tid=21211&參考:
0 O( q; P& z$ ^' N" @9 Z$ ?6 y6 whttp://www.111cn.net/sys/CentOS/88456.htm* I9 U% X3 O. W
https://www.centos.bz/2011/03/centos-pureftpd-install/
! U7 |# C+ `! q5 L6 U; v
1 t2 W8 s- f. {* d) B% {通过Yum安装Pure-ftpd的详细步骤如下:! d( Y& {8 {; m- f& E7 ^
$ L5 d9 Z1 {0 G/ o
步骤一:配置yum源以下是針對 CentOS 6.X& z: U }" d$ E! Y
备份(如有配置其他epel源)
/ g# F" @0 `& |4 Q ?mv /etc/yum.repos.d/epel.repo /etc/yum.repos.d/epel.repo.backup
, M0 `# N: B& U% N下载新repo 到/etc/yum.repos.d/- j) Z* |& N, b0 Y2 z6 }+ x
wget -O /etc/yum.repos.d/epel.repo http://mirrors.aliyun.com/repo/epel-6.repo' R& y; a7 t+ E: F; D! h, k
yum makecache' J/ H* o4 U) H( O+ `2 h
" C& @9 U: C! N7 l& \0 p以下是針對 CentOS 5.X, ^* N: f. U: b! v, O2 s
cd /etc/yum.repos.d/9 F; y9 K0 N0 T/ i
wget http://centos.karan.org/kbsingh-CentOS-Extras.repo
# V D% Y% y' F$ P- P5 r3 F0 d( k l; ]9 a5 [6 L. s) w* U
必需激活kbs-CentOS-Testing庫。打開kbsingh-CentOS-Extras.repo文件,把enabled=0改成enabled=1。+ ]! {; g* I5 @ W) ?# `9 i* @; w* A
vi kbsingh-CentOS-Extras.repo
1 Y( Z3 @' s+ t4 V- [kbs-CentOS-Testing]
- name=CentOS.Karan.Org-EL$releasever - Testing
- gpgcheck=1
- gpgkey=http://centos.karan.org/RPM-GPG-KEY-karan.org.txt
- enabled=1
- baseurl=http://centos.karan.org/el$releasever/extras/testing/$basearch/RPMS/
- rpm --import http://centos.karan.org/RPM-GPG-KEY-karan.org.txt
rpm -Uvh ftp://ftp.trychlos.org/pub/CentOS/6.3/pcalfs/x86_64/RPMS/epel-release-6-7.noarch.rpm (CentOS 6.7)6 O o2 l8 @4 t8 P3 Y X H3 R
上列是以CentOS 6.7,假如是CentOS 6.8 則在google 搜尋 epel-release-6-8.noarch.rpm的載點,以此類推
' v: N: Z1 `$ e: V7 U- y& Y+ c3 N2 {; E ?
步骤二:yum安装
; u' H7 z! {, F0 Eyum install pure-ftpd -y5 S7 [: X8 W; G: k0 x
6 g/ `: C4 w7 E6 B' l* ~
步骤三:修改配置文件
% ?0 M3 k" l/ m3 _) ~vim /etc/pure-ftpd/pure-ftpd.conf
* Z5 _2 a! f0 j( i+ Y: p- ^+ ~& V
PureDB /etc/pure-ftpd/pureftpd.pdb5 o% _8 d& Q: i# L& B4 e# e7 q( G
#去掉这行注释,指定路径,PureDB用户数据库文件
/ A6 k( Y& n5 ?: |0 h' `VerboseLog yes4 C, p$ H; b5 h# p+ f3 k: B
#开启日志 /var/log/pureftpd.log/ T! O8 _3 F" P, f( w3 x& o9 ?
NoAnonymous yes+ i2 L M, @% S0 Y0 B9 A
#拒绝匿名用户登录( b& N$ ~2 Y8 D$ Q3 R) c
PassivePortRange 48000 500005 w& i3 F4 z& p ]9 b* C. ]
#使用被动模式,限制端口。' W( G C1 B/ g! a& [
$ @% j# i2 z' t/ ]
3 ?" b$ }8 C: d
! \: T( V' K) v: y5 z7 C9 M步骤四:配置防火墙策略
% h: U7 D" t! M" v9 R3 K- hiptables -A INPUT -p tcp --dport 21 -j ACCEPT. d2 u) W$ m9 D8 k
iptables -A INPUT -p tcp --dport 48000:50000 -j ACCEPT
* e+ X4 W' Y4 S2 t- o! ~5 P" j+ R- P5 j- ~
步骤五:启动pure-ftpd
5 F4 n7 B' P) mchkconfig pure-ftpd --level 345 on (設定每次開機自動執行)
& n( Z8 a0 I& |) e4 i% K0 F7 U假如找不到chkconfig,which chkconfig 可以找到它的目錄位置,一般應該在/sbin,如果/sbin也沒有則表示沒安裝chkconfig2 a, b( V3 ?# X2 G8 e) N
yum install chkconfig 安裝chkconfig- G% Q! g) _$ i U$ b
假如安裝完也 chkconfig: command not found
1 {! s& `2 K% ^5 P則做一個連結 8 `+ I, e9 B: d4 v+ ], V, C$ l6 y7 G
ln -s /sbin/chkconfig /usr/bin/
2 `) x; d( [( C7 ^" ]+ b
/ q6 c! V- X( z4 Q0 d0 t/etc/init.d/pure-ftpd start 或 service pure-ftpd start使用源碼安裝請參考 http://www.111cn.net/sys/CentOS/88456.htm假如 service pure-ftpd start 也顯示 service: command not found
+ W) ]: f! ?- O! Q也作一個連結
) d6 ~; B& r& |, R+ j n9 X* P% Pln -s /sbin/service /usr/bin/
* r+ ]- b' U# P' m! x- j# r1 S" a# {, i( w/ t- E$ N
安裝 ftp client :
+ u H, ^7 P) ?& u- }yum install ftp -y ]# l2 a/ R# ?) Y1 s) N8 p6 K
/ J; ]* `1 j2 x
註:
& s) K/ r \0 F; N6 l
: c6 m4 D9 v6 y L1.7 ]2 w+ A. ~6 k6 B
when login ftp show error:; h! F; k# f7 e+ V6 k
530 Login authentication failed
+ v T* _: m+ a2 Z8 a/ I4 N! @2 pLogin failed.7 G2 K7 k7 P3 R/ U# P+ X
% S: b: C/ G5 ?. ]# _ D
3 Q& H, l! a9 O! H1 v# H
check /var/log/secure
. R3 n5 m5 y' G( NNov 3 10:03:44 DLTB-2475 pure-ftpd: pam_listfile(pure-ftpd:auth): Couldn't open /etc/ftpusers c3 _. W; u, \& T
Nov 3 10:03:44 DLTB-2475 pure-ftpd: PAM audit_log_acct_message() failed: Operation not permitted9 j1 g# U/ p9 b1 k" d" `
% f; ?" ~& z% W/ n" X( k+ BSol:
5 ~4 q+ _8 D: k D) ~vi /etc/pure-ftpd/pure-ftpd.conf
& D/ t) w) {* Y! L將PAMAuthentication 認證改成 UnixAuthentication認證 ,即1 u% f' W* F' I' ]2 |' \( m( x
#PAMAuthentication yes 註解掉" U+ U3 I* C& o5 z7 s2 f
UnixAuthentication yes 取消註解* h' X- Z; |) N+ T: Z4 J: {3 g
service pure-ftpd restart
" |5 h& s7 b0 X) ^$ S; {$ y
& `' g+ t& V# u9 O$ u! m1 h2.; z, Q8 j0 X" ^/ E9 [; F* u4 a" c
When login ftp server from remote host show errors:
* u6 X0 G7 h5 Hconnect: No route to host
6 S# L* {# \ e5 ]' i原因是防火牆擋住了,或iptable没有預設NAT處理,SOL:, A* x& z- x \( J, m0 `1 h3 _
stop iptables or 適當設定 iptables
( j O6 N- |, N5 W- @( |或
! d- ]9 o# x% t% V$ f; h$ C/ b$ Jvi /etc/sysconfig/iptables-config
. x Q, ~3 A5 A) L更改 IPTABLES_MODULES=”” 為 IPTABLES_MODULES=”ip_nat_ftp ip_conntrack_ftp”" r8 U6 c4 w; |" h7 |2 M+ ?+ k
service iptables reload8 Z1 k% @% P6 `) R
+ e7 W3 ?* P5 M) @6 A- U
3.
* ^- n8 W) V. @, F421 Unable to read the indexed puredb file (or old format detected) - Try pure-pw mkdb
, X/ ?3 |- g5 I2 e; kLogin failed.
' \1 h" h* f* B. \% v
) s- K1 d/ h! {8 n! Y5 u4 [SOL:
8 E% y5 C P& _! U( zvi /etc/pure-ftpd/pure-ftpd.conf
; }/ w9 b5 e- m% u/ L將 PureDB /etc/pure-ftpd/pureftpd.pdb 註解掉
- p# B/ @* l7 p k' H; K4./ W6 E6 E) C& o# e& u
ftp> put file8 z# Z$ T' \3 q2 u: [
local: file remote: file# O" L, H8 F F# S' c6 b5 `) r
227 Entering Passive Mode (122,117,11,31,193,78)4 g% o4 N1 k N" _4 [
553 Can't open that file: Permission denied
5 l: S$ }" ]0 K' I( j& X0 R8 D# z0 A1 U1 O, c
SOL:
! `( ?( [# I4 ~0 r% e+ n1 M6 xls -l /home/user1
1 t0 B; R5 D# g6 S) wdrwxr-xr-x. 2 root root 4096 2016-01-17 04:46 user1( ]+ Y+ `3 C6 d# |' K2 n/ ^
chown user1:user1 /home/user1
# Q+ M# j' ]% M$ M2 m a1 S. O5 Q$ Z( s0 U# T2 }
[ftp 指令]6 @: d$ U/ z& ?5 i8 |. B
lcd 改變local目錄, {6 w N7 Y& z/ Q, O6 S* u
lls 查看local目錄或檔案 (等同 !ls)7 {0 `: z6 ]! F. M
' U7 k) G0 }2 ~ X/ I6 R6 M1 S/ Z& k7 M5 b
& t: }5 L: D% v4 \* Y( w9 @9 H
# N# _0 d4 w" h7 S% e6 ~* `3 w) i
|
發表於 2015-10-30 22:13:17
