the server runs as
User nobody
Group nobody
Maxlnstances 20
# Disable sendfile by default since it breaks displaying the download speeds in
# ftptop and ftpwho
UseSendfile off
# Define the log formats
LogFormat default “%h 11 %u %t \“%r\” s b”
LogFormat auth “%v (%P3 %h %t \“%r\” %s”
UseFtpUsers off
AllcwStoreRestart on
DefaultRoot —
#VALID LOGINS
<Limit LOGIN>
AllowUser adm
AllowUser root
DenyALL
</Limit>
AccessGrantMsg “Login ok, Welcome to the server.”
MaxClients 10 “Sorry, max %m users —— try again later”
DisplayLogin /welcome.rnsg
DisplayChdir .message
It looks to me to be nicely simple, I know root's listed there, I'm just trying to get it to work .
Given that I'm in the server by another route with the same accounts & credentials, could anyone give me an idea as to why the 530 please?
Many thanks,
Pauliolio
Hello,
I cannot make userowner working.
I want that any user create files and dirs owned by nobody:nogroup rather than the logged user.
Here is my proftpd.conf file
I tried with no luckCode:# This is a basic ProFTPD configuration file (rename it to # 'proftpd.conf' for actual use. It establishes a single server # and a single anonymous login. It assumes that you have a user/group # "nobody" and "ftp" for normal operation and anon. ServerName "ProFTPD" ServerType standalone DefaultServer on # Port 21 is the standard FTP port. Port 21 # Umask 022 is a good standard umask to prevent new dirs and files # from being group and world writable. #Umask 022 Umask 002 # To prevent DoS attacks, set the maximum number of child processes # to 30. If you need to allow more than 30 concurrent connections # at once, simply increase this value. Note that this ONLY works # in standalone mode, in inetd mode you should use an inetd server # that allows you to limit maximum number of processes per service # (such as xinetd) MaxInstances 30 # Set the user and group that the server normally runs at. User nobody #Group nogroup # Normally, we want files to be overwriteable. <Directory /opt/lampp/htdocs/*> AllowOverwrite on </Directory> # only for the web servers content #DefaultRoot /opt/lampp/htdocs DefaultRoot ~/ftp-root # nobody gets the password "lampp" UserPassword nobody wRPBu8u4YP0CY # nobody is no normal user so we have to allow users with no real shell RequireValidShell off # nobody may be in /etc/ftpusers so we also have to ignore this file UseFtpUsers off
Please help meCode:<Directory /opt/lampp/htdocs/*> AllowOverwrite on UserOwner nobody GroupOwner nogroup </Directory>
Hi, Im not sure if this would help you or not but I have written a guide about how you can do this with pureftp. You can set up different accounts which you can manage through mysql. As i said, im not sure if this is you wanted but I hope it helps
http://wilson18.com/how-to/linux-net...-hosted-sites/
hi everybody,
my problem is that i can't connect with the local linux users
only the anonymous ftp work!
please help
this is my proftpd.conf :
Code:ServerName "serverftp01" ServerType standalone DefaultServer on RequireValidShell off # Port 21 is the standard FTP port. Port 21 # Don't use IPv6 support by default. UseIPv6 off # Umask 022 is a good standard umask to prevent new dirs and files # from being group and world writable. Umask 022 # To prevent DoS attacks, set the maximum number of child processes # to 30. If you need to allow more than 30 concurrent connections # at once, simply increase this value. Note that this ONLY works # in standalone mode, in inetd mode you should use an inetd server # that allows you to limit maximum number of processes per service # (such as xinetd). MaxInstances 30 # Set the user and group under which the server will run. User proftpd Group proftpd # To cause every FTP user to be "jailed" (chrooted) into their home # directory, uncomment this line. DefaultRoot ~ # Normally, we want files to be overwriteable. <Directory /> AllowOverwrite on </Directory> # Bar use of SITE CHMOD by default #<Limit SITE_CHMOD> # DenyAll #</Limit> # A basic anonymous configuration, no upload directories. If you do not # want anonymous users, simply delete this entire <Anonymous> section. <Anonymous ~ftp> User ftp Group ftp # We want clients to be able to login with "anonymous" as well as "ftp" UserAlias anonymous ftp # Limit the maximum number of anonymous logins MaxClients 10 # We want 'welcome.msg' displayed at login, and '.message' displayed # in each newly chdired directory. DisplayLogin welcome.msg
thanks for awesome tutorial!
thank you for this great setup tutorial, worked like a charm! I have only run into one problem. I have a total of 4 USB Hard drives hooked into my ubuntu 12.10 system, all of which are recognized. I have proftpd setup and running, and when I run the sudo mount -o bind /media/username/harddrive /home/username/harddrive , it replicates perfectly. The issue I am having is when I edit the /etc/fstab with, /media/username/harddrive /home/username/harddrive vfat bind 0 0 it tries to mount it but gives me an "Unable to mount Harddrive: [mntent]: line 19 in /etc/fstab is bad
Mount: according to mtab, /media/username/harddrive is mounted on /media/username/harddrive
Mount failed
I need the /media/username/harddrive to replicate in /home/username/harddrive everytime on boot.
I know /etc/fstab is used for mounting partitions and such but is there any other way for this to work? I have tried getting the mount -o bind command to run at startup by putting it into a /etc/init.d file but that didn't seem to work, I probably didn't do it right.
Am I missing something?
Any help would be greatly appreciated.
Bookmarks