|
|
In this example i'll show you how to setup vsftp server with no shell access to users. For example users can log into ftp but not ssh.
After you've installed vsftp server change in vsftpd.conf those lines:
# Turn off anonymous users
anonymous_enable=NO
# Turn on local users
local_enable=YES
# Users should be able to write
write_enable=YES
# I don't give access to port 20 so turn this off
connect_from_port_20=NO
# chroot everyone
chroot_local_user=YES
Disable shell access to ftp user:
Edit the file /etc/shells and add the line /bin/false:
echo "/bin/false" >> /etc/shells
Then change the shell of the user to /bin/false.
You can do this with command:
usermod ftpuser -s /bin/false
You can also restrict the commands that user can give. For example if you want only to upload/download files, and don't let people to delete files add this line:
cmds_allowed=PASV,BINARY,PUT,GET,PWD,STAT,TYPE,NLST,CWD,SIZE,MDTM,SITE,UTIME,REST,RETR,STOR,LIST,ASCII,RETR,QUIT
Note:
We use Hosting and VPS Hosting, from: www.star-host.org
We like and trust them.
Good prices, high security.