Which FTP Server?
Cheers.
17 Replies
vsftpd
Cheers.
I use VSFTP too and it's excellent.
Connection attempt failed with "ECONNREFUSED - Connection refused by server".
Im using the default config file, which allows annoymous users by default right now, but its not connecting.
SFTP support is built right into your SSH server, so it's already supported. There are a variety of clients for every platform (Windows/Linux/OS X). It "just works", and provides similar functionality to FTP.
I set up a user with no shell access, and a home directory of /var/www/domain.com, but I couldn't figure out where to put my public key, and so the sftp connection would never authenticate.
@epohs:
Is it possible to create a user for the primary purpose of sFTPing to a folder outside of the home directory, while using public/private keys?
I set up a user with no shell access, and a home directory of /var/www/domain.com, but I couldn't figure out where to put my public key, and so the sftp connection would never authenticate.
sshd should use ~/.ssh/ no matter what ~ is. So, in this case, it'd be /var/www/domain.com/.ssh/
Because, I did all of those things and I believe I had permissions set correctly, but the owner of the folder was a different user.
@glg:
sshd should use ~/.ssh/ no matter what ~ is. So, in this case, it'd be /var/www/domain.com/.ssh/
That can be changed in your sshd_config file.
AuthorizedKeysFile
Specifies the file that contains the public keys that can be used
for user authentication. AuthorizedKeysFile may contain tokens
of the form %T which are substituted during connection set-up.
The following tokens are defined: %% is replaced by a literal
'%', %h is replaced by the home directory of the user being
authenticated and %u is replaced by the username of that user.
After expansion, AuthorizedKeysFile is taken to be an absolute
path or one relative to the user's home directory. The default
is ``.ssh/authorized_keys''.
As a side note to the OP, if you are doing something like this, please define a /web folder or the like and have all HTML, PHP, * files in that folder and have your web server serve /web to the world and confine your home dir the /var/www/domain.com/
> Does it matter who owns the .ssh folder?
Very much so, and permissions have to be set very properly. The owner and group owner should be the user you are attempting to log in as, the .ssh folder will need to be set to chmod 700 and the authorized_keys to chmod 644.
e.g
ftp cron
disconnected
@cherring:
Hey guys, I was just wondering if anybody had any advice on which ftp server I should use for my linode, security is my number one concern. Are there any with known security holes that I should avoid?
The correct answer of course, is to not run FTP at all (horribly insecure). There are plenty of SFTP/SCP clients available for most platforms which obviate the need to run an FTP server.