hi all
wana ask on how to set up a secure ftp server…merely for filesharing for my offsite office using internet
wana use suse 10.3 KDE…
thanks all
If your box has ssh it is already setted! 
to retrive the files you can use sftp (man sftp) or the built in vfs on mc (midnight commander) using this comand to connect:
cd /#sh:user@hostname/dir/of/files/on/server
(mc is THE file manager)
Cheers
You could install vsftp along with the YaST module for it. Simple and can be managed with YaST, although I’m not sure the YaST module is integrated as with openSUSE 11?
You probably do NOT need an ftp server for that, if you are the only user.
Form your laptop “on the road”, you can access your “home-base/office” PC using sftp and ssh. Open port#22 on your PCs/router. Then with konqueror type:
sftp://your-username@ip-address-of-your-home-base/office-pc
The above assumes you are accessing via port#22.
If you have a dynamic ip address in your “home-base/office”, your can also look at mapping your “home-base/office” ip-address to a more fixed URL with dyndns. Many hackers try to hack in via port#22, so for increased security, you can also look at closing port#22 on your home-base/office router, and mapping a high port number (say 38001) to port#22 on your home PC. Then when you connect via konqueror, you have to specify the port # in addition to the ip-address.
If instead you still decide you want to set up on ftp server, then take a look here:
FTP Server HOWTO - openSUSE
thanks for the suggestions and reply
my only use for the suse ftp server is to host office files to remote users.i want the FTP site to be accesible from any place that has internet and also share the network in the office (LAN)…
the office thins is set uped but the remote thingy …to be done…hehehe
note : all users are windows…
Yes, In this case best is to set up a normal ftp server. (if you use secure ftp, all users will have ssh access to the machine, has some ways to disable but i don’t think is a good idea)
Best way is to follow the ftp how-to.
Cheers
Leon
On Thu, 03 Jul 2008 12:26:04 GMT
kcampilan <kcampilan@no-mx.forums.opensuse.org> wrote:
>
> thanks for the suggestions and reply
>
> my only use for the suse ftp server is to host office files to remote
> users.i want the FTP site to be accesible from any place that has
> internet and also share the network in the office (LAN)…
>
> the office thins is set uped but the remote thingy …to be
> done…hehehe
>
>
> note : all users are windows…
>
>
Hi
You can also deploy this client to your users for sftp;
http://winscp.net/eng/index.php
–
Cheers Malcolm °¿° (Linux Counter #276890)
SLED 10.0 SP2 x86_64 Kernel 2.6.16.60-0.23-smp
up 2 days 20:42, 1 user, load average: 0.03, 0.07, 0.07
GPU GeForce 8600 GTS Silent - Driver Version: 173.14.09
thanks…a little guide on this pls …am new to thingy FTP thing…thanks all
If you install (using Software Management) the vsftp or pure-ftp and yast-ftp packages you can configure most basic settings using YaST.
kcampilan wrote:
>> Best way is to follow the ftp how-to.
> thanks…a little guide on this pls …am new to thingy FTP thing…thanks
> all
see the how-to at http://en.opensuse.org/FTP_Server_HOWTO
sorry, i can’t help past that as i’ve never done it myself…
and, from my point of view it certainly is not all the direction i’d
need to do all you wanna do [including 1) making sure the data is secure
and only available to those you want to have it, and 2) tell the
Windows™ folks how to place/fetch the data]
good luck, and KEEP ASKING until you get all the information you need!!
ps: to all the posters who told him how to ftp from his laptop to the
company’s server (instead of how to set up the company’s server) follow
this check list:
- read the question
- understand the question
- decide if you can help
- if so, post the answer/help to the question asked
- if not, do nothing
have fun and keep smiling,
–
DenverD (Linux Counter 282315)
A Texan in Denmark
ok sir i will…much thanks…thanks again to all…
here;s the sscenario again…ill setup a compny FTP server…i am familiar wd suse 10.3 so i use suse 10.3 for the server…i just wana set up a ftp server that can be administered easily…ofcourse its in cli…or much better in gui…anways ill be use suse 10.3 KDE…
thanks alll
hi all
manged to install and edit vsftpd.conf
would like to know on how to add mange users and folders
thnks alll
up…a little help here pls…
Each Linux login automatically has a vsftpd login because in the default configuration the system password file is used for authentication. This may or may not be a good thing because they are exposing their passwords in cleartext over the network when they login.
If you want to use virtual users, look in /usr/share/doc/packages/vsftpd/EXAMPLE/VIRTUAL_USERS/ where there is some documentation about setting up virtual users in vsftpd so the usernames and passwords are separate from those in the main password file. There isn’t any provision for lots if different sets of permissions and home directory because vsftpd only allows one guest user to be specified. If you just have a few logins and all the files they manage are concentrated in one area of the filesystem, it’s usable.
There are other files in /usr/share/doc/packages/vsftpd worth reading.
okies ill read this…
this may sound hasty…
just simple steps pls add users / dir and their permission from thr ill explore it …
thanks all
hi all…up for ths
hi all
am happy i manage to run my ftp for starters.i can use it but i need more securty…
this is my vsftpd.conf
Example config file /etc/vsftpd.conf
The default compiled in settings are fairly paranoid. This sample file
loosens things up a bit, to make the ftp daemon more usable.
Please see vsftpd.conf.5 for all compiled in defaults.
If you do not change anything here you will have a minimum setup for an
anonymus FTP server.
READ THIS: This example file is NOT an exhaustive list of vsftpd options.
Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd’s
capabilities.
