|
Post by hydkrash on May 24, 2007 13:19:16 GMT 7
Anyone has any modules for Secure FTP? I believe you can enable this in pureFTP.
|
|
|
Post by kniteowl on May 24, 2007 14:12:15 GMT 7
I could be wrong with this, but I think that omega has this as part of the SSHD module already. I use SFTP or is it SCP to transfer files to the server once I have the SSHD module installed. Omega would be able to answer this better. Teng
|
|
|
Post by peterfu on May 24, 2007 14:33:51 GMT 7
PureFtpd has the possibility to enable communication via SSL - so the control channel is encrypted - from the REDAME.TLS:
This is not part of the current PUREFTPD module and I also have at the moment no plans to implement it.
I agree to Teng that is is the best to use the SSHD module for secure (=encrypted) file transfer.
br Peter
|
|
|
Post by omega on May 24, 2007 15:15:13 GMT 7
Teng, you're completely right..... Nowadays the dino protocols like rlogin, telnet and ftp should be avoided completely when talking about security as there is no encryption (neither for the control channel nor for the data). The SSH suite provides substitutes and this is one and the most simple way to go. The only requirement is a SSH server on the other side and the SSH client programs on your side (or vice versa). For login use ssh, for copying files between two sites use scp, sftp or even rsync which one supports ssh connections too and provides a more convenient way to synchronize a complete file tree. BTW, with a good SSH setup, you almost don't need to enter passwords anymore - once per session (when you start your Linux computer or when you start PuTTY) is enough.... Me personally I stopped using ftp at all. Andreas
|
|
|
Post by tbovingdon on May 27, 2007 22:18:23 GMT 7
noob question.. ssh module installed how do i connect through sftp....
i tried port 22 but ftp client sits at: Status: Connected with 192.168.1.2:22. Waiting for welcome message... Response: SSH-1.99-OpenSSH_4.2
|
|
|
Post by tbovingdon on May 27, 2007 22:21:40 GMT 7
ok... connected through sys user....
is there a way to connect through users that are added through user interface?
|
|
|
Post by peterfu on May 28, 2007 23:28:40 GMT 7
is there a way to connect through users that are added through user interface? Not without manual changes. If You look at the /etc/passwd file, then You will notice that for all via web interface generated users the home directory is set to /dev/null and the shell used is set also to /dev/null. If You want now to connect via ssh using another user, then You have to change these entries - it must be a valid home dir and a valid shell. You will immediate see the difference if You comapre it with the entry for the sys user. br Peter
|
|
|
Post by tbovingdon on May 30, 2007 5:49:28 GMT 7
peter,
Thanks for the reply, i did see that, when i attempted to modify the passwd file, the directory appeared to be locked. Is there an easy way around this lock?
|
|
|
Post by peterfu on May 30, 2007 10:24:39 GMT 7
What do You mean with "directory is locked" ?
To modify the passwd file You have to login via SSH and then change the file with vi in the console - the sys user installed with the SYSUSER module has all rights to do that. For example. to enable the login for the user test: Original entry: test:x:1012:102:Linux User,,,:/dev/null:/dev/null Changed to: test:x:1012:102:Linux User,,,:/raid/data/private/test:/bin/sh So the home directory for the user is then /raid/data/private/test and the shell used is /bin/sh With this entry I now can login with the user test via ssh and as far as I can tell there are no side effects.
br Peter
|
|
|
Post by tbovingdon on May 30, 2007 18:32:39 GMT 7
Weird... it worked that time.
Now however that i try to connect to sftp niether my test user nor my sys user can log in.
ftp works for test user,
ssh works for sys user....
Status: Connected with 192.168.1.2:22. Waiting for welcome message... Response: SSH-1.99-OpenSSH_4.2 Error: Timeout detected! Error: Unable to connect!
|
|
|
Post by tbovingdon on May 30, 2007 22:12:27 GMT 7
LOL
Found why sys user wasn't connecting.. I was using filezilla quick connect. You must setup the connection using SFTP using SSH2 and connect that way.
thanks for your help
|
|
|
Post by RazzleUltra on Jun 12, 2007 22:13:01 GMT 7
Sorry for the spamming of FTP related questions today, I'm just having a bit of a blitz on it! I've followed the instructions above, and have now got an ftp user set up with a default shell of /bin/sh and a home directory of /raid/data/ftproot/ which ties in nicely with the restricted folders I've set up using the FTPAccess module. However.... Under my FTP client, I can just click on 'Up' a few times and before you know it, I'm in the root of the n5200 which is not where I want ftp guests to be! Is there any way around this?
|
|
|
Post by tbovingdon on Jun 17, 2007 0:13:18 GMT 7
I too am wondering the very same question.
Have you had any progress?
|
|
|
Post by tbovingdon on Jun 17, 2007 1:22:32 GMT 7
|
|
|
Post by heinowalther on Aug 24, 2007 4:47:21 GMT 7
Hi there
I am also trying to get PureFTPD to work with TLS, and the original version of the binary works ok, yet if I enable the PROFTPD module the option --tls=2 doesn't seem to work.. maybe it was left out during compiling... Any chance the creator of the module could compile a version with TLS included?
I have read the messages above, and sadly SSH and SFTP just doesn't do it for me, because I have users using FlashFXP which doesn't support SSH.
I hope the TLS will be compiled in, in the next version.
Thanks.
|
|