◆ftpサーバ構築(vsftpd)
[root@localhost ~]# yum -y install vsftpd
Loaded plugins: downloadonly, fastestmirror, refresh-packagekit
Loading mirror speeds from cached hostfile
* fedora: ftp.dti.ad.jp
* updates: ftp.dti.ad.jp
fedora | 2.8 kB 00:00
updates | 3.4 kB 00:00
Setting up Install Process
Resolving Dependencies
There are unfinished transactions remaining. You might consider running yum-complete-transaction first to finish them.
--> Running transaction check
---> Package vsftpd.i386 0:2.0.7-1.fc10 set to be updated
updates/filelists_db | 7.1 MB 00:24
--> Finished Dependency Resolution
Dependencies Resolved
=========================================================================================
Package Arch Version Repository Size
=========================================================================================
Installing:
vsftpd i386 2.0.7-1.fc10 fedora 145 k
Transaction Summary
=========================================================================================
Install 1 Package(s)
Update 0 Package(s)
Remove 0 Package(s)
Total download size: 145 k
Downloading Packages:
vsftpd-2.0.7-1.fc10.i386.rpm | 145 kB 00:00
Running rpm_check_debug
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing : vsftpd-2.0.7-1.fc10.i386 1/1
Installed:
vsftpd.i386 0:2.0.7-1.fc10
Complete!
[root@localhost ~]# cd /etc/vsftpd/
[root@localhost vsftpd]# ls
ftpusers user_list vsftpd.conf vsftpd_conf_migrate.sh
[root@localhost vsftpd]# cp -p vsftpd.conf vsftpd.conf.org
[root@localhost vsftpd]# vi vsftpd.conf
○変更箇所
[root@localhost vsftpd]# diff vsftpd.conf vsftpd.conf.org
12c12
< anonymous_enable=NO
---
> anonymous_enable=YES
51c51
< xferlog_file=/var/log/vsftpd.log
---
> #xferlog_file=/var/log/vsftpd.log
55c55
< xferlog_std_format=NO
---
> xferlog_std_format=YES
80,81c80,81
< ascii_upload_enable=YES
< ascii_download_enable=YES
---
> #ascii_upload_enable=YES
> #ascii_download_enable=YES
84c84
< ftpd_banner=Welcome to blah FTP service.
---
> #ftpd_banner=Welcome to blah FTP service.
95,96c95
< chroot_list_enable=YES
< chroot_local_user=YES
---
> #chroot_list_enable=YES
98c97
< chroot_list_file=/etc/vsftpd/chroot_list
---
> #chroot_list_file=/etc/vsftpd/chroot_list
104c103
< ls_recurse_enable=YES
---
> #ls_recurse_enable=YES
119,129d117
<
< local_root=public_html
< use_localtime=YES
< pasv_addr_resolve=YES
< pasv_address=192.168.11.100
< pasv_min_port=60000
< pasv_max_port=60030
< ssl_enable=YES
< rsa_cert_file=/etc/pki/tls/certs/vsftpd.pem
< force_local_logins_ssl=NO
< force_local_data_ssl=NO
[root@localhost ogura]# cd /etc/pki/tls/certs/
[root@localhost certs]# make vsftpd.pem
umask 77 ; \
PEM1=`/bin/mktemp /tmp/openssl.XXXXXX` ; \
PEM2=`/bin/mktemp /tmp/openssl.XXXXXX` ; \
/usr/bin/openssl req -utf8 -newkey rsa:1024 -keyout $PEM1 -nodes -x509 -days 3650 -out $PEM2 -set_serial 0 ; \
cat $PEM1 > vsftpd.pem ; \
echo "" >> vsftpd.pem ; \
cat $PEM2 >> vsftpd.pem ; \
rm -f $PEM1 $PEM2
Generating a 1024 bit RSA private key
.................................++++++
.....++++++
writing new private key to '/tmp/openssl.L5PXqs'
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [GB]:JP
State or Province Name (full name) [Berkshire]:hoge
Locality Name (eg, city) [Newbury]:hoge
Organization Name (eg, company) [My Company Ltd]:hogehoge
Organizational Unit Name (eg, section) []:hogehoge
Common Name (eg, your name or your server's hostname) []:hogehoge
Email Address []:hogehoge@hogehoge.com
[root@localhost vsftpd]# /etc/rc.d/init.d/vsftpd start
vsftpd 用の vsftpd を起動中: [ OK ]
[root@localhost vsftpd]# chkconfig vsftpd on
[root@localhost vsftpd]# chkconfig --list vsftpd
vsftpd 0:off 1:off 2:on 3:on 4:on 5:on 6:off
今日はこんな感じです。