![]() ![]() Update your Amazon AWS Firewall settings. Amazon AWS servers use internal IP addresses starting with "10." for most things, and you will need to explicitly define this IP address for your FTP software to be able to communicate. These commands will allow most programs, like FileZilla, to connect via FTP passive mode to the server. ![]() Sudo bash -c 'echo "YOURIPHERE" > ForcePassiveIP' Sudo bash -c 'echo "35000 36000" > PassivePortRange' Note that echo will not properly be able to edit a file unless you are in a sudo shell, which is why we use "sudo bash -c". If using the default UBUNTU server, use the following. If installing on an AWS server, you will need to configure IP address routing information specific to your server. sudo chmod 600 /etc/ssl/private/pure-ftpd.pemĪnd now you need to restart Pure-FTPd /etc/init.d/pure-ftpd restart You must secure the certificate before it can be used by changing file permissions. SSL certificates are inherently insecure if other users can read them. ![]() Make a private SSL key sudo mkdir -p /etc/ssl/private/Ĭreate your key sudo openssl req -x509 -nodes -days 7300 -newkey rsa:2048 -keyout /etc/ssl/private/pure-ftpd.pem -out /etc/ssl/private/pure-ftpd.pem Or for a less secure version that also accepts insecure FTP connections sudo echo 1 > /etc/pure-ftpd/conf/TLS Add TLS support to prevent your sessions from being vulnerable to man-in-the-middle-attacks sudo apt-get install opensslĮnable TLS only mode in Pure-FTPd sudo echo 2 > /etc/pure-ftpd/conf/TLS sudo /etc/init.d/pure-ftpd restartįTP is by nature a rather unsecure protocol. You may need to restart PureFTPD before changes take effect. The user joe is used as an example, you can change user joe and/or add or remove other users through pureadmin. gksudo pureadmin and stop firestarter if it is installed. The owner must be ftpuser while Group must be ftpgroup sudo chown -hR ftpuser:ftpgroup /home/ftpusers/Īfter doing that open up pureadmin in the terminal. Next you need to modify the permissions of /home/ftpusers directory and of any other subdirectories. Then sudo ln -s /etc/pure-ftpd/pureftpd.passwd /etc/pureftpd.passwdĪnd sudo ln -s /etc/pure-ftpd/pureftpd.pdb /etc/pureftpd.pdbĪnd sudo ln -s /etc/pure-ftpd/conf/PureDB /etc/pure-ftpd/auth/PureDB which will create symbolic links between the respective files. Then to create you user database sudo pure-pw mkdb Then to add user joe sudo pure-pw useradd joe -u ftpuser -d /home/ftpusers/joe Then to create a user directory for joe sudo mkdir /home/ftpusers/joe (you can create a directory for each ftp user) Next create your ftpuser directory sudo mkdir /home/ftpusers sudo groupadd ftpgroupĪnd sudo useradd -g ftpgroup -d /dev/null -s /etc ftpuser in the terminal. Install the pure-ftpd package and the pureadmin package from the Universe Repository. Pure-FTPD + pureadmin (Ftp server with gui) ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |