The vsFTPD package contains a very secure and very small FTP daemon. This is useful for serving files over a network.
Download (FTP): ftp://vsftpd.beasts.org/users/cevans/vsftpd-2.0.3.tar.gz
Download MD5 sum: 74936cbd8e8251deb1cd99c5fb18b6f8
Download size: 150 KB
Estimated disk space required: 1.4 MB
Estimated build time: less than 0.1 SBU
For security reasons, running vsFTPD as an unprivileged user and group is encouraged. Also, a user should be created to map anonymous users. As the root user, create the needed directories, users, and groups with the following commands:
install -v -d -m 0755 /var/ftp/empty && install -v -d -m 0755 /home/ftp && groupadd -g 47 vsftpd && useradd -d /dev/null -c "vsFTPD User" -g vsftpd -s /bin/false \ -u 47 vsftpd && groupadd -g 45 ftp && useradd -c anonymous_user -d /home/ftp -g ftp -s /bin/false -u 45 ftp
Build vsFTPD as an unprivileged user using the following command:
make
Once again, become the root user and install vsFTPD with the following commands:
install -v -m 755 vsftpd /usr/sbin/vsftpd && install -v -m 644 vsftpd.8 /usr/share/man/man8 && install -v -m 644 vsftpd.conf.5 /usr/share/man/man5 && install -v -m 644 vsftpd.conf /etc
install -v -d ...: This creates the directory that anonymous users will use (/home/ftp) and the directory the daemon will chroot into (/var/ftp/empty).
/home/ftp should not be owned by the user vsftpd, or the user ftp.
echo "#define VSF_BUILD_TCPWRAPPERS" >>builddefs.h: Use this prior to make to add support for tcpwrappers.
echo "#define VSF_BUILD_SSL" >>builddefs.h: Use this prior to make to add support for SSL.
install -v -m ...: The Makefile uses non-standard installation paths. These commands install the files in /usr and /etc.
vsFTPD comes with a basic anonymous-only configuration file that was copied to /etc above. While still as root, this file should be modified because it is now recommended to run vsftpd in standalone mode as opposed to inetd/xinetd mode. Also, you should specify the privilege separation user created above. Finally, you should specify the chroot directory. man vsftpd.conf will give you all the details.
cat >> /etc/vsftpd.conf << "EOF" background=YES listen=YES nopriv_user=vsftpd secure_chroot_dir=/var/ftp/empty EOF
Install the /etc/rc.d/init.d/vsftpd init script included in the blfs-bootscripts-6.1 package.
make install-vsftpd
Last updated on 2005-08-01 13:29:19 -0600