Uploaded image for project: 'Product Technical Learning'
  1. Product Technical Learning
  2. PTL-6623

RH254-128, VSFTPD+SSL

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Can't Do
    • Icon: Minor Minor
    • RH254 - RHEL 7 0
    • RH254 - RHEL 7 0
    • RH254
    • None

      URL:
      Reporter RHNID:
      Section: -
      Language:
      Workaround:

      Description: Hi,

      I'm just wondering why vsftpd is now gone in RH254. Since httpd+ssl is covered here, this is just a thought and suggestion that i think its better if we also include vsftpd+ssl instead of a dropbox style.

      Below is the suggested setup and configuration:

      1. yum install vsftpd
      2. vi /etc/vsftpd/vsftpd.conf

      chroot_local_user=YES <-- set this to YES

      – and adding this lines

      allow_writeable_chroot=YES <-- restrict user to own home directory
      userlist_deny=NO <-- this only allow users on /etc/vsftpd/user_list
      ssl_enable=YES
      rsa_cert_file=/etc/pki/tls/certs/serverX.example.com.crt
      rsa_private_key_file=/etc/pki/tls/private/serverX.example.com.key

      1. setsebool -P ftp_home_dir on
      2. systemctl start vsftpd.service
      3. systemctl enable vsftpd.service

      From Desktop Machine:

      1. yum install lftp
      2. lftp student@serverX.example.com
        Password:
        lftp student@serverX.example.com:~> set ssl:verify-certificate no <-- if self-sign cert
        lftp student@serverX.example.com:~> ls

      note: connect to server seems don't support ftp over ssl

      Again, just a suggestion.

      Thanks,
      Paul Magahis

            rht-sbonnevi Steven Bonneville
            paulreynand Paul Magahis (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: