Tag

new user

vsftpd Ubuntu 12.04 Install and Add Secure User

By | Sample Work | No Comments

60 Second Install. 3 – 2 – 1 – GO!

sudo apt-get install vsftpd

sudo nano /etc/vsftpd.conf

Uncomment the Following:

write_enable=YES
local_umask=022

Add to end of the file:


# the list of users to give access
userlist_file=/etc/vsftpd.userlist
# this list is on
userlist_enable=YES
# It is not a list of users to deny ftp access
userlist_deny=NO

Setup the user, replace /path/to/your/dir

useradd -d /path/to/your/dir -s /usr/sbin/nologin ftpuser
passwd ftpuser
chown -R ftpuser /path/to/your/dir
chmod 775 /path/to/your/dir

Add new user to vsftpd

nano /etc/vsftpd.userlist

Add “ftpuser” to this file

nