Scribd Logo
Upload

Welcome to Scribd!

  • 26 views

    Instalación Y Configuración Del Servidor FTP Proftpd: Apt-Get Install Proftpd

    Uploaded by

    cefer419417
    1. Install the ProFTPD FTP server on Linux and configure it to run as a standalone service. 2. Create an FTP user account and assign it to the ftp group with restricted shell access. 3. Configure ProFTPD's configuration file to specify the FTP home directory, restrict write access to the upload folder only, and log transfers.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    Instalación Y Configuración Del Servidor FTP Proftpd: Apt-Get Install Proftpd

    Uploaded by

    cefer419417
    26 views3 pages
    1. Install the ProFTPD FTP server on Linux and configure it to run as a standalone service. 2. Create an FTP user account and assign it to the ftp group with restricted shell access. 3. Configure ProFTPD's configuration file to specify the FTP home directory, restrict write access to the upload folder only, and log transfers.

    Original Description:

    Original Title

    Configuracion FTP

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    1. Install the ProFTPD FTP server on Linux and configure it to run as a standalone service. 2. Create an FTP user account and assign it to the ftp group with restricted shell access. 3. Configure ProFTPD's configuration file to specify the FTP home directory, restrict write access to the upload folder only, and log transfers.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    26 views3 pages

    Instalación Y Configuración Del Servidor FTP Proftpd: Apt-Get Install Proftpd

    Uploaded by

    cefer419417
    1. Install the ProFTPD FTP server on Linux and configure it to run as a standalone service. 2. Create an FTP user account and assign it to the ftp group with restricted shell access. 3. Configure ProFTPD's configuration file to specify the FTP home directory, restrict write access to the upload folder only, and log transfers.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    of 3

    INSTALACIÓN Y CONFIGURACIÓN DEL SERVIDOR FTP PROFTPD

    1.- Instalar el servicio en el servidor Linux


    apt-get install proftpd

    2.- Cuando nos pregunte qué tipo de servidor requerimos escogemos la opción standalone o
    independiente

    3.- Creamos el usuario ftp con el comando:


    useradd ftp

    4.- Si nos pide el password del usuario se lo colocamos el que quieramos, de lo contrario cuando
    termine de crear el usuario se lo asignamos con el comando:
    passwd ftp

    5.- Con esto debio haber creado el home de usuario en /home/ftp, de lo contrario crear su home
    de usuario y ligarlo al usuario mismo

    6.- Creamos los directorios de carga y descarga en /home/ftp/

    mkdir /home/ftp/upload
    mkdir /home/ftp/download

    cd /home/ftp
    chmod a+rw -R upload
    chmod 755 -R download

    7.- Se configura el archivo /etc/proftpd.conf con vi quedando de la siguiente forma:


    #
    # /etc/proftpd.conf -- This is a basic ProFTPD configuration file.
    # To really apply changes reload proftpd after modifications.
    #

    ServerName "Debian"
    ServerType standalone
    DeferWelcome off

    MultilineRFC2228 on
    DefaultServer on
    ShowSymlinks off

    TimeoutNoTransfer 600
    TimeoutStalled 600
    TimeoutIdle 1200

    DisplayLogin welcome.msg
    DisplayFirstChdir .message
    ListOptions "-l"

    DenyFilter \*.*/
    # Uncomment this if you are using NIS or LDAP to retrieve passwords:
    #PersistentPasswd off

    # Uncomment this if you would use TLS module:


    #TLSEngine on

    # Uncomment this if you would use quota module:


    #Quotas on

    # Uncomment this if you would use ratio module:


    #Ratios on

    # Port 21 is the standard FTP port.


    Port 250

    # To prevent DoS attacks, set the maximum number of child processes


    # to 30. If you need to allow more than 30 concurrent connections
    # at once, simply increase this value. Note that this ONLY works
    # in standalone mode, in inetd mode you should use an inetd server
    # that allows you to limit maximum number of processes per service
    # (such as xinetd)
    MaxInstances 30

    # Set the user and group that the server normally runs at.
    User ftp
    Group nogroup

    # Umask 022 is a good standard umask to prevent new files and dirs
    # (second parm) from being group and world writable.
    Umask 022 022
    # Normally, we want files to be overwriteable.
    AllowOverwrite on

    # Delay engine reduces impact of the so-called Timing Attack described in


    # http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02
    # It is on by default.
    #DelayEngine off

    DefaultRoot /home/ftp
    TransferLog /var/log/proftpd/xferlog
    SystemLog /var/log/proftpd/proftpd.log

    <Directory /home/ftp>
    <Limit WRITE>
    DenyAll
    </Limit>
    </Directory>

    # indico que el directorio download es de solo lectura

    <Directory /home/ftp/download>
    Umask 774
    <Limit READ>
    AllowAll
    </Limit>
    </Directory>
    # indico que el directorio upload es de lectura y escritura

    <Directory /home/ftp/upload>
    Umask 077
    AllowOverwrite off
    <Limit READ>
    DenyAll
    </Limit>
    <Limit WRITE CWD>
    AllowAll
    </Limit>
    </Directory>

    La parte más importante de este archivo de configuración es lo que se marca de color rojo.

    8.- Se edita el archivo /etc/passwd para cambiar el profile del usuario FTP, que quede de la
    siguiente manera: /home/ftp:/bin/false , esto con la finalidad de que el usuario ftp no puede
    entrar en el bash de Linux.
    Nota: es en teoría, porque si se coloca así no entra el servidor

    9.- Se reinicia el servicio d ftp con el comando:


    /etc/init.d/proftpd restart

    10.- se procede a probar el servidor ftp.

    NOTAS ADICIONALES: En esta experiencia con proftpd se tuvieron problemas de conexión cuando
    se deja el puerto por default (21), por lo cual se cambio el puerto al 250 que en teoría es el que
    nosotros decidamos, puedes comprobarlo en el archivo de configuración.

    Ejemplo de conexión:

    Linux línea de comandos


    ftp 192.168.1.2 250

    Windows (explorador de Windows)


    ftp://192.168.1.2:250

    You might also like