Otu esi etinye, hazie na chekwaa sava FTP na RHEL 8


FTP (nke pụtara Protocol Transfer Protocol) bụ ụkpụrụ netwọkụ ọkọlọtọ na ochie nke ejiri maka ịnyefe faịlụ n'etiti onye ahịa na ihe nkesa na netwọk kọmputa, a na-ewu ya na nhazi ihe nleba anya nke ndị ahịa, nke na-enye ohere ịnweta faịlụ. na akwụkwọ ndekọ aha site na onye ahịa FTP, iji bulite faịlụ na sava yana budata faịlụ na ya.

N'isiokwu anyị gara aga, anyị akọwala otu esi etinye, hazie na chekwaa FTP Server na CentOS/RHEL 7 maka ịnyefe faịlụ kọmputa n'etiti onye ahịa na ihe nkesa na netwọk kọmputa.

N'isiokwu a, anyị ga-akọwa otu esi etinye, hazie na chekwaa ihe nkesa FTP na RHEL 8 maka nkesa faịlụ bụ isi n'etiti kọmputa.

Wụnye FTP Server na RHEL 8

1. Iji wụnye ngwugwu FTP echekwara, jiri iwu dnf na-esonụ.

# dnf install vsftpd

2. Mgbe echichi zuru ezu, ịkwesịrị ịmalite ọrụ vsftpd maka ugbu a, mee ka ọ malite na-akpaghị aka na boot system wee nyochaa ọnọdụ ahụ site na iji iwu systemctl ndị a.

# systemctl start vsftpd
# systemctl enable vsftpd
# systemctl status vsftpd

3. Ọzọ, ịkwesịrị imepe ọdụ ụgbọ mmiri FTP 21 na firewall sistemụ ka ị nweta ọrụ FTP site na sistemụ mpụga.

# firewall-cmd --zone=public --permanent --add-port=21/tcp
# firewall-cmd --zone=public --permanent --add-port=45073/tcp
# firewall-cmd --reload

Hazie sava FTP na RHEL 8

4. Iji hazie ihe nkesa FTP, ịkwesịrị iwere ndabere nke faịlụ nhazi FTP isi /etc/vsftpd/vsftpd.conf site na iji iwu nnomi na-esonụ.

# cp /etc/vsftpd/vsftpd.conf /etc/vsftpd/vsftpd.conf.orig

5. Mgbe ahụ mepee faịlụ nhazi site na iji nchịkọta akụkọ ahịrị iwu ọkacha mmasị gị.

# vi /etc/vsftpd/vsftpd.conf

Tọọ ụkpụrụ ndị a kwekọrọ na ụkpụrụ ndị a (lee nwoke vsftpd.conf maka nkọwa nhazi nhazi):

anonymous_enable=NO             
local_enable=YES		
write_enable=YES		
local_umask=022		        
dirmessage_enable=YES	        
xferlog_enable=YES		
connect_from_port_20=YES        
xferlog_std_format=YES          
listen=NO   			
listen_ipv6=YES		        
pam_service_name=vsftpd        

6. Ọzọ, ịkwesịrị ịhazi FTP iji kwe/jụ ndị ọrụ ịnweta ọrụ FTP dabere na faịlụ ndepụta onye ọrụ /etc/vsftpd.userlist.

Site na ndabara, ndị ọrụ depụtara na /etc/vsftpd.userlist faịlụ agaghị enweta ya na nhọrọ userlist_deny ka edobere na EE, ma ọ bụrụ na userlist_enable = EE, ọ na-enyere ohere.

Mana, ịtọ ntọala userlist_deny=NO na-agbanwe ntọala ahụ, nke pụtara na ọ bụ naanị ndị ọrụ edepụtara n'ụzọ doro anya na userlist_file=/etc/vsftpd.userlist ka a ga-ahapụ ịbanye.

Ya mere, tinye ahịrị ndị a na faịlụ nhazi vsftpd.conf gị (ma ọ bụ ọ bụrụ na ọ dịlarị, nyeghachi ha ma tọọ ụkpụrụ ha dị ka egosiri):

userlist_enable=YES                   # allow access to list of usernames from the userlist_file
userlist_file=/etc/vsftpd.userlist    # stores usernames.
userlist_deny=NO   

7. Ugbu a tinye ahịrị ndị a na faịlụ nhazi vsftpd.conf iji gbochie ndị ọrụ FTP na akwụkwọ ndekọ ụlọ ha.

chroot_local_user=YES		#means local users will be placed in a chroot jail, their home directory after login by default settings.
user_sub_token=$USER         	
local_root=/home/$USER/ftp   	

Chekwaa mgbanwe na faịlụ ma mechie ya.

8. Tọọ iwu SELinux boolean ndị a iji mee ka FTP nwee ike ịgụ/dee faịlụ nke ndekọ ụlọ onye ọrụ.

# semanage boolean -m ftpd_full_access --on

9. N'ikpeazụ malitegharịa ọrụ vsftpd iji metụta mgbanwe niile anyị mere n'elu:

# systemctl restart vsftpd

Na-anwale sava FTP na RHEL 8

10. Iji nwalee ma ọ bụrụ na ntọala FTP dị n'elu na-arụ ọrụ nke ọma, malite site na ịmepụta onye ọrụ FTP na useradd iwu ma mepụta paswọọdụ maka onye ọrụ ahụ.

# useradd -m -c "Tecmint HowTos" -s /bin/bash tecmint
# passwd tecmint

11. Mgbe ahụ tinye onye ọrụ tecmint na faịlụ /etc/vsftpd.userlist site na iji iwu echo dị ka ndị a.

# echo "tecmint" | tee -a /etc/vsftpd.userlist
# cat /etc/vsftpd.userlist

12. Mgbe ahụ mepụta usoro mgbọrọgwụ mpaghara ọzọ maka onye ọrụ (tecmint, nke gị nwere ike dị iche) ma tọọ ikikere kwesịrị ekwesị na ndekọ a.

# mkdir -p /home/tecmint/ftp
# chown nobody:nobody /home/tecmint/ftp
# chmod a-w /home/tecmint/ftp

13. Na-esote, mepụta ndekọ n'ime ebe mgbọrọgwụ mpaghara, ebe onye ọrụ ga-edebe faịlụ ya.

# mkdir /home/tecmint/ftp/files
# chown tecmint:tecmint /home/tecmint/ftp/files
# chmod 0700 /home/tecmint/ftp/files/

14. Ugbu a jikọọ na FTP nkesa na-eji ọ bụla FTP ahịa dị ka ndị a.

# ftp [email 
Connected to 192.168.56.100
220 Welcome to TecMint.com FTP service.
331 Please specify the password.
Password:
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls

Ọ bụ ya! N'isiokwu a, anyị kọwara otú e si wụnye, hazie yana chekwaa ihe nkesa FTP na RHEL 8. N'isiokwu na-esonụ, anyị ga-egosi otu esi echekwa ihe nkesa FTP site na iji njikọ SSL/TLS. Ruo mgbe ahụ, nọnyere anyị.