HPE Community
Operating System - Linux
1823955 Members
3836 Online
109667 Solutions
New Discussion юеВ

Re: Secure FTP configuration

 
SOLVED
Go to solution
Carlos Munoz Lopez
Frequent Advisor

тАО01-14-2004 01:10 AM

тАО01-14-2004 01:10 AM

Secure FTP configuration

I have wu-ftp installed on my server running Linux 7.2, and I want to configure sftp but I don't know how, I would like some help on this. I already installed OpenSSH. Every time I try to access via ftp to the server it displays the following:

Connected to 10.20.30.40.
220 abc123 FTP server (Version wu-2.6.1-18) ready.
Name (10.20.30.40:root): root
331 Password required for root.
Password:
530 Login incorrect.
Login failed.

How can I solve this problem??
0 Kudos
Reply
8 REPLIES 8
Sergejs Svitnevs
Honored Contributor

тАО01-14-2004 01:16 AM

тАО01-14-2004 01:16 AM

Re: Secure FTP configuration

check out the following wu-ftpd guide:
http://www.wu-ftpd.org/HOWTO/

Regards,
Sergejs
Reply
Sunil Sharma_1
Honored Contributor

тАО01-14-2004 01:17 AM

тАО01-14-2004 01:17 AM

Re: Secure FTP configuration

Hi,

check /etc/ftpuser file it contains name of users who can not do ftp.

if root is listed there please # it.

have a look on this

http://www.die.net/doc/linux/man/man5/ftpusers.5.html

Sunil
*** Dream as if you'll live forever. Live as if you'll die today ***
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

тАО01-14-2004 01:33 AM

тАО01-14-2004 01:33 AM

Solution

Re: Secure FTP configuration

wu-ftp is not secure.

It can not be made secure for one good reason: it does authenticiation in clear text. If you log into it remotely from halfway across the world, the root password is going to go back and forth in clear text.

Intercepting it is a trivial matter.

By default RH 7.2 disables root ftp access which lowers your exposure to potentially fatal problems. That configuration in wu-ftpd is in the ftpusers file, which you've already gotten some good posts on.

wu-ftpd has nothing to do with secure ftp(sftp)

That is part of openssh.

The Red Hat media you used to make that server 7.2 has openssh client and openssh server 3.0 or 3.1 on it.

Install those two apps and dependencies and you are in the scure ftp business. ssh uses encrypted authentication and root sftp access can be used safely.

See attached doc on password free access.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Reply
Carlos Munoz Lopez
Frequent Advisor

тАО01-14-2004 01:33 AM

тАО01-14-2004 01:33 AM

Re: Secure FTP configuration

Thank you for the information, but I really want to use sftp, but I don't know how to configure it.
0 Kudos
Reply
Carlos Munoz Lopez
Frequent Advisor

тАО01-14-2004 01:38 AM

тАО01-14-2004 01:38 AM

Re: Secure FTP configuration

I have both openssh the client and the server installed. What do I have to do to use sftp instead of wu-ftp??
0 Kudos
Reply
Sergejs Svitnevs
Honored Contributor

тАО01-14-2004 02:11 AM

тАО01-14-2004 02:11 AM

Re: Secure FTP configuration

Sftp uses ssh2 in data connections. The use of sftp is simple.
If you would connect via sftp to your account myname on host1, then use the command:
sftp myname@host1

Regards,
Sergejs
Reply
Fugit Tempus
Occasional Advisor

тАО01-14-2004 02:25 AM

тАО01-14-2004 02:25 AM

Re: Secure FTP configuration

sftp is part of ssh. This will work right out of the box. As the person above noted just
"$ sftp name@host"

The one draw back to this is your giving them access to the server by giving them shell access. You can limit the access with a change root jail.

http://www.coding-zone.com/chroot-sftp.phtml
http://chrootssh.sourceforge.net/docs/chrootedsftp.html#Build

Hope this helps and good luck.
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

тАО01-14-2004 02:33 AM

тАО01-14-2004 02:33 AM

Re: Secure FTP configuration

The best place to learn about configuration of openssh is:

http://www.openssh.org

There is some doc at http://www.tldp.org

HP-UX documentation on SEcure Shell(which is openssh) is also useful. search manuals for Secure Shell in the itrc search screen for more information.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.