ProFTPD v1.2.0pre9 on RedHat 6.x NHF
William Jensen
16 January 2000
What is ProFTPD?
From the ProFTPD web site:
ProFTPD is a ftp server primarily written for the various unix
variants though it will now compile under win32. It has been designed to
be much like Apache in concept taking many of the ideas (configuration
format, modular design, etc) from it.
Why would you want to use ProFTPD?
- ProFTPD provides a very secure ftp daemon that is easily
configured and highly customizable.
- ProFTPD supports multiple virtual servers, anonymous FTP, per
directory configuration, and more.
Where do you get ProFTPD?
The ProFTPD home page is here.
If you want to get ProFTPD with one quick command use:
- ncftpget
ftp://ftp.proftpd.net/pub/proftpd/proftpd-1.2.0pre9.tar.gz
Pre-Compiling Notes
I am assuming a couple of conditions for the rest of this NHF:
- you want to run proftpd as a service, not stand alone
- you want anonymous ftp access
Compiling, Installing, & Configuration
Compiling ProFTPD is straight forward:
- tar -zxvf proftpd-1.2.0pre9.tar.gz (a note on the tar
options...z filters the file through gzip, x extracts the file from the
archive, v is for verbal output, and f is the named file)
- cd proftpd-1.2.0pre9
- ./configure
- make
- su (su is used to obtain super user or root privileges)
- make install
Next you need to tell inetd that you are going to use proftpd instead
of the standard ftp service.
- edit your /etc/inetd.conf with the editor of your choice
- comment out the current ftp line (ftp stream tcp nowait root
/usr/sbin/tcpd in.ftpd -l -a) by putting a # at the beginning of the line
- add ftp stream tcp nowait root /usr/local/sbin/proftpd
proftpd
Next you need to modify the configuration file that "make install"
provided.
- edit the file /usr/local/etc/proftpd.conf with your favorite
editor
- find ServerName "ProFTPD Default Installation"
- change the "ProFTPD Default Installation" to be whatever you want to
call your ftp server
- find ServerType standalone
- change it to ServerType inetd
- add ServerIdent off after ServerType (this tells the server not to
supply the version of server software your using...it may not stop the
hackers, but at least you will not be advertising which daemon your
running)
- find Group nogroup
- change it to Group nobody
- find MaxClients 10
- change 10 to whatever max number you want...I usually use 5 because I
am stingy about my bandwith (what little of it there is) and I am not
mirroring any FTP sites.
Next you need to change the shell the ftp account is assigned to
Next you need to add /bin/false to the list of valid shells
- add /bin/false to the end of /etc/shells
Next, if /home/ftp does not exist, you will need to create it. (the
default dir can be anyplace you like, but I choose to put it in
/home/ftp...if you do change the default directory from /home/ftp to
something else you will need to change the "Anonymous ~ftp" line in
/usr/local/etc/proftpd.conf to reflect this)
Next you need to tell inetd that it needs to restart and start
accepting ftp connections with proftpd.
Finally, exit su and try it out.
Final Thoughts
This NHF should get you "up" but it is still up to you to look into the
finer details of configuration. ProFTPD is simply amazing and this NHF
has not even touched what it can do. For further information see:
Last modified: Date: 2000/01/17 11:45:06
We would like to hear your feedback.
|