Very Secure FTP Daemon

From ArchWiki
Revision as of 19:55, 14 May 2006 by PJ (Talk | contribs) (rm spam, spammer: Szyslak)

Jump to: navigation, search

vsftpd is the "very secure ftp daemon." It's a nice little ftp server should you need one.

It will run either with or without xinetd, but I'll describe how to use it with xinetd.

First, grab the packages you'll need with pacman:

pacman -Sy xinetd vsftpd

The following config files will need to be changed:

/etc/xinetd.d/vsftpd:

service ftp
{
        socket_type             = stream
        wait                    = no
        user                    = root
        server                  = /usr/sbin/vsftpd
        log_on_success  += HOST DURATION
        log_on_failure  += HOST
        disable                 = no
}

/etc/vsftpd.conf is a very well documented config file, but here are the basics you'll probably want to set:

anonymous_enable=NO      # Assuming you don't want anonymous ftp
local_enable=YES         # This lets local machine users log in
write_enable=YES    # Be really careful using this with anonymous_enable=YES

Finally, add xinetd to your daemons line in /etc/rc.conf. You don't need to add vsftpd, as it will be called by xinetd whenever necessary.

If you get errors like

500 OOPS: cap_set_proc

when connecting to the server, you need to add capability in MODULE= line in /etc/rc.conf.