• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 840
  • Last Modified:

User Management on vsftpd

I'm trying to ftp into my remote Linux server.  I have already installed vsftpd.  However when I SSH into my remote server, I don't use a user name/password combination.  I use a certificate instead.  In this case, how I can authenticate my FTP user?  Thanks.
0
thomaszhwang
Asked:
thomaszhwang
  • 3
  • 3
  • 2
  • +3
6 Solutions
 
farzanjCommented:
ftp is an insecure protocol in which passwords travel over the network unencrypted.  ftp therefore doesn't need a certificate mechanism.  ssh is a secure protocol and communication is encrypted, including passwords.  So to automate authentication you need certificates.

FTP can simply be scripted. It depends upon your client program how you have to script it.  LFTP is easier/better.

Reference
http://www.stratigery.com/scripting.ftp.html
0
 
thomaszhwangAuthor Commented:
Thanks farzanj, but I think vsftpd is using SFTP, isn't it?  I just want to know how to authenticate the user in my case.
0
 
farzanjCommented:
No.  vsftpd doesn't.  I think you are thinking about sftp.  That is based on SSH daemon.  Both scp and sftp are ssh based.  VSFTPD is not.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
asiduCommented:
Have a look at the configuration file /etc/vsftpd.conf you have many options which you could set.
Also have you added the users name in the  /etc/vsftpd.user_list

After making changes in the configuration file restart the ftp service.
0
 
a1jCommented:
Use sftp client, it works over ssh. You don't need vsftp server for that.
0
 
savoneCommented:
Please listen to farzanj, vsftpd is an FTP server daemon and FTP is a very insecure protocol.  

You can use vsftp for FTPS Which is FTP over SSL, but why both if you already have SFTP.

SFTP is a subsystem of SSH.  If you can SSH to your box you can SFTP to it.

Filezilla is a nice client for SFTP.


If you use SFTP you can just add a local user to the system and they will automatically be able to SFTP in.  You can even lock them in their home directory if you want so they can not get into any of the system files above their home.

Here is a good tutorial showing how to simply and effectively chroot users into their home directories:
http://www.putorius.net/2011/04/how-to-chroot-users-in-sftp-server.html

0
 
crazedsanityCommented:
First off, some clarification: vsftpd is just a program/daemon that runs FTP.  FTP on vsftp can be configured to use SSL/TLS/SFTP.  I'm not sure why that was overlooked.

@thomaszhwang: is FTP a requirement, or do you just need to be able to transfer files?  If file transfer is the only requirement, I would definitely go with an SSH server, which implements sftp (FTP over SSH) as well; it is the easiest to setup and uses local accounts.  If you want password-less access using sftp (or scp), copy the local public key (generated via "ssh-keygen") to the remote server:
ssh-copy-id /home/user/.ssh/id_dsa.pub user@remote.machine

Open in new window

0
 
crazedsanityCommented:
A quick disclaimer: the whole "sftp" vs. "ftps" thing is a bit confusing for me; there is FTP with SSL and FTP over SSH, and they seem to be used interchangeably almost everywhere.  SSH has a config file that can optionally start it's sftp subsystem, which is what I recommend if FTP is required.
0
 
thomaszhwangAuthor Commented:
What I want to do is to use Dreamweaver synchronize my local files to my remote server.  Dreamweaver has an SFTP option, but it requires a user name/password combination to access the server.  For now, I'm using a certificate instead of a user name/password combination to SSH into the server.  In this case, does it possible for me to use Dreamweaver to synchronize the files?  Thanks everyone!
0
 
farzanjCommented:
For sftp, certificates is the correct way to authenticate without manually entering username /password.  Yes, it should do it.
0
 
thomaszhwangAuthor Commented:
Thanks everyone!
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 3
  • 3
  • 2
  • +3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now