Contents
Abstract
Using the YaST
module, you can configure your machine to function as an FTP server. Anonymous and/or authenticated users can connect to your machine and download and, depending on the configuration, upload files using the FTP protocol. YaST provides a unified configuration interface for various FTP server daemons installed on your system.The YaST
configuration module can be used to configure two different FTP server daemons: vsftpd (Very Secure FTP Daemon) and pure-ftpd. Only installed servers can be configured.The vsftpd and pure-ftpd servers have slightly different configuration options, especially in the
dialog. This chapter describes the settings of the vsftpd server .
If the YaST FTP Server module is not available in your system, install
the yast2-ftp-server
package.
To configure the FTP server using YaST, follow these steps:
Open YaST Control Center and choose yast2 ftp-server command as root
.
If there is not any FTP server installed in your system, you will be asked which server to install when the YaST FTP Server module starts. Choose a server and confirm the dialog.
In the Section 28.1, “Starting the FTP server”.
dialog, configure the starting of the FTP server. For more information, seeIn the Section 28.2, “FTP General Settings”.
dialog, configure FTP directories, welcome message, file creation masks and various other parameters. For more information, seeIn the Section 28.3, “FTP Performance Settings”.
dialog, set the parameters that affect the load on the FTP server. For more information, seeIn the Section 28.4, “Authentication”.
dialog, set whether the FTP server should be available for anonymous and/or authenticated users. For more information, seeIn the Section 28.5, “Expert Settings”.
dialog, configure the operation mode of the FTP server, SSL connections and firewall settings. For more information, seePress
to save the configurations.In the
frame of the dialog set the way the FTP server is started up. You can choose between starting the server automatically during the system boot and starting it manually. If the FTP server should be started only after FTP connection request, choose .The current status of the FTP server is shown in the
frame of the dialog. Start the FTP server by pressing . To stop the server, press . After having changed the settings of the server press . Your configurations will be saved by leaving the configuration module with , as well.The
frame of the dialog shows which FTP server is used. Either vsftpd (Very Secure FTP Daemon) or pure-ftpd can be used. If both servers are installed, you can switch between them—the current configuration will automatically be converted.In the
frame of the dialog you can set the which is shown after connecting to the FTP server.If you check the
option, all local users will be placed in a chroot jail in their home directory after login. This option has security implications, especially if the users have upload permission or shell access, so be careful enabling this option.If you check the
option, all FTP requests and responses are logged.You can limit permissions of files created by anonymous and/or authenticated users with umask. The bits that are set in the umask identify permissions that are always to be disabled for newly created files. Set the file creation mask for anonymous users in man 1p umask.
and the file creation mask for authenticated users in . The masks should be entered as octal numbers with a leading zero. For more information about umask, see the umask man page (
In the /srv/ftp
. Note that vsftpd does not allow this
directory to be writable for all users. The subdirectory
upload
with write permissions for anonymous users is
created instead.
![]() | |
The pure-ftpd server allows the FTP directory for anonymous users to be writable. When switching between servers, make sure you remove the write permissions in the directory that was used with pure-ftpd before switching back to the vsftpd server. |
In the
dialog set the parameters which affect the load on the FTP server. is the maximum time (in minutes) the remote client may spend between FTP commands. In case of longer inactivity, the remote client is disconnected. determines the maximum number of clients which can be connected from a single IP address. determines the maximum number of clients which may be connected. Any additional clients will get an error message.The maximum data transfer rate (in KB/s) is set in
for local authenticated users, and in for anonymous clients respectively. The default value for the rate settings is 0, which means unlimited data transfer rate.In the
frame of the dialog, you are able to set which users are allowed to access your FTP server. You can grant access only for anonymous users, only for authenticated users with accounts on the system or for both types of users.If you want to allow users to upload files to the FTP server, check
in the frame of the dialog. Here you are able to allow uploading or creating directories even for anonymous users by checking the respective box.![]() | |
If a vsftpd server is used and you want anonymous users to be able to upload files or create directories, a subdirectory with writing permissions for all users has to be created in the anonymous FTP directory. |
An FTP server can run in active or in passive mode. By default the server runs in passive mode. To switch into active mode, just uncheck
option in dialog. You can also change the range of ports on the server used for the data stream by tweaking the and options.If you want encrypted communication between clients and the server, you can
. Check the versions of the protocol to be supported and specify the DSA certificate to be used for SSL encrypted connections.If your system is protected by a firewall, check
to enable a connection to the FTP server.For more information about ftp servers read the manual pages of pure-ftpd, vsftpd and vsftpd.conf.