vsftpd + mysql + virtual users

2019独角兽企业重金招聘Python工程师标准>>>

There was nothing Sutra on Monday, decided to write this article, how to raise the working ftp server vsftpd with users in the mysql database with encrypted passwords.OS: FreeBSD-STABLE 6/3 essence of the mechanism: vsftpd deals with pam, pam and communicate with mysql.

 # Cd / usr / ports / FTP / vsftpd /  # make install clean

I put no support for SSL. They put further module pam_mysql.so

 # Cd / usr / ports / Security / pam-mysql  # make install clean

After installation, makes the link

# Ln-sf / usr / local / lib / pam_mysql.so / usr / lib / pam_mysql.so

Put mysql.

 # / Usr/ports/databases/mysql41-server  # make install clean

In / etc / rc.conf add:

mysql_enable = "YES" mysql_limits = "NO" mysql_dbdir = "/ var / db / mysql"

Run mysql

 # / Usr / local / etc / rc.d / mysql-server start

Create a database where to store user names and passwords from users. The owner of the base vsftpd, password ftpdpass

# Mysql-u root

CREATE DATABASE vsftpd; GRANT SELECT , INSERT, UPDATE, DELETE , CREATE , \DROP ON vsftpd .* TO 'vsftpd' @ 'localhost' IDENTIFIED BY 'ftpdpass'; GRANT SELECT , INSERT, UPDATE, DELETE , CREATE , \DROP ON vsftpd .* TO 'vsftpd' @ 'localhost.localdomain' IDENTIFIED BY 'ftpdpass'; FLUSH PRIVILEGES;

Create the table:

USE vsftpd;CREATE TABLE `accounts` ( `ID` INT NOT NULL AUTO_INCREMENT PRIMARY KEY, `Username` VARCHAR ( 30 ) NOT NULL, `Pass` VARCHAR ( 50 ) NOT NULL, UNIQUE ( `Username` ) ) ENGINE = MYISAM; quit ;

Next, the team # adduser create a user with similar data / etc / passwd

vsftpd: *: 1003 : 1003 : User &: / home / vsftpd: / usr / sbin / nologin

Now ftp server configuration: / usr / local / etc / vsftpd.conf

 anonymous_enable=NO local_enable=YES write_enable=YES local_umask=022 anon_upload_enable=NO anon_mkdir_write_enable=NO dirmessage_enable=YES xferlog_enable=YES connect_from_port_20=YES xferlog_file=/var/log/vsftpd.log nopriv_user=vsftpd  chroot_local_user=YES secure_chroot_dir=/usr/local/share/vsftpd/empty listen=YES pasv_min_port=50000 pasv_max_port=50100  pam_service_name=vsftpd guest_enable=YES guest_username=vsftpd local_root=/home/vsftpd/$USER user_sub_token=$USER virtual_use_local_privs=YES user_config_dir=/usr/local/etc/vsftpd_user_conf

Next, create a directory (if honestly I do not understand why he, but it seems sonecessary)

# mkdir /usr/local/etc/vsftpd_user_conf

Create a configuration file vsftpd, pam that would be operated with the FPT server)

# ee /etc/pam.d/vsftpd

 auth required pam_mysql.so user=vsftpd passwd=ftpdpass \host=localhost db=vsftpd table=accounts usercolumn=username passwdcolumn=pass crypt=2 account required pam_mysql.so user=vsftpd passwd=ftpdpass \host=localhost db=vsftpd table=accounts usercolumn=username passwdcolumn=pass crypt=2

In the file / etc / pam.d / vsftpd, make sure that would have been only two lines (the first starts with auth required, second account required), without hyphenation

Add a test user with a login and password secret testuser :

#mysql -u root USE vsftpd; INSERT INTO accounts (username, pass) VALUES('testuser', PASSWORD('secret'));quit;

And a little more user rights to directories:

mkdir /home/vsftpd/testuserchown vsftpd:nogroup /home/vsftpd/testuser

Create a FTP server zagruzochnik:

# ee /usr/local/etc/rc.d/vsftpd.sh

#!/bin/sh  echo 'vsftpd starting...' /usr/local/libexec/vsftpd &

Run:

 #/usr/local/etc/rc.d/vsftpd.sh

Or you can reboot ...

PS:As I always use a firewall pf, add in / etc / pf.conf rules for ftp server:

pass in on $ext_if inet proto tcp from any port 1024:65535 to \ ваш.ip.адрес port 21 flags S/SA keep state pass in on $ext_if inet proto tcp from any port 1024:65535 to \ ваш.ip.адрес port 50000:50100 flags S/SA keep state

lines

pasv_min_port=50000 pasv_max_port=50100

in / usr / local / etc / vsftpd.conf mean that the ports are opened with 50,000 to 50,100for passive mode FTP server and can only be a maximum 100 concurrent session.

pss: User can start with a regular and phpmyadmin

Very useful: Read the original article - it was written for linupsa Dibivan :

pass in on $ext_if inet proto tcp from any port 1024:65535 to \ ваш.ip.адрес port 21 flags S/SA keep state pass in on $ext_if inet proto tcp from any port 1024:65535 to \ ваш.ip.адрес port 50000:50100 flags S/SA keep state

lines

pasv_min_port=50000 pasv_max_port=50100

in / usr / local / etc / vsftpd.conf mean that the ports are opened with 50,000 to 50,100for passive mode FTP server and can only be a maximum 100 concurrent session.

pss: User can start with a regular and phpmyadmin

Very useful: Read the original article - it was written for linupsa Dibivan

http://www.howtoforge.com/vsftpd_mysql_debian_etch

转载于:https://my.oschina.net/u/187928/blog/33893

vsftpd + mysql + virtual users相关推荐

mysql virtual 关键字_MySQL5.7 virtual关键字
本机调试保存数据时报错: Hibernate: /* insert com.kyhtech.health.entity.bbs.Comment */ insert into co_comment (c ...
mysql virtual 关键字_C# virtual关键字详解
C# virtual 是虚拟的含义,在 C# 语言中,默认情况下类中的成员都是非虚拟的,通常将类中的成员定义成虚拟的,表示这些成员将会在继承后重写其中的内容. virtual 关键字能修饰方法.属性. ...
Samba+Vsftpd+Mysql搭建平台实验
转载于:https://blog.51cto.com/firerat/486898
vsftpd+pam+mysql实现ftp构建
一.安装所需要程序 1.事先安装好开发环境和mysql数据库; 首先配置好yum的server.repo文件 [root@localhost yum.repos.d]# cd [root@localh ...
centos vsftp mysql_CentOS6.4 实现基于mysql的vsftpd
大纲一.安装所需要的软件包二.创建虚拟用户账号三.配置vsftpd 四.启动vsftpd服务并查看五.关闭防火墙与SElinux 六.配置虚拟用户有不同的访问权限一.安装所需要的软件包 1. ...
vsftpd pam mysql_vsftpd+mysql+pam实现基于数据库的安全的ftp服务
1.方案分析 mysql:存储用户信息的,可以放vsftpd用户的信息 pam:可插入用户认证模块 VSFTPD:安全的ftp服务 2涉及到的知识点: vsftp 软件安装.启动服务,监听端口,配置文 ...
FTP服务学习笔记之基于MySQL+PAM的vsftpd虚拟用户
基于mysql+PAM的vsftpd虚拟用户配置一.实验说明操作系统:Redhat5.8_X64bit 实验平台:VMware Workstation 所需要的软件包:pam_mysql-0.7R ...
vsftpd+pam_mysql+mysql
vsftpd+pam_mysql+mysql RH5.0enterprise上实现,转载marion的异样足迹. 一.安装相关软件包 mysql-5.0.41 pam_mysql-0.7RC1 vsf ...
mysql pam 配置_pam_mysql 安装配置总结 (结合vsftpd)
前一段时间,论坛里总有朋友问到pam-mysql的安装问题.比较典型的有: vsftp1.2+mysql4.1+pam_mysql0.5在RedHat AS4(32bit)下好像是有bug 还是mys ...

vsftpd + mysql + virtual users

vsftpd + mysql + virtual users相关推荐

最新文章

热门文章