0% found this document useful (0 votes)

208 views

Lesson 05 - Linux FTP Server

1. The document describes the steps to configure an FTP server with both anonymous and authenticated user access on a CentOS system. Key steps include enabling the vsftpd service, configuring the firewall, creating users and groups, and setting permissions on the FTP directory. 2. Authentication is implemented by creating FTP users, assigning them to the ftpusers group, and restricting anonymous access. Additional security is provided by implementing a chroot jail and access control list. 3. Testing confirms anonymous access is blocked while authenticated users can log in with their credentials and are restricted to their home directories.

Uploaded by

ziblur

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

208 views

Lesson 05 - Linux FTP Server

Uploaded by

ziblur

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

You are on page 1/ 4

Reference Table:

----------------
FTP - File Transfer Protocol
FTP - FTP is a Application layer protocol which use to transfer files between
clients and server.
Port: 20 (Data),21 (Control)
Protocol: TCP
Packages: vsftpd
Daemon: vsftpd
Configuration file: /etc/vsftpd/vsftpd.conf
Directory location: /var/ftp/pub/*

FTP Server Types:

=================
1) Normal FTP (Anonymous User)
2) Authentication based

FTP user:
=========
1) Anononymous user: guest user (no password)
2) Authentication FTP user: FTP group user
3) local user (local user of server crated by root)

Step 01: Set Hostname

=====================
[root@localhost ~]# hostnamectl set-hostname ftpX.example.com
[root@localhost ~]# bash

Step 02: Set Static IP Address

==============================
[root@ftpX ~]# nmtui -> select Interface -> Manual -> 172.25.11.200+X/25, GW, DNS
etc.

Step 03: (RPM check)

=====================
[root@ftpX ~]# rpm -qa | grep vsftpd
[root@ftpX ~]# yum install vsftpd -y
[root@ftpX ~]# rpm -qa | grep vsftpd

Step 04: Configure Anonymous FTP Server

=======================================
[root@ftpX ~]# cd /var/ftp
[root@ftpX ~]# mkdir download movie software
[root@ftpX ~]# touch file1 file2

Anonymous Enable
----------------
[root@ftpX ~]# vim /etc/vsftpd/vsftpd.conf
:set nu

12 anonymous_enable=YES ; NO => YES

Service Restart
---------------
[root@ftpX ~]# systemctl restart vsftpd.service
[root@ftpX ~]# systemctl enable vsftpd.service

Step 05: Firewall and SElinux Security Allow

============================================
[root@ftpX ~]# systemtld restart firewalld
[root@ftpX ~]# systemtld enable firewalld
[root@ftpX ~]# firewall-cmd --permanent --add-service=ftp
[root@ftpX ~]# firewall-cmd --reload
[root@ftpX ~]# setenforce 0

Step 06: Anonymous Testing

==========================
=> Now Open your browser from Host Machine
=> Type: ftp://172.25.11.200+x

FTP Access:
-------------
1) Web Based: ftp://ftp.example.com or ftp://172.25.11.200+X
2) Command Based: # ftp 172.25.11.200+X
3) Software Based: Filezilla, FTPPRO
username: anonymous
passwword: *******
port: 21

Command Mode: Anonymous Login (Client)

-------------------------------------
[root@ftpX ~]# yum install ftp -y
[root@ftpX ~]# ftp 172.25.11.200+x ; X is server IP
Connected to 172.25.11.200+x (172.25.11.200+x).
220 (vsFTPd 2.2.2)
Name (172.25.11.200+x:root): anonymous
password: ***** (any)

ftp> help
ftp> dir
ftp> cd pub
ftp> ls
ftp> bye

Step 07: User Authentic Based FTP Server:

=========================================
[root@ftpX ~]# cd /
[root@ftpX ~]# mkdir ftpdir
[root@ftpX ~]# touch ftpdir/file{1..10}
[root@ftpX ~]# groupadd ftpusers
[root@ftpX ~]# chgrp ftpusers ftpdir -R
[root@ftpX ~]# chmod 750 -R ftpdir ; see below permisison

[root@ftpX ~]# useradd -G ftpusers -d /ftpdir sakib

[root@ftpX ~]# useradd -G ftpusers -d /ftpdir tamim
[root@ftpX ~]# useradd -G ftpusers -d /ftpdir shamim

[root@ftpX ~]# cat /etc/group

ftpusers:1003:sakib,tamim,shamim

[root@ftpX ~]# passwd sakib

[root@ftpX ~]# passwd tamim
[root@ftpX ~]# passwd shakil

Disable Anonymous Access:

-------------------------
[root@ftpX ~]# vim /etc/vsftpd/vsftpd.conf
:set nu

12 anonymous_enable=NO ; NO => YES

[root@ftpX ~]# systemctl restart vsftpd.service

Testing User Aurhentication:

----------------------------
Try with Web Browser: ftp://172.25.11.200+x
user: tamim
pass: ******

Step 08: Chroot Jail Enable:

============================
[root@ftpX ~]# vim /etc/vsftpd/vsftpd.conf

102 #chroot_list_enable=YES ; before

102 chroot_list_enable=YES ; after

104 #chroot_list_file=/etc/vsftpd/chroot_list ; before

104 chroot_list_file=/etc/vsftpd/chroot_list ; after

[root@ftpX ~]# vim /etc/vsftpd/chroot_list ;new file

sakib
tamim
shahin

[root@ftpX ~]# systemctl restart vsftpd.service

Return to Host's Browser:

-------------------------
Try with Web Browser: ftp://172.25.11.200+x

Step 09: User Login Access Control Protect:

===========================================
[root@ftpX ~]# vim /etc/vsftpd/ftpusers
tamim ; append this user

[root@ftpX ~]# systemctl restart vsftpd.service

Return to Host's Browser:

-------------------------
Try with Web Browser: ftp://172.25.11.200+x

=================== Thank you ==================

Cisco Press DWDM Network Designs and Engineering Solutions
No ratings yet
Cisco Press DWDM Network Designs and Engineering Solutions
419 pages
Module 1 - Activity 1 - Install and Configure The AWS CLI
No ratings yet
Module 1 - Activity 1 - Install and Configure The AWS CLI
9 pages
802.11 Reason Codes
No ratings yet
802.11 Reason Codes
3 pages
Building A Powerful FreeBSD Firewall Based On PF and IPFW
100% (17)
Building A Powerful FreeBSD Firewall Based On PF and IPFW
13 pages
CCNA 3 and 4 Companion Guide, 3rd Edition (CNAP)
100% (1)
CCNA 3 and 4 Companion Guide, 3rd Edition (CNAP)
9 pages
QA
No ratings yet
QA
9 pages
Module1 PDF
No ratings yet
Module1 PDF
1 page
70-411 R2 Test Bank Lesson 01
No ratings yet
70-411 R2 Test Bank Lesson 01
10 pages
CCNA TestKing Dump
No ratings yet
CCNA TestKing Dump
519 pages
Configuration of a Simple Samba File Server, Quota and Schedule Backup
From Everand
Configuration of a Simple Samba File Server, Quota and Schedule Backup
Dr. Hidaia Mahmood Alassouli
No ratings yet
Step by Step DNS Configuration On Linux
No ratings yet
Step by Step DNS Configuration On Linux
5 pages
XK0 002
100% (1)
XK0 002
217 pages
Network Security
No ratings yet
Network Security
17 pages
Lecture 3 - Modern Block Ciphers - DES, AES and and Triple-DeS
No ratings yet
Lecture 3 - Modern Block Ciphers - DES, AES and and Triple-DeS
74 pages
200 301 CCNA v1.0 2
No ratings yet
200 301 CCNA v1.0 2
5 pages
Bind 9
No ratings yet
Bind 9
33 pages
Cloud Computing Lab Experiments
No ratings yet
Cloud Computing Lab Experiments
2 pages
My CEHpractica Lcheat Sheet
No ratings yet
My CEHpractica Lcheat Sheet
6 pages
CT106!3!2 Systems and Network Administration (VD1) 1 September 2019
No ratings yet
CT106!3!2 Systems and Network Administration (VD1) 1 September 2019
2 pages
Red Hat Enterprise Linux 8 - RHCSA Syllabus
No ratings yet
Red Hat Enterprise Linux 8 - RHCSA Syllabus
5 pages
Application Layer Unit 1
No ratings yet
Application Layer Unit 1
44 pages
What Is CCNA
No ratings yet
What Is CCNA
14 pages
There Are Five Passwords Used To Secure Your Cisco Routers
No ratings yet
There Are Five Passwords Used To Secure Your Cisco Routers
4 pages
Application Layer
No ratings yet
Application Layer
107 pages
Pstools
100% (5)
Pstools
13 pages
CCNA Security v2.0 Chapter 1 Exam Answers
No ratings yet
CCNA Security v2.0 Chapter 1 Exam Answers
5 pages
Redhat Linux Syllabus
No ratings yet
Redhat Linux Syllabus
6 pages
Assignment On Wireshar1
No ratings yet
Assignment On Wireshar1
4 pages
50 REAL TIME LINUX Multiple Choice Questions and Answers LINUX Multiple Choice Questions PDF
100% (1)
50 REAL TIME LINUX Multiple Choice Questions and Answers LINUX Multiple Choice Questions PDF
16 pages
SSH Port Forwarding
No ratings yet
SSH Port Forwarding
15 pages
Devops Project Report
No ratings yet
Devops Project Report
12 pages
CCNA Lab Manual
No ratings yet
CCNA Lab Manual
35 pages
Lab 4 Static Default Route
No ratings yet
Lab 4 Static Default Route
8 pages
Exercises Netflow Nfsen
No ratings yet
Exercises Netflow Nfsen
9 pages
Hands-On Ethical Hacking and Network Defense: Linux Operating System Vulnerabilities
No ratings yet
Hands-On Ethical Hacking and Network Defense: Linux Operating System Vulnerabilities
40 pages
Storage in Cloud
No ratings yet
Storage in Cloud
51 pages
CSNA v4 Training Book With Virtual Labs and Appendices 2021-12-21-1
No ratings yet
CSNA v4 Training Book With Virtual Labs and Appendices 2021-12-21-1
578 pages
Lab6 - Mitigating Data Plane Attacks by Using ACL
100% (1)
Lab6 - Mitigating Data Plane Attacks by Using ACL
10 pages
Cloud Computing Syllabus
No ratings yet
Cloud Computing Syllabus
3 pages
Penetration Testing Report
No ratings yet
Penetration Testing Report
13 pages
Network Engineer Resume Sample
No ratings yet
Network Engineer Resume Sample
3 pages
VLANs and Inter VLAN Routing PDF
No ratings yet
VLANs and Inter VLAN Routing PDF
42 pages
Deadlock Assignment
No ratings yet
Deadlock Assignment
6 pages
Cloud Computing - Lab 4
No ratings yet
Cloud Computing - Lab 4
2 pages
Cisco Ios Cheat Sheet - Router Commands
No ratings yet
Cisco Ios Cheat Sheet - Router Commands
2 pages
Password-Less SSH Setup: Getting Started
No ratings yet
Password-Less SSH Setup: Getting Started
2 pages
CCNA 200-125 171q by PenPineappleApplePen - Protected
100% (16)
CCNA 200-125 171q by PenPineappleApplePen - Protected
66 pages
Intro Wireshark Lab
No ratings yet
Intro Wireshark Lab
7 pages
Composite Quiz 102 Questions: Type Text To Search Here..
No ratings yet
Composite Quiz 102 Questions: Type Text To Search Here..
34 pages
11 - Implementing Secure Network Protocols
No ratings yet
11 - Implementing Secure Network Protocols
28 pages
User and Group Management
No ratings yet
User and Group Management
11 pages
Network Security
No ratings yet
Network Security
68 pages
Week 20220 Report
No ratings yet
Week 20220 Report
28 pages
System Administrator Interview Questions and Answers 1407
No ratings yet
System Administrator Interview Questions and Answers 1407
13 pages
Lab 8 - Virtualization Using VMWare Workstation
No ratings yet
Lab 8 - Virtualization Using VMWare Workstation
4 pages
Centos / Red Hat Linux Install VSFTPD FTP Server
No ratings yet
Centos / Red Hat Linux Install VSFTPD FTP Server
2 pages
The Application Layer: Lecture-9
No ratings yet
The Application Layer: Lecture-9
66 pages
AWS-SysOps
No ratings yet
AWS-SysOps
10 pages
Cs6004 Cyber Forensics: Unit - Ii
No ratings yet
Cs6004 Cyber Forensics: Unit - Ii
62 pages
5.2.2.9 Lab - Configuring Switch Security Features
No ratings yet
5.2.2.9 Lab - Configuring Switch Security Features
10 pages
Mastering SaltStack
From Everand
Mastering SaltStack
Joseph Hall
No ratings yet
VMware Horizon View Essentials
From Everand
VMware Horizon View Essentials
Peter von Oven
No ratings yet
DCA-Docker Certified Associate
No ratings yet
DCA-Docker Certified Associate
42 pages
System Ex200
No ratings yet
System Ex200
6 pages
Rhce Exam
No ratings yet
Rhce Exam
12 pages
Rhcsa Full Doc CSL
100% (1)
Rhcsa Full Doc CSL
134 pages
Scratch
No ratings yet
Scratch
1 page
System Ex200
No ratings yet
System Ex200
6 pages
FSP 3000 Product Introduction 0120 PDF
100% (1)
FSP 3000 Product Introduction 0120 PDF
36 pages
Nmcli
No ratings yet
Nmcli
4 pages
Lesson 23 - Linux Mail Server With Webmail
No ratings yet
Lesson 23 - Linux Mail Server With Webmail
5 pages
Running Config Vitesse
No ratings yet
Running Config Vitesse
3 pages
Switch Router Specification
No ratings yet
Switch Router Specification
5 pages
EPAR Traditional
No ratings yet
EPAR Traditional
3 pages
Mpls L3 Configuration Steps
No ratings yet
Mpls L3 Configuration Steps
6 pages
SW2
No ratings yet
SW2
6 pages
Tutorial - Collecting Data Using Google Docs Forms
No ratings yet
Tutorial - Collecting Data Using Google Docs Forms
3 pages
Dell FTOS 01 Product Overview
No ratings yet
Dell FTOS 01 Product Overview
27 pages
Model Question Paper: Subject Title: Network Management Time: 3 Hours Subject Code: 10EC303 Maximum Marks: 100
No ratings yet
Model Question Paper: Subject Title: Network Management Time: 3 Hours Subject Code: 10EC303 Maximum Marks: 100
1 page
Overview of MEF 3 and 8
No ratings yet
Overview of MEF 3 and 8
37 pages
Cisco Router As A VPN Server
No ratings yet
Cisco Router As A VPN Server
24 pages
Dns Checklist
No ratings yet
Dns Checklist
2 pages
BIA Cyber Security & Ethical Hacking Detailed Brochure - DHA Phase 5, Lahore
No ratings yet
BIA Cyber Security & Ethical Hacking Detailed Brochure - DHA Phase 5, Lahore
21 pages
Anue Signal Delay Product Brief
No ratings yet
Anue Signal Delay Product Brief
2 pages
Networking Protocols: A Network Protocol
No ratings yet
Networking Protocols: A Network Protocol
2 pages
101 Labs Cisco CCNA Hands On Practical Labs for the 200 301 Implementing and Administering Cisco Solutions Exam 4th Edition by Paul Browning, Farai Tafa 0992823951 978-0992823955 - Read the ebook now or download it for a full experience
100% (5)
101 Labs Cisco CCNA Hands On Practical Labs for the 200 301 Implementing and Administering Cisco Solutions Exam 4th Edition by Paul Browning, Farai Tafa 0992823951 978-0992823955 - Read the ebook now or download it for a full experience
76 pages
Encor Chap 8 Ospf
No ratings yet
Encor Chap 8 Ospf
35 pages
ECE635 Computer Communication & Networks Syllabus
No ratings yet
ECE635 Computer Communication & Networks Syllabus
5 pages
SW Config and Report
No ratings yet
SW Config and Report
5 pages
How To Improve Your Self-Control - PsyBlog
No ratings yet
How To Improve Your Self-Control - PsyBlog
117 pages
EchoLife EG8141A5 Datasheet 04 (R19C20)
No ratings yet
EchoLife EG8141A5 Datasheet 04 (R19C20)
3 pages
Encore ENH908-NWYv3 Manual
No ratings yet
Encore ENH908-NWYv3 Manual
6 pages
List of Temporary Documents: Kista, Sweden
No ratings yet
List of Temporary Documents: Kista, Sweden
3 pages
2.7 - Internet Protocol (IP)
No ratings yet
2.7 - Internet Protocol (IP)
15 pages
Architecture of Roboust Router: BY A.Bhargavi (18C91AD701) Under The Guidance of Mr. P.Jaani (Assistant Professor)
No ratings yet
Architecture of Roboust Router: BY A.Bhargavi (18C91AD701) Under The Guidance of Mr. P.Jaani (Assistant Professor)
10 pages
BRKCCIE-3004 Introduction To MPLS
100% (1)
BRKCCIE-3004 Introduction To MPLS
82 pages
Nokia 7750 SR-s R16 Data Sheet en
No ratings yet
Nokia 7750 SR-s R16 Data Sheet en
7 pages
Release Note
No ratings yet
Release Note
3 pages
Mastering Wireshark - Sample Chapter
100% (1)
Mastering Wireshark - Sample Chapter
31 pages
Network Security Protocols
No ratings yet
Network Security Protocols
3 pages
TVL CSS11 Q4 M14
No ratings yet
TVL CSS11 Q4 M14
11 pages
IEEE Shorthand Identifiers, Such As Include Three Pieces of Information
No ratings yet
IEEE Shorthand Identifiers, Such As Include Three Pieces of Information
24 pages
Questions and Answers - Protocols
No ratings yet
Questions and Answers - Protocols
4 pages
Network Topology Exercise A WTH Answers V1.0-1-1
No ratings yet
Network Topology Exercise A WTH Answers V1.0-1-1
11 pages
IP Active Performance Measurement (SRAN10.1 - 04)
No ratings yet
IP Active Performance Measurement (SRAN10.1 - 04)
64 pages