购物网站建设图标大全,wordpress 注册地址,上传图片的网站要怎么做,黄页网站推广app软件安装vsftpdyum -y install vsftpd添加FTP用户方式1、添加只允许通过ftp访问的用户useradd -d /home/ftp ftp_user #-d指定用户登录时的启始目录方式2、允许用户登录操作系统usermod -d /home/ftp -s /bin/bash ftp_user #-s指定用户登入后所使用的shell设置用户登录密码passwd …安装vsftpdyum -y install vsftpd添加FTP用户方式1、添加只允许通过ftp访问的用户useradd -d /home/ftp ftp_user #-d指定用户登录时的启始目录方式2、允许用户登录操作系统usermod -d /home/ftp -s /bin/bash ftp_user #-s指定用户登入后所使用的shell设置用户登录密码passwd ftp_pwd修改配置文件文件位置/etc/vsftpd/vsftpd.conf,修改时注意用户权限# Allow anonymous FTP? (Beware - allowed by default if you comment this out).
anonymous_enableNO #是否允许匿名登录
# Uncomment this to allow local users to log in.
# When SELinux is enforcing check for SE bool ftp_home_dir
local_enableYES #是否允许本地用户登录
#
# Uncomment this to enable any form of FTP write command.
write_enableYES #是有有写权限# You may specify an explicit list of local users to chroot() to their home
# directory. If chroot_local_user is YES, then this list becomes a list of
# users to NOT chroot().
# (Warning! chrooting can be very dangerous. If using chroot, make sure that
# the user does not have write access to the top level directory within the
# chroot)
# 多数情况下希望限制ftp用户只能在其主目录下活动需要配置如下三个属性
chroot_local_userYES #默认值NO,是否将所有用户限制在主目录当为NO时ftp用户可以向上切换目录
chroot_list_enableYES #是否启用例外用户名单
# (default follows)
chroot_list_file/etc/vsftpd/chroot_list #例外用户名单限制主目录属性跟chroot_local_user相反# You may activate the -R option to the builtin ls. This is disabled by
# default to avoid remote users being able to cause excessive I/O on large
# sites. However, some broken FTP clients such as ncftp and mirror assume
# the presence of the -R option, so there is a strong case for enabling it.
#ls_recurse_enableYES
#
# When listen directive is enabled, vsftpd runs in standalone mode and
# listens on IPv4 sockets. This directive cannot be used in conjunction
# with the listen_ipv6 directive.
listenYES
#
# This directive enables listening on IPv6 sockets. By default, listening
# on the IPv6 any address (::) will accept connections from both IPv6
# and IPv4 clients. It is not necessary to listen on *both* IPv4 and IPv6
# sockets. If you want that (perhaps because you want to listen on specific
# addresses) then you must run two copies of vsftpd with two configuration
# files.
# Make sure, that one of the listen options is commented !!#IPv4和IPv6只能监听其中之一listen_ipv6NOuserlist_enableYES # 开启“名单列表”限制功能
userlist_denyNO # 设置“名单列表”为“白名单”仅指定列表中的用户允许使用FTP登录
userlist_file/etc/vsftpd/user_list # “名单列表”对应的文件pasv_min_port30001 #传输端口
pasv_max_port31000 #传输端口主动模式与被动模式主动模式-连接过程客户端与服务器的21端口建立连接客户端开放一个随机高位端口端口1024以上用于接收数据客户端发送PORT主动模式命令给服务器21端口其中PORT命令包括客户端用于接收数据的端口号服务器通过20端口和客户端的新开放端口进行连接并给客户端发送数据被动模式-连接过程客户端与服务器的21端口建立连接客户端发送PASV被动模式命令给服务器21端口服务器打开一个随机高位端口用于传输数据1024以上并通知客户端客户端连接到服务器新开放的端口进行数据传输由于linux服务器有防火墙限制被动模式时传输端口不确定导致防火墙开放端口不确定所以在配置中指定被动模式时端口上下限然后配置防火墙规则iptables -I INPUT -p tcp --dport 30001:31000 -j ACCEPT
iptables -I OUTPUT -p tcp --dport 30001:31000 -j ACCEPT配置被动模式可以直接方便通过ftp客户端软件连接。好用的linux问题网站https://unix.stackexchange.com/补充问题2023-03-25ftp时报错421 Service not available解决方案/etc/hosts.allow中添加允许访问的vsftpd:xxx.xxx.xxx.xxx
