laobai025 发表于2年前
  • 发表于 2年前
  • 阅读 1
  • 收藏 0
  • 点赞 0
  • 评论 0


(1)安装vsftp: 1 [centos@localhost ~]$ sudo yum install vsftpd #sudo 给普通用户添加root权限,用root用户登录不用使用sudo (2)完成安装,配置vsftp: vsftp的配置文件在:/etc/vsftpd/目录下: vsftpd.conf //vsftp的配置文件 user_list、ftpusers //禁止登录vsftp的用户名单 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 [centos@localhost vsftpd]$ sudo vim /etc/vsftpd/vsftpd.conf #打开配置文件

Example config file /etc/vsftpd/vsftpd.conf

The default compiled in settings are fairly paranoid. This sample file

loosens things up a bit, to make the ftp daemon more usable.

Please see vsftpd.conf.5 for all compiled in defaults.

READ THIS: This example file is NOT an exhaustive list of vsftpd options.

Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd's


Allow anonymous FTP? (Beware - allowed by default if you comment this out).

anonymous_enable=NO #是否允许匿名用户登录

Uncomment this to allow local users to log in.

local_enable=YES #是否允许本地用户登录

Uncomment this to enable any form of FTP write command.

write_enable=YES #登录用户是否具有文件的写权限

Default umask for local users is 077. You may wish to change this to 022,

if your users expect that (022 is used by most other ftpd's)

local_umask=022 #本地文件的文件掩码

Uncomment this to allow the anonymous FTP user to upload files. This only

has an effect if the above global write enable is activated. Also, you will

obviously need to create a directory writable by the FTP user.

anon_upload_enable=YES #是否允许匿名用户上传文件

Uncomment this if you want the anonymous FTP user to be able to create

new directories.

anon_mkdir_write_enable=YES #是否允许匿名用户创建文件夹

Activate directory messages - messages given to remote users when they

go into a certain directory.

dirmessage_enable=YES #激活目录信息,当用户更改目录时,出现提示信息

The target log file can be vsftpd_log_file or xferlog_file.

This depends on setting xferlog_std_format parameter

xferlog_enable=YES #启用上传和下载的日志功能

Make sure PORT transfer connections originate from port 20 (ftp-data).

connect_from_port_20=YES #启动ftp数据连接端口请求

If you want, you can arrange for uploaded anonymous files to be owned by

a different user. Note! Using "root" for uploaded files is not


#chown_uploads=YES #chown_username=whoever

The name of log file when xferlog_enable=YES and xferlog_std_format=YES

WARNING - changing this filename affects /etc/logrotate.d/vsftpd.log

#xferlog_file=/var/log/xferlog #日志文件的默认目录

Switches between logging into vsftpd_log_file and xferlog_file files.

NO writes to vsftpd_log_file, YES to xferlog_file


You may change the default value for timing out an idle session.


You may change the default value for timing out a data connection.

#data_connection_timeout=120 #空闲会话中断时间默认是2分钟

It is recommended that you define on your system a unique user which the

ftp server can use as a totally isolated and unprivileged user.


Enable this and the server will recognise asynchronous ABOR requests. Not

recommended for security (the code is non-trivial). Not enabling it,

however, may confuse older FTP clients.


By default the server will pretend to allow ASCII mode but in fact ignore

the request. Turn on the below options to have the server actually do ASCII

mangling on files when in ASCII mode.

Beware that on some FTP servers, ASCII support allows a denial of service

attack (DoS) via the command "SIZE /big/file" in ASCII mode. vsftpd

predicted this attack and has always been safe, reporting the size of the

raw file.

ASCII mangling is a horrible feature of the protocol.

#ascii_upload_enable=YES #ascii_download_enable=YES #是否允许使用ASCII格式来上传下载文件

You may fully customise the login banner string:

#ftpd_banner=Welcome to blah FTP service. #在ftp服务器中设置欢迎登陆

You may specify a file of disallowed anonymous e-mail addresses. Apparently

useful for combatting certain DoS attacks.


(default follows)


You may specify an explicit list of local users to chroot() to their home

directory. If chroot_local_user is YES, then this list becomes a list of

users to NOT chroot().

#chroot_local_user=YES #chroot_list_enable=YES

(default follows)


You may activate the "-R" option to the builtin ls. This is disabled by

default to avoid remote users being able to cause excessive I/O on large

sites. However, some broken FTP clients such as "ncftp" and "mirror" assume

the presence of the "-R" option, so there is a strong case for enabling it.


When "listen" directive is enabled, vsftpd runs in standalone mode and

listens on IPv4 sockets. This directive cannot be used in conjunction

with the listen_ipv6 directive.


This directive enables listening on IPv6 sockets. To listen on IPv4 and IPv6

sockets, you must run two copies of vsftpd with two configuration files.

Make sure, that one of the listen options is commented !!


userlist_enable=YES //用户列表中的用户是否允许登录FTP服务器,默认是不允许 tcp_wrappers=YES (3)连接ftp服务器: windows环境下: wKioL1cn-xGw5G_nAABYVjOptu4342.png Linux环境下: 1、连接ftp服务器: 1 2 3 4 格式:ftp [hostname| ip-address] a)在linux命令行下输入: ftp b)服务器询问你用户名和密码,分别输入用户名和相应密码,待认证通过即可。 2、下载文件 下载文件通常用get和mget这两条命令。 a) get 格式:get [remote-file] [local-file] 将文件从远端主机中传送至本地主机中。 如要获取远程服务器上/usr/your/1.htm,则 1 get /usr/your/1.htm b) mget       格式:mget [remote-files] 从远端主机接收一批文件至本地主机。 如要获取服务器上/usr/your/下的所有文件,则 1 2 ftp> cd /usr/your ftp> mget . 3、上传文件 a) put 格式:put local-file [remote-file] 将本地一个文件传送至远端主机中。 如要把本地的1.htm传送到远端主机/usr/your,并改名为2.htm 1 ftp> put 1.htm /usr/your/2.htm

b) mput 格式:mput local-files 将本地主机中一批文件传送至远端主机。 如要把本地当前目录下所有html文件上传到服务器/usr/your/ 下 1 2 ftp> cd /usr/your ftp> mput *.htm 4、断开连接 1 ftp> bye

  • 打赏
  • 点赞
  • 收藏
  • 分享
共有 人打赏支持
粉丝 0
博文 12
码字总数 6111
* 金额(元)
¥1 ¥5 ¥10 ¥20 其他金额
* 支付类型