Setting Up FTP on Redhat 9

[leachus2002]

Hiya,

I have just installed Redhat 9 onto one of my servers and I want to configure the FTP service, but as I am new to Redhat then I am not sure how to do it. Can anyone give me a simple explination on how to do it? I have installed FTP from the installation wizard, but I cannot find it anywhere within the program.

Cheers

leachus :rofl:

[dotRoot]

well, because you are new I'll just let you know that http://google.com/linux is your friend. As I refuse to use VSFTPd (which RedHat/Fedora comes with) I found a HOWTO for you.

http://www.siliconvalleyccie.com/linux-hn/...tm#_Toc57733505

Just a bit of a caution. Its very unsecure and doesn't support much. Everything you do on the FTP is sent as plain text too, including passwords.

[cpugeniusmv]

  dotRoot said:

well, because you are new I'll just let you know that http://google.com/linux is your friend. As I refuse to use VSFTPd (which RedHat/Fedora comes with) I found a HOWTO for you.

http://www.siliconvalleyccie.com/linux-hn/...tm#_Toc57733505

Just a bit of a caution. Its very unsecure and doesn't support much. Everything you do on the FTP is sent as plain text too, including passwords.

what's wrong with vsftpd? it's a very secure ftpd which was programmed from the ground up with security in mind.

it also performs very well under load. you'll find it serving such high volume ftp sites as kernel.org, redhat, debian, suse, more

[dotRoot]

  cpugeniusmv said:

what's wrong with vsftpd? it's a very secure ftpd which was programmed from the ground up with security in mind.

it also performs very well under load. you'll find it serving such high volume ftp sites as kernel.org, redhat, debian, suse, more

Allowing passwords sent as plain text unencrypted? Allowing root logins? Great security. Unless its changed in a year much, then I doubt I'd call it Very Secure instead of Very Stupid.

[Zerosleep]

Hater! ^_^

[cpugeniusmv]

  dotRoot said:

Allowing passwords sent as plain text unencrypted? Allowing root logins? Great security. Unless its changed in a year much, then I doubt I'd call it Very Secure instead of Very Stupid.

root logins can be disabled.

AFAIK, the ftp protocol sends passwords as plain text no matter which daemon you're using...so that's not a valid argument against vsftpd unless i'm incorrect.

[+BudMan MVC]

  cpugeniusmv said:

root logins can be disabled.

AFAIK, the ftp protocol sends passwords as plain text no matter which daemon you're using...so that's not a valid argument against vsftpd unless i'm incorrect.

No your correct FTP sends username and password in clear text, unless you tunnel it through a ssh or encrypted with ssl/tls, etc.. Now vsftp does support ssl/tls - which can be great if your worried about sending your username and password across the public net - and who shouldn't be??

From a security side - I prefer sftp, but there is nothing wrong with this ftp daemon

As to how to configure it - did you even bother to glance over the documentation? It's pretty straight forward! All in vsftp.conf - Did you think there was going to be some shiny gui or wizard - heheheh

Closes your going to come to that is webmin, which has a vsftp module available (you'll have to add it - its not a standard module). Which will give you an interface for changing the .conf file ;)

[MG-Cloud]

  Quote

Allowing passwords sent as plain text unencrypted?

Perhaps your issue is with the ftp protocol itself rather than the specific daemon?

  Quote

Allowing root logins? Great security.

*totally* wrong. you can disable root logins, as well as anonymous logins and logins from any user on the server. For example, on my own vsftpd, I only allow chrooted access into /home/ftp, which is owned by ftpuser.

Do yourself a favour and check this:

http://vsftpd.beasts.org/#security

out :)