搭建FTP服务器
1.下载vsftpd来构建FTP服务
#yum install -y vsftpd
2.开启vsftpd服务
#systemctl start vsftpd
3.设置开机自启动
#systemctl enable vsftpd
4.关闭防火墙
#systemctl stop firewalld.service
5.设置permissive模式
#setenforce 0
6.备份vsftpd.conf文件
#cp /etc/vsftpd/vsftpd.conf /etc/vsftpd/vsftpd.conf.bak1
7.编辑vsftpd.conf
#vi /etc/vsftpd/vsftpd.conf
改为:
write_enable=YES #Default umask for local users is 077. You may wish to change this to 022,if your users expect that (022 is used by most other ftpd's)
anon_umask=022 #Uncomment this to allow the anonymous FTP user to upload files. This only has an effect if the above global write enable is activated. Also, you will obviously need to create a directory writable by the FTP user.
When SELinux is enforcing check for SE bool allow_ftpd_anon_write, allow_ftpd_full_access
anon_upload_enable=YES #Uncomment this if you want the anonymous FTP user to be able to create new directories.
anon_mkdir_write_enable=YES #Activate directory messages - messages given to remote users when they go into a certain directory.
dirmessage_enable=YES #Activate logging of uploads/downloads.
xferlog_enable=YES #Make sure PORT transfer connections originate from port 20 (ftp-data).
connect_from_port_20=YES
8.重载FTP服务
#systemctl restart vsftpd
9.打开FileZilla软件
操作如下:输入服务机IP地址
就可以显示如下界面
构建内部FTP环境
1.创建用户
1.创建用于FTP虚拟账号服务的操作系统用户,并禁止该用户登录操作系统
#useradd -g ftp -d /home/vsftpd -s /sbin/nologin vsftpd
2.创建并编辑/etc/vsftpd/vuser_passwd.conf文件
#vi /etc/vsftpd/vuser_passwd.conf
配置如下
#账号
#密码
admin01 admin01@pwd admin02 admin02@pwd market01 market01@pwd market02 market02@pwd market03 market03@pwd design01 design01@pwd design02 design02@pwd develop01 develop01@pwd develop02 develop02@pwd
3.通过db_load命令将文件转化为系统可识别用户文件
#db_load -T -t hash -f /etc/vsftpd/vuser_passwd.conf /etc/vsftpd/vuser_passwd.db
4.配置PAM模块,创建文件加入两行代码将其他代码注释掉
#vi /etc/pam.d/vsftpd
代码:auth required pam_userdb.so db=/etc/vsftpd/vuser_passwd.conf
account required pam_userdb.so db=/etc/vsftpd/vuser_passwd.conf
2.创建共享目录
mkdir -p /srv/ftp/admin
mkdir -p /srv/ftp/market
mkdir -p /srv/ftp/design
mkdir -p /srv/ftp/develop
3.赋予777权限
chmod -R 777 /srv/ftp/admin
chmod -R 777 /srv/ftp/market
chmod -R 777 /srv/ftp/design
chmod -R 777 /srv/ftp/develop
chown -R ftp:ftp /srv/ftp
4.查看目录信息
ls -l /srv/ftp
如下
5配置vsftpd全局配置
1.删除/etc/vsftpd/vsftpd.conf配置
#mv /etc/vsftpd/vsftpd.conf /etc/vsftpd/vsftpd.conf.bak1
2.编辑/etc/vsftpd/vsftpd.conf
vi /etc/vsftpd/vsftpd.conf
配置:
ftpd_banner=Welecome to FTP Service. anonymous_enable=NO local_enable=YES write_enable=YES local_umask=022 anon_upload_enable=NO anon_mkdir_write_enable=NO dirmessage_enable=YES xferlog_enable=YES connect_from_port_20=YES chown_uploads=NO xferlog_file=/var/log/xferlog xferlog_std_format=YES #nopriv_user=vsftpd async_abor_enable=YES ascii_upload_enable=YES ascii_download_enable=YES chroot_local_user=YES chroot_list_enable=YES chroot_list_file=/etc/vsftpd/chroot_list chroot_list_enable=YES listen=YES pam_service_name=vsftpd userlist_enable=YES guest_enable=YES guest_username=vsftpd virtual_use_local_privs=YES user_config_dir=/etc/vsftpd/vsftpd_user_conf allow_writeable_chroot=YES
3.创建/etc/vsftpd/chroot_list文件
加入代码:vsftpd
1.创建虚拟用户配置目录
#mkdir -p /etc/vsftpd/vsftpd_user_conf
#vi /etc/vsftpd/vsftpd_user_conf/admin01
配置如下
fipd_banner=Welcome toAdmin. local_root=/srv/ftp/admin write_enable=YES anon _umask=022 anon_world_readable_only=NO anon_upload_enable=YES anon_mkdir_write_enable=YES anon_other_write_enable=YES
根据用户多少配置/etc/vsftpd/vsftpd_user_conf/文件
7.配置市场部用户权限
1.编辑文件
#vi /etc/vsftpd/vsftpd_user_conf/market
配置如下
fipd_banner=Welcome to Market local_root=/srv/ftp/market write_enable=YES anon _umask=022 anon_world_readable_only=NO anon_upload_enable=YES anon_mkdir_write_enable=YES anon_other_write_enable=YES
根据用户多少配置/etc/vsftpd/vsftpd_user_conf/文件
8.配置设计部用户权限
1.vi /etc/vsftpd/vsftpd_user_conf/design01
配置如下
fipd_banner=Welcome to Design local_root=/srv/ftp/design write_enable=YES anon _umask=022 anon_world_readable_only=NO anon_upload_enable=YES anon_mkdir_write_enable=YES anon_other_write_enable=YES
根据用户多少配置/etc/vsftpd/vsftpd_user_conf/文件
9.配置开发部用户权限
1.vi /etc/vsftpd/vsftpd_user_conf/develop01
配置如下
fipd_banner=Welcome to Design local_root=/srv/ftp/design write_enable=YES anon _umask=022 anon_world_readable_only=NO anon_upload_enable=YES anon_mkdir_write_enable=YES anon_other_write_enable=YES
然后通过FileZilla软件查看