You are not logged in.

#1 2013-01-15 18:41:59

ryzion
Member
Registered: 2012-03-20
Posts: 95

Which ftp server/configuration

Hi,

I'm setting up a home server which should provide various services, one being a ftp server for file sharing in the intranet (with weak usernames and passwords eg. foo:bar), as well as one account which can be accessed through the internet. Choosing "bar" as password for the outside world might not be the best idea. I'm looking for a solution which grants only specific ftp users permissions to accept an alien connection. In the past I used vsftpd for intranet connections. I'd really like to avoid setting up a VPN. Any ideas? Thank you!

Offline

#2 2013-01-15 19:07:12

ewaller
Administrator
From: Pasadena, CA
Registered: 2009-07-13
Posts: 19,739

Re: Which ftp server/configuration

I trust vsftp.  How is that related to setting up a VPN?

IMHO, the best solution is just to use ssh.  Connect to it using sftp.


Nothing is too wonderful to be true, if it be consistent with the laws of nature -- Michael Faraday
Sometimes it is the people no one can imagine anything of who do the things no one can imagine. -- Alan Turing
---
How to Ask Questions the Smart Way

Offline

#3 2013-01-15 19:10:52

ryzion
Member
Registered: 2012-03-20
Posts: 95

Re: Which ftp server/configuration

How can I deny internet connections to the share of "foo" but grant connections to "mysecureshare" ?

Offline

#4 2013-01-15 19:16:33

ewaller
Administrator
From: Pasadena, CA
Registered: 2009-07-13
Posts: 19,739

Re: Which ftp server/configuration

Unless I am really missing something, I am going to respectfully suggest you look at man vsftpd.conf

Take a look at user lists.


Nothing is too wonderful to be true, if it be consistent with the laws of nature -- Michael Faraday
Sometimes it is the people no one can imagine anything of who do the things no one can imagine. -- Alan Turing
---
How to Ask Questions the Smart Way

Offline

#5 2013-01-15 19:48:21

ryzion
Member
Registered: 2012-03-20
Posts: 95

Re: Which ftp server/configuration

I don't really see how userlists can block connections from the internet but grant local connections for one ftpuser and allow both (local and foreign) connections for others.

ftpuser user1 shall accept connections from the local network and the internet, whereas user2 is only accessible through my local network.

Offline

#6 2013-01-15 20:06:22

ewaller
Administrator
From: Pasadena, CA
Registered: 2009-07-13
Posts: 19,739

Re: Which ftp server/configuration

See, I was missing something smile  I missed that you wanted to be able to have all of the users browse from the local network, but limit those from outside.

What about two instances -- one on port 20/21 for the local network, and a second on a pair of non-standard ports for the outside world.  Limit that one with user lists.  Configure the port forwarding of your router to forward 20 and 21 to the IP of your server using the non-standard ports.


Nothing is too wonderful to be true, if it be consistent with the laws of nature -- Michael Faraday
Sometimes it is the people no one can imagine anything of who do the things no one can imagine. -- Alan Turing
---
How to Ask Questions the Smart Way

Offline

#7 2013-01-15 20:21:04

ryzion
Member
Registered: 2012-03-20
Posts: 95

Re: Which ftp server/configuration

Thanks I'll try that. Just to be sure, I'll have to change vsftp@.service to load the right config?

Offline

#8 2013-01-15 20:34:19

ewaller
Administrator
From: Pasadena, CA
Registered: 2009-07-13
Posts: 19,739

Re: Which ftp server/configuration

ryzion wrote:

Thanks I'll try that. Just to be sure, I'll have to change vsftp@.service to load the right config?

Honestly, I've not tried that since moving to systemd and I am not someplace where I can experiment.  If you need help, I can look at this when I get home this evening (GMT-8)


Nothing is too wonderful to be true, if it be consistent with the laws of nature -- Michael Faraday
Sometimes it is the people no one can imagine anything of who do the things no one can imagine. -- Alan Turing
---
How to Ask Questions the Smart Way

Offline

#9 2013-01-17 19:58:46

nomorewindows
Member
Registered: 2010-04-03
Posts: 3,362

Re: Which ftp server/configuration

There's always sftp with openssh.


I may have to CONSOLE you about your usage of ridiculously easy graphical interfaces...
Look ma, no mouse.

Offline

Board footer

Powered by FluxBB