{"id":378,"date":"2013-08-01T11:59:26","date_gmt":"2013-08-01T03:59:26","guid":{"rendered":"http:\/\/www.shuran.cn\/?p=378"},"modified":"2013-08-01T11:59:26","modified_gmt":"2013-08-01T03:59:26","slug":"linxu-%e4%b8%8bvsftp%e8%ae%be%e7%bd%ae%e8%99%9a%e6%8b%9f%e7%94%a8%e6%88%b7%e3%80%81%e7%94%a8%e6%88%b7%e6%9d%83%e9%99%90%e3%80%81%e7%ad%89%e6%b3%a8%e6%84%8f%e9%97%ae%e9%a2%98","status":"publish","type":"post","link":"https:\/\/www.shuran.cn\/?p=378","title":{"rendered":"Linxu \u4e0bvsftp\u8bbe\u7f6e\u865a\u62df\u7528\u6237\u3001\u7528\u6237\u6743\u9650\u3001\u7b49\u6ce8\u610f\u95ee\u9898"},"content":{"rendered":"<p>\u7f51\u4e0a\u6559\u7a0b\u5f88\u591a\uff0c\u914d\u7f6e\u5b8c\u6210\u4e4b\u540e\u5374\u53d1\u73b0\u65e0\u6cd5\u767b\u9646\u3002<\/p>\n<p><strong>\u7b2c\u4e00\u3001\u95ee\u9898\u51fa\u5728Pam\u8ba4\u8bc1\u73af\u8282\uff0c\u6240\u4ee5<\/strong><\/p>\n<blockquote><p>\u914d\u7f6e\u597d\u865a\u62df\u7528\u6237\u53d1\u73b0\u7528ftp\u5ba2\u6237\u7aef\u767b\u5f55\u62a5530 Login incorrec\u9519\u8bef\uff0c\u7f51\u4e0a\u67e5\u4e86\u4e00\u4f1a\uff0c\u95ee\u9898\u5b9a\u4f4d\u4e3apam\u8ba4\u8bc1\u914d\u7f6e\u5f97\u4e0d\u6b63\u786e\uff0c\u5c06pam_userdb.so\u6307\u5b9a\u8def\u5f84\u6539\u4e3a\u76f8\u5bf9\u8def\u5f84\u95ee\u9898\u5f97\u4ee5\u89e3\u51b3\u3002<\/p>\n<p>auth required \/lib\/security\/pam_userdb.so db=\/etc\/vsftpd\/ftpusr<br \/>\naccount required \/lib\/security\/pam_userdb.so\u00a0db=\/etc\/vsftpd\/ftpusr<\/p>\n<p>\u6539\u4e3a\uff1a<\/p>\n<p>auth required pam_userdb.so db=\/etc\/vsftpd\/ftpusr<\/p>\n<p>account required pam_userdb.so db=\/etc\/vsftpd\/ftpusr<\/p><\/blockquote>\n<p><strong>\u7b2c\u4e8c\u3001\u53e6\u5916FTP \u7528\u6237\u4e0a\u4f20\u4e8eweb\u7528\u6237\u6743\u9650\u4e0d\u7edf\u4e00<\/strong>\uff0c\u600e\u4e48\u529e\uff1f \u8bb0\u5f97web\u7528\u6237\u4e5f\u662f\u4e00\u4e2a\u4e0d\u80fdssh\u767b\u5f55\u7684\u7528\u6237\u5427\uff0c\u90a3\u4e48\u597d<\/p>\n<p>\u628aftp\u7684\u4e13\u5c5e\u7528\u6237\u6539\u4e3aweb\u7528\u6237\u5427<\/p>\n<blockquote><p>\u5373\uff1a<\/p>\n<p>vi \/etc\/vsftpd\/vsftpd.conf<\/p>\n<p>\uff03\u542f\u7528\u865a\u62df\u7528\u6237<\/p>\n<p>#guest_username=ftp_virt \u00a0---\u6539\u4e3aweb\u7528\u6237www<\/p>\n<p>guest_username=www<\/p>\n<p>\u91cd\u542fvsftp\u670d\u52a1<\/p><\/blockquote>\n<p><strong>\u7b2c\u4e09\u3001\u80fd\u4e0a\u4f20\u4e0d\u80fd\u4e0b\u8f7d\uff0c\u7ed3\u679c\u53d1\u73b0\u7528\u6237\u6743\u9650\u914d\u7f6e\u6587\u4ef6YES\u548cNO\u533a\u5206\u5927\u5c0f\u5199\u3002\u6c57\u989c\uff01<\/strong><\/p>\n<blockquote><p>#download_enable=Yes \u00a0\u9519\u4e86\u54e6<\/p>\n<p>download_enable=YES<\/p><\/blockquote>\n<p><strong>\u7b2c\u56db\u3001\u9644\u52a0\u7f51\u4e0a\u7684\u914d\u7f6e\u65b9\u5f0f<\/strong><\/p>\n<blockquote><p>VSFTP<\/p>\n<p>\u865a\u62df\u7528\u6237\u521b\u5efa\u65b9\u6cd5<\/p>\n<p>yum -y install vsftpd*<\/p>\n<p>yum -y install pam*<\/p>\n<p>yum -y install db4*<\/p>\n<p>\u4e00\u3001\u5efa\u7acb\u4e00\u4e2a\u5b58\u653e\u7528\u6237\u540d\u548c\u5bc6\u7801\u7684\u6587\u4ef6vi mima.txt (\u8bb0\u4f4f\u8def\u5f84\uff0c\u540e\u9762\u8981\u7528\u7684\u7740)<\/p>\n<p>\u5728\u6587\u4ef6\u91cc\u8f93\u5165<\/p>\n<p>\u7528\u6237\u540d\u4e00<\/p>\n<p>\u5bc6\u7801\u4e00<\/p>\n<p>\u7528\u6237\u540d\u4e8c<\/p>\n<p>\u5bc6\u7801\u4e8c<\/p>\n<p>\u7528\u6237\u540d\u4e09<\/p>\n<p>\u5bc6\u7801\u4e09<\/p>\n<p>\u4fdd\u5b58<\/p>\n<p>\u4e8c\u3001\u751f\u6210\u865a\u62df\u7528\u6237\u5e10\u6237\u6570\u636e\u5e93<\/p>\n<p>db_load -T -t hash -f \/etc\/vsftpd\/mima.txt \/etc\/vsftpd\/vsftpd_login.db<\/p>\n<p>\u751f\u6210\u80fd\u88abpam.d\u8ba4\u8bc6\u7684\u6570\u636e\u5e93vsftpd_login.db<\/p>\n<p>mima.txt<\/p>\n<p>\u662f\u524d\u9762\u5efa\u7acb\u7684\u90a3\u4e2a\u6587\u4ef6\uff0c<\/p>\n<p>vsftpd_login.db\u53ef\u81ea\u5df1\u547d\u540d\u7136\u540e\u8bb0\u597d\u3002\u5982\u679c\u4ee5\u540e\u8981\u66f4\u6539<\/p>\n<p>mima.txt\u91cc\u7684\u7528\u6237\u540d\u7684\u5bc6\u7801\uff0c\u91cd\u65b0\u6267\u884c\u4e0a\u9762\u547d\u4ee4\u624d\u80fd\u751f\u6548\u3002<\/p>\n<p>chmod 600 \/etc\/vsftpd\/vsftpd_login.db<\/p>\n<p>\u66f4\u6539\u6743\u9650\u53ea\u6709ROOT\u7528\u6237\u624d\u80fd\u8bfb\u5199<\/p>\n<p>\u4e09\u3001\u5728pam.d\u4e0b\u5efa\u7acb\u4e00\u4e2a\u6587\u4ef6vsftpd_login(\u53ef\u81ea\u5df1\u547d\u540d\uff0c\u4f46\u8981\u8bb0\u4f4f)<\/p>\n<p>\u8f93\u5165\u4ee5\u4e0b\u5185\u5bb9\u7136\u540e\u4fdd\u5b58<\/p>\n<p>auth required \/lib\/security\/pam_userdb.so db=\/etc\/vsftpd\/vsftpd_login<\/p>\n<p>account required \/lib\/security\/pam_userdb.so db=\/etc\/vsftpd\/vsftpd_login<\/p>\n<p>#\u8fd9\u91cc\u7684vsftpd_login\u4e3a\u4e4b\u524d\u5efa\u7acb\u7684\u6570\u636e\u5e93\u6587\u4ef6vsftpd_login.db<\/p>\n<p>\u5728\u8fd9\u91cc\u9762\u628a.db\u53bb\u6389<\/p>\n<p>\u56db\u3001\u521b\u5efa\u4e00\u4e2a\u53ebftp_virt\u7684\u7528\u6237\uff0c\u5b83\u7684\u4e3b\u76ee\u5f55\u4e3a\/home\/ftpsite\u4e14\u4e0d\u80fd\u767b\u9646\u7cfb\u7edf<\/p>\n<p>useradd -d \/home\/ftpsite -s \/nologin ftp_virt<\/p>\n<p>chmod 777 \/home\/ftpsite\/ #<\/p>\n<p>\u66f4\u6539\u5c5e\u6027<\/p>\n<p>\u4e94\u3001\u4fee\u6539\u914d\u5236\u6587\u4ef6visftpd.conf<\/p>\n<p>vi \/etc\/vsftpd\/vsftpd.conf<\/p>\n<p>\u5728\u540e\u9762\u6dfb\u52a0<\/p>\n<p>guest_enable=YES<\/p>\n<p>\uff03\u542f\u7528\u865a\u62df\u7528\u6237<\/p>\n<p>guest_username=ftp_virt<\/p>\n<p>#<\/p>\n<p>\u6240\u6709\u865a\u62df\u7528\u6237\u6240\u5bf9\u5e94\u7cfb\u7edf\u8d34\u662fftp_virt\u4e4b\u524d\u5efa\u7acb\u7684\u90a3\u4e2a\u3002<\/p>\n<p>pam_service_name=vsftpd_login<\/p>\n<p>\uff03\u8c03\u7528\u4e4b\u524d\u5efa\u7acb\u5728pam.d\u4e0b\u7684vsftpd_login\u6587\u4ef6\uff0c\u8bfb\u53d6\u7528\u6237\u7684\u4fe1\u606f\u4fdd\u5b58\u3001\u91cd\u542fVSFTP\u5c31\u884c\u3002<\/p>\n<p>\u865a\u62df\u7528\u6237\u7684\u6dfb\u52a0\u548c\u4e3a\u4e0d\u540c\u7528\u6237\u6307\u5b9a\u4e0d\u540c\u76ee\u5f55\u3002<\/p>\n<p>\u5148\u5728\u914d\u5236\u6587\u4ef6\u4e0b\u6dfb\u52a0\u8fd9\u4ee3\u7801\uff1a<\/p>\n<p>user_config_dir=\/etc\/vsftpd\/user.d<\/p>\n<p>\u7136\u540e\u5728\/etc\/vsftpd\/<\/p>\n<p>\u5efa\u7acbuser.d\u6587\u4ef6\u5939\u4e4b\u540e\u5728\u6587\u4ef6\u5939\u91cc\u4ee5mima.txt\u7528\u6237\u540d\u4e3a\u51c6\u65b0\u5efa\u548c\u7528\u6237\u540d\u540c\u540d\u7684\u6587\u4ef6<\/p>\n<p>vi \/etc\/vsftpd\/user.d\/\u7528\u6237\u540d\u4e00<\/p>\n<p>\u4e4b\u540e\u5728\u6587\u4ef6\u91cc\u9762\u8f93\u5165\u5982\u4e0b\u4ee3\u7801\uff1a<\/p>\n<p>#\/etc\/vsftpd\/user.d\/\u7528\u6237\u540d\u4e00<\/p>\n<p>local_root=\/home\/wuxiufeng\/wxf<\/p>\n<p>#End<\/p>\n<p>\u4e3a\u7528\u6237\u540d\u4e00\u6307\u5b9a\u4e3b\u76ee\u5f55\u4e3ahome\/wuxiufeng\/wxf<\/p>\n<p>\u7ed9\u7528\u6237\u8bbe\u7f6e\u6743\u9650<\/p>\n<p># vi\u00a0\/etc\/vsftpd\/user.d\/\u7528\u6237\u540d\u4e00<\/p>\n<p>\u6240\u6709\u6743\u9650<\/p>\n<p>write_enable=YES<\/p>\n<p>anonymous_enable=NO<\/p>\n<p>anon_world_readable_only=NO<\/p>\n<p>anon_upload_enable=YES<\/p>\n<p>anon_mkdir_write_enable=YES<\/p>\n<p>anon_other_write_enable=YES<\/p>\n<p>local_umask=022<\/p>\n<p>download_enable=Yes<\/p>\n<p>local_root=\/tools<\/p>\n<p># vi\/etc\/vsftpd\/user.d\/\u7528\u6237\u540d\u4e8c<\/p>\n<p>\u4e0a\u4f20\u6743\u9650<\/p>\n<p>write_enable=YES<\/p>\n<p>anon_world_readable_only=NO<\/p>\n<p>anon_upload_enable=YES<\/p>\n<p>anon_mkdir_write_enable=YES<\/p>\n<p>anon_other_write_enable=YES<\/p>\n<p>local_umask=022<\/p>\n<p>download_enable=NO<\/p>\n<p>local_root=\/data<\/p>\n<p># vi\u00a0\/etc\/vsftpd\/user.d\/\u7528\u6237\u540d\u4e09\u53ea\u80fd\u4e0b\u8f7d<\/p>\n<p>write_enable=NO<\/p>\n<p>anon_world_readable_only=NO<\/p>\n<p>anon_upload_enable=NO<\/p>\n<p>anon_mkdir_write_enable=NO<\/p>\n<p>anon_other_write_enable=NO<\/p>\n<p>local_umask=022<\/p>\n<p>download_enable=yes<\/p>\n<p>local_root=\/data<\/p>\n<p>10.<\/p>\n<p>\u7528\u6237\u7ba1\u7406userdel\u9009\u9879\u7528\u6237\u540d<\/p>\n<p>#\u5220\u9664\u7528\u6237<\/p>\n<p>\u5e38\u7528\u7684\u9009\u9879\u662f-r\uff0c\u5b83\u7684\u4f5c\u7528\u662f\u628a\u7528\u6237\u7684\u4e3b\u76ee\u5f55\u4e00\u8d77\u5220\u9664\u3002<\/p>\n<p>passwd\u9009\u9879\u7528\u6237\u540d#\u4fee\u6539\u53e3\u4ee4<\/p>\n<p>passwd -l\u00a0\u7528\u6237\u540d<\/p>\n<p>\u9501\u5b9a\u53e3\u4ee4\uff0c\u5373\u7981\u7528\u8d26\u53f7\u3002<\/p>\n<p>passwd -u\u00a0\u7528\u6237\u540d<\/p>\n<p>\u53e3\u4ee4\u89e3\u9501\u3002<\/p>\n<p>passwd -d\u00a0\u7528\u6237\u540d<\/p>\n<p>\u4f7f\u8d26\u53f7\u65e0\u53e3\u4ee4\u3002<\/p>\n<p>passwd -f\u00a0\u7528\u6237\u540d<\/p>\n<p>\u5f3a\u8feb\u7528\u6237\u4e0b\u6b21\u767b\u5f55\u65f6\u4fee\u6539\u53e3\u4ee4\u3002<\/p>\n<p>\u5982\u679c\u9ed8\u8ba4\u7528\u6237\u540d\uff0c\u5219\u4fee\u6539\u5f53\u524d\u7528\u6237\u7684\u53e3\u4ee4\u3002<\/p>\n<p>\u5982\u679c\u662f\u8d85\u7ea7\u7528\u6237\uff0c\u53ef\u4ee5\u7528\u4e0b\u5217\u5f62\u5f0f\u6307\u5b9a\u4efb\u4f55\u7528\u6237\u7684\u53e3\u4ee4\uff1a<\/p>\n<p>passwd\u00a0\u7528\u6237\u540d<\/p>\n<p>passwd -d\u00a0\u7528\u6237\u540d<\/p>\n<p>\u6b64\u547d\u4ee4\u5c06\u7528\u6237\u7684\u53e3\u4ee4\u5220\u9664\uff0c\u8fd9\u6837\u7528\u6237\u4e0b\u4e00\u6b21\u767b\u5f55\u65f6\uff0c\u7cfb\u7edf\u5c31\u4e0d\u518d\u8be2\u95ee\u53e3\u4ee4<\/p>\n<p>11.