![]() ![]() The "local_enable" options indicates that local user accounts can be used for authentication. To do this, edit the "/etc/vsftpd/nf" file, setting the "anonymous_enable" entry as follows. This is fine for the RHCSA exam, but on real servers you would probably want to disable anonymous access. FTP Server : Securityīy default the FTP installation allows anonymous access, which is potentially dangerous. More information on SELinux can be found here. You can check the current context setting on files and directories using the "ls -alZ" command. # semanage fcontext -a -t public_content_t "/var/ftp(/.*)?" The public_content_t context should be assigned to all public content. The setsebool command is used to set a specific boolean value. ![]() The SELinux booleans associated with the vsftpd service are displayed using the getsebool command. If you are using SELinux, you will need to consider the following points. Iptables -A INPUT -p tcp -dport 21 -j ACCEPT On the "Trusted Services" section, scroll down the list and check the "FTP" option, then click the "Apply" button.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |