How to get vsftpd working

Thu Jul 16 22:59:02 UTC 2009

I would advise you NOT to allow WRITE_ENABLE. If your clients are other *.nix clients you only need scp/sftp or psftp on Windows clients. If you have MAC clients they also can use scp. These clients run over ssh that come stardard on Fedora/CentOS/Red Hat boxes. If you have Debian you install the ssh server and this will put the secure copy/ftp clients too. This way you just allow anonymous access and if your users want to upload anything to your server they will use a secure connection to their home directories. Good for loggin purposes too!

The reason your directory listing fails is because of iptables. Remember vsftp as any ftp server uses incoming port 21 connections but not well-known ports outgoing connections. Google and you'll find the exact configuration.

Regards

+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+
|E|d|u|a|r|d|o| |L|a|n|d|a|v|e|r|i|
+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+

+-+-+-+-+-+-+-+-+-+ +-+-+-+-+ +-+-+-+-+-+-+
|G|N|U|-|L|i|n|u|x| |U|s|e|r| |4|3|3|5|1|2|
+-+-+-+-+-+-+-+-+-+ +-+-+-+-+ +-+-+-+-+-+-+

> -----Original Message-----
> From: pemboa at gmail.com
> Sent: Thu, 16 Jul 2009 17:23:01 -0500
> To: fedora-list at redhat.com
> Subject: Re: How to get vsftpd working
> 
> On Thu, Jul 16, 2009 at 1:38 PM, Paolo Galtieri<pgaltieri at gmail.com>
> wrote:
>> I've been trying to get vsftpd working but have had no luck so far.
>> This is
>> my config:
>> 
>> anonymous_enable=NO
>> local_enable=YES
>> write_enable=YES
>> local_umask=022
>> dirmessage_enable=YES
>> xferlog_enable=YES
>> connect_from_port_20=YES
>> xferlog_file=/var/log/vsftpd.log
>> xferlog_std_format=YES
>> ascii_upload_enable=YES
>> ascii_download_enable=YES
>> ftpd_banner=Welcome to Darkstar FTP service.
>> listen=YES
>> 
>> pam_service_name=vsftpd
>> userlist_enable=YES
>> tcp_wrappers=YES
>> pasv_max_port=1024
>> no_anon_password=YES
>> 
>> I am able to connect from my client system to the server.  I login as
>> user
>> pgaltieri, am prompted for password, and when I enter it I am logged in.
>> However, once this happens I can't do anything.  If I try to put a file
>> I
>> get:
>> 
>> ftp> put SPAM
>> local: SPAM remote: SPAM
>> 227 Entering Passive Mode (10,0,0,70,31,17).
>> 553 Could not create file.
>> 
>> If I try to list the directory:
>> 
>> ftp> dir
>> 227 Entering Passive Mode (10,0,0,70,211,221).
>> 150 Here comes the directory listing.
>> 226 Transfer done (but failed to open directory).
>> ftp>
>> 
>> The directory ownership on the server is:
>> 
>> [pgaltieri at darkstar ~]$ /bin/ls -ld /home/pgaltieri
>> drwxr-xr-x. 38 pgaltieri pgaltieri 4096 2009-07-16 10:40 /home/pgaltieri
>> 
>> I changed this from the default 700 wondering if this might be the cause
>> but
>> it made no difference.
>> 
>> I'm sure I'm doing something stupid, but I don't remember it being this
>> hard
>> to set up.
>> 
>> I'm also logged in as the same user on the client system.  The directory
>> permissions on the client are 700
>> 
>> [pgaltieri at peglaptop10 ~]$ /bin/ls -ld ~pgaltieri
>> drwx------. 62 pgaltieri pgaltieri 4096 2009-07-16 11:34 /home/pgaltieri
>> 
>> I tried it with 755 but it still fails.
>> 
>> I would appreciate any help from someone who can tell me what I'm
>> missing.
>> It seems to be a permissions issue on the server, but I don't know what
>> it
>> could be.  I'm not getting any selinux alerts.
>> 
>> Thanks
>> Paolo
> 
> 
> Check your logs
> 
> /var/log/messages
> /var/log/secure
> /var/log/vsftpd.log
> 
> 
> 
> --
> Fedora 10
> (www.pembo13.com)
> 
> --
> fedora-list mailing list
> fedora-list at redhat.com
> To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
> Guidelines:
> http://fedoraproject.org/wiki/Communicate/MailingListGuidelines