<\/p>\n<p>\u662f\u5426\u60f3\u4fee\u653921\u7aef\u53e3\u5462\uff1f<\/p>\n<p>\u5148\u4fee\u6539\u9632\u706b\u5899\uff0c\u589e\u52a0\u5176FTP\u7aef\u53e3\uff0c\u4e0b\u9762\u4f7f\u7528921<\/p>\n<p>-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 921 -j ACCEPT<\/p>\n<p>\/etc\/init.d\/iptables restart<\/p>\n<p>#<\/p>\n<p>\u91cd\u542f\u9632\u706b\u5899<\/p>\n<p>\/etc\/vsftpd\/vsftpd.conf<\/p>\n<p>\u91cc\u589e\u52a0\u52a0<\/p>\n<p>listen_port=921<\/p>\n<p>\/etc\/rc.d\/init.d\/vsftpd restart<\/p>\n<p>#\u91cd\u542fvsftpd<\/p>\n<p>netstat -an |grep 921<\/p>\n<p>#\u67e5\u770b\u7aef\u53e3\u662f\u5426\u6b63\u5e38\u542f\u52a8<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>\u7f51\u4e0a\u6559\u7a0b\u5f88\u591a\uff0c\u914d\u7f6e\u5b8c\u6210\u4e4b\u540e\u5374\u53d1\u73b0\u65e0\u6cd5\u767b\u9646\u3002 \u7b2c\u4e00\u3001\u95ee\u9898\u51fa\u5728Pam\u8ba4\u8bc1\u73af\u8282\uff0c\u6240\u4ee5 \u914d\u7f6e\u597d\u865a\u62df\u7528\u6237\u53d1\u73b0\u7528ftp\u5ba2\u6237\u2026 <span class=\"read-more\"><a href=\"https:\/\/www.shuran.cn\/?p=378\">Read More &raquo;<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[],"class_list":["post-378","post","type-post","status-publish","format-standard","hentry","category-os"],"_links":{"self":[{"href":"https:\/\/www.shuran.cn\/index.php?rest_route=\/wp\/v2\/posts\/378","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.shuran.cn\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.shuran.cn\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.shuran.cn\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.shuran.cn\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=378"}],"version-history":[{"count":2,"href":"https:\/\/www.shuran.cn\/index.php?rest_route=\/wp\/v2\/posts\/378\/revisions"}],"predecessor-version":[{"id":380,"href":"https:\/\/www.shuran.cn\/index.php?rest_route=\/wp\/v2\/posts\/378\/revisions\/380"}],"wp:attachment":[{"href":"https:\/\/www.shuran.cn\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=378"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.shuran.cn\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=378"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.shuran.cn\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=378"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}