General Settings
Uncomment this to enable any form of FTP write command.
write_enable=YES
Activate directory messages - messages given to remote users when they
go into a certain directory.
dirmessage_enable=YES
It is recommended that you define on your system a unique user which the
ftp server can use as a totally isolated and unprivileged user.
#nopriv_user=ftpsecure
You may fully customise the login banner string:
#ftpd_banner=“Welcome to TurtleSell FTP service.”
You may activate the “-R” option to the builtin ls. This is disabled by
default to avoid remote users being able to cause excessive I/O on large
sites. However, some broken FTP clients such as “ncftp” and “mirror” assume
the presence of the “-R” option, so there is a strong case for enabling it.
#ls_recurse_enable=YES
You may specify a file of disallowed anonymous e-mail addresses. Apparently
useful for combatting certain DoS attacks.
#deny_email_enable=YES
(default follows)
#banned_email_file=/etc/vsftpd.banned_emails
If enabled, all user and group information in
directory listings will be displayed as “ftp”.
#hide_ids=YES
Local FTP user Settings
Uncomment this to allow local users to log in.
local_enable=YES
Default umask for local users is 077. You may wish to change this to 022,
if your users expect that (022 is used by most other ftpd’s)
local_umask=022
Uncomment to put local users in a chroot() jail in their home directory
after login.
#chroot_local_user=YES
You may specify an explicit list of local users to chroot() to their home
directory. If chroot_local_user is YES, then this list becomes a list of
users to NOT chroot().
#chroot_list_enable=YES
(default follows)
#chroot_list_file=/etc/vsftpd.chroot_list
The maximum data transfer rate permitted, in bytes per second, for
local authenticated users. The default is 0 (unlimited).
#local_max_rate=7200
Anonymus FTP user Settings
Allow anonymous FTP?
anonymous_enable=YES
Anonymous users will only be allowed to download files which are
world readable.
anon_world_readable_only=YES
Uncomment this to allow the anonymous FTP user to upload files. This only
has an effect if the above global write enable is activated. Also, you will
obviously need to create a directory writable by the FTP user.
#anon_upload_enable=YES
Default umask for anonymus users is 077. You may wish to change this to 022,
if your users expect that (022 is used by most other ftpd’s)
#anon_umask=022
Uncomment this if you want the anonymous FTP user to be able to create
new directories.
#anon_mkdir_write_enable=YES
Uncomment this to enable anonymus FTP users to perform other write operations
like deletion and renaming.
#anon_other_write_enable=YES
If you want, you can arrange for uploaded anonymous files to be owned by
a different user. Note! Using “root” for uploaded files is not
recommended!
#chown_uploads=YES
#chown_username=whoever
The maximum data transfer rate permitted, in bytes per second, for anonymous
authenticated users. The default is 0 (unlimited).
#anon_max_rate=7200
Log Settings
Log to the syslog daemon instead of using an logfile.
syslog_enable=YES
Uncomment this to log all FTP requests and responses.
#log_ftp_protocol=YES
Activate logging of uploads/downloads.
#xferlog_enable=YES
You may override where the log file goes if you like. The default is shown
below.
#vsftpd_log_file=/var/log/vsftpd.log
If you want, you can have your log file in standard ftpd xferlog format.
Note: This disables the normal logging unless you enable dual_log_enable below.
#xferlog_std_format=YES
You may override where the log file goes if you like. The default is shown
below.
#xferlog_file=/var/log/xferlog
Enable this to have booth logfiles. Standard xferlog and vsftpd’s own style log.
#dual_log_enable=YES
Uncomment this to enable session status information in the system process listing.
#setproctitle_enable=YES
Transfer Settings
Make sure PORT transfer connections originate from port 20 (ftp-data).
connect_from_port_20=YES
You may change the default value for timing out an idle session.
#idle_session_timeout=600
You may change the default value for timing out a data connection.
#data_connection_timeout=120
Enable this and the server will recognise asynchronous ABOR requests. Not
recommended for security (the code is non-trivial). Not enabling it,
however, may confuse older FTP clients.
#async_abor_enable=YES
By default the server will pretend to allow ASCII mode but in fact ignore
the request. Turn on the below options to have the server actually do ASCII
mangling on files when in ASCII mode.
Beware that turning on ascii_download_enable enables malicious remote parties
to consume your I/O resources, by issuing the command “SIZE /big/file” in
ASCII mode.
These ASCII options are split into upload and download because you may wish
to enable ASCII uploads (to prevent uploaded scripts etc. from breaking),
without the DoS risk of SIZE and ASCII downloads. ASCII mangling should be
on the client anyway…
#ascii_upload_enable=YES
#ascii_download_enable=YES
Set to NO if you want to disallow the PASV method of obtaining a data
connection.
#pasv_enable=NO
PAM setting. Do NOT change this unless you know what you do!
pam_service_name=vsftpd
Set listen=YES if you want vsftpd to run standalone
listen=NO
Set to ssl_enable=YES if you want to enable SSL
ssl_enable=NO
i just want to set a specific user for the ftp …one user that can read and write , one user that can read only and if possible ill put the directory in a specific loc . like /home/FTP-DOC…
is these possible>
thanks all
more power
hi all
i managed to run my ftp locally…
i hve ine user that can view a specific dir. but has an read access…
nice one for starters…
ill be explorng for a user wd 777 access
if anyone can suggest anything…pls do…
im planinng to put this on public FTP…thanks
pls do suggest…
thanks alll
hi all
how cn i setup a user that has read n write to my ftp folder?
already made one as readonly…
thanks all