servers:linux:vsftpd
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| servers:linux:vsftpd [2025/09/11 20:55] – Sean Rhone | servers:linux:vsftpd [2025/09/11 21:45] (current) – Sean Rhone | ||
|---|---|---|---|
| Line 16: | Line 16: | ||
| ====== Firewall ====== | ====== Firewall ====== | ||
| - | sudo firewall-cmd --add-service=' | + | **** |
| - | sudo firewall-cmd --info-service=' | + | sudo firewall-cmd --add-service=' |
| ====== Service ====== | ====== Service ====== | ||
| Line 36: | Line 36: | ||
| anonymous_enable=NO | anonymous_enable=NO | ||
| write_enable=YES | write_enable=YES | ||
| - | |||
| listen=YES | listen=YES | ||
| listen_ipv6=NO | listen_ipv6=NO | ||
| - | |||
| pasv_enable=YES | pasv_enable=YES | ||
| - | local_root=/ | + | local_root=/ |
| force_dot_files=YES | force_dot_files=YES | ||
| # End</ | # End</ | ||
| - | |||
| - | ===== Encryption Support ===== | ||
| - | |||
| - | ==== Generate Certs ==== | ||
| - | |||
| - | * Country: US | ||
| - | * State: PA | ||
| - | * Locality: Charleroi | ||
| - | * Org Name: Realm of Espionage | ||
| - | * Org Unit: NAS | ||
| - | * YOUR Name: x | ||
| - | * Email: x | ||
| - | |||
| - | sudo openssl req -x509 -nodes -days 730 -newkey rsa:2048 -keyout '/ | ||
| - | |||
| - | ==== Enable Encryption ==== | ||
| - | |||
| - | * :!: '' | ||
| - | |||
| - | sudo -e '/ | ||
| - | |||
| - | < | ||
| - | ssl_enable=YES | ||
| - | allow_anon_ssl=NO | ||
| - | force_local_data_ssl=YES | ||
| - | force_local_logins_ssl=YES | ||
| - | require_ssl_reuse=YES | ||
| - | |||
| - | ssl_ciphers=AES128-SHA | ||
| - | ssl_tlsv1=YES | ||
| - | ssl_sslv2=NO | ||
| - | ssl_sslv3=NO | ||
| - | |||
| - | rsa_cert_file=/ | ||
| - | rsa_private_key_file=/ | ||
| ====== fstab ====== | ====== fstab ====== | ||
| - | * [[linux: | + | * [[linux: |
| * [[linux: | * [[linux: | ||
| Line 94: | Line 57: | ||
| ===== fstab ===== | ===== fstab ===== | ||
| - | sudo mkdir -p '/var/ftp/nas1' && sudo -e '/ | + | sudo mkdir -p '/srv/ftp/NAS1' && sudo -e '/ |
| - | sudo mkdir -p '/var/ftp/nas1' '/var/ftp/nas2' && sudo -e '/ | + | sudo mkdir -p '/srv/ftp/NAS1' '/srv/ftp/NAS2' && sudo -e '/ |
| < | < | ||
| # NAS | # NAS | ||
| - | PARTUUID=x /var/ftp/nas1 ext4 defaults, | + | UUID=x /srv/ftp/NAS1 xfs defaults, |
| - | UUID=x /var/ftp/nas2 ntfs defaults, | + | #UUID=x /srv/ftp/NAS2 ntfs defaults, |
| + | |||
| + | # End</ | ||
| sudo systemctl daemon-reload && sudo mount --all && sync | sudo systemctl daemon-reload && sudo mount --all && sync | ||
| ===== Safe Unmount Externals ===== | ===== Safe Unmount Externals ===== | ||
| + | |||
| + | sudo zypper install ' | ||
| sudo udisksctl unmount --force --block-device='/ | sudo udisksctl unmount --force --block-device='/ | ||
| Line 115: | Line 82: | ||
| ===== chown ===== | ===== chown ===== | ||
| - | sudo chown --recursive | + | sudo chown -R ' |
| - | sudo chown --recursive | + | sudo chown -R ' |
| ===== chmod ===== | ===== chmod ===== | ||
| - | sudo chmod --recursive | + | sudo chmod -R '0700' '/srv/ftp/NAS1' && sync |
| - | + | ||
| - | sudo chmod --recursive ' | + | |
| - | + | ||
| - | ===== SELinux ===== | + | |
| - | + | ||
| - | sudo restorecon -F -I -R '/var/ftp/nas1' && sync | + | |
| - | sudo restorecon -F -I -R '/var/ftp/nas2' && sync | + | sudo chmod -R ' |
/srv/www/wiki/data/attic/servers/linux/vsftpd.1757638535.txt.gz · Last modified: by Sean Rhone