Solved

vsftpd, limit connections

Posted on 2003-12-04
6
866 Views
Last Modified: 2013-12-15
hi, have got vsftpd running and want to limit connections, is this possible? the docs are a bit, hmm, lacking.. great software though, easier to set up than WU and others, cheers -
0
Comment
Question by:linux_chap
  • 4
  • 2
6 Comments
 
LVL 24

Expert Comment

by:shivsa
ID: 9877520
u can limit the connection by changin the values in xinetd.

check this link for full explanation.
http://www.linuxplanet.com/linuxplanet/tutorials/4505/4/
0
 

Author Comment

by:linux_chap
ID: 9877749
havn't got an xinetd file for vsftpd, so i am guesing it is running as standalone and controlled from xinetd, or did you mean to controll the overall connections from xinetd.conf by changing the defualt from 60 to something else?
instances             = 10 for example
exellent looking resource, linuxplanet..
/me new to all this :S
0
 
LVL 24

Accepted Solution

by:
shivsa earned 50 total points
ID: 9877956
it is upto u, if u want controll all the connection change the values in default or u have to put this line into service ftp to controll ftp connection.
instances             = 10

Let's use the vsftpd xinetd configuration file:

# default: off
# description: The vsftpd FTP server serves FTP connections. It uses \
#       normal, unencrypted usernames and passwords for authentication.
service ftp
{
        disable         = no
        socket_type             = stream
        wait                    = no
        user                    = root
        server          = /usr/sbin/vsftpd
        nice                    = 10
}

Notice that this file, like all of its cousins in /etc/xinetd.conf, starts with a line in the form service <servicename>. <servicename> is one of the items in /etc/services or one of the other files listed in this tutorial, and refers to the basic functionality provided by this particular tool. In the case of vsftpd, it's not hard to guess that the service is ftp.

Inside the braces are the options for this specific service. Here I'm only going to define what these particular settings mean. We'll get into the specifics of these options in the tutorial. The vsftpd setup is, from top to bottom:

    * The port is open and the service is available.
    * FTP uses TCP so that it can ensure that all of the data has arrived, and so is a streaming socket type.
    * Streaming sockets are typically set to no wait.
    * This FTP server runs as root.
    * This FTP server is located at /usr/bin/vsftpd.
    * This command runs at an average priority level.

All of these settings are in addition to what was set in xinetd.conf.
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 24

Expert Comment

by:shivsa
ID: 9878228
Dear Linux_chap,

i do not complain usully but want to know why grade 'C'.

regards,
Shiv
0
 

Author Comment

by:linux_chap
ID: 9878407
sorry, but i didn't feel that helped me, being  a bit new to all this linux stuff, just copied and pasted other website, i am still at a loss as to why there is no vsftpd file in the xinetd.d directory. So I decided to do my homework first and learn all about xinetd (i think my installation of it is not right)
Soooo this was my first go on this "forum" and not sure how it all works, didn't mean to offend .After (re) reading the "how do i know what grade to give" h
thing I should of given you the chance to sort out the area of my misunderstanding with xinetd, apologies..
0
 
LVL 24

Expert Comment

by:shivsa
ID: 9878585
okie no problem. i understand your things.

good luck.
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Daily system administration tasks often require administrators to connect remote systems. But allowing these remote systems to accept passwords makes these systems vulnerable to the risk of brute-force password guessing attacks. Furthermore there ar…
This is the error message I got (CODE) Error caused by incompatible libmp3lame 3.98-2 with ffmpeg I've googled this error message and found out sometimes it attaches this note "can be treated with downgrade libmp3lame to version 3.97 or 3.98" …
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

896 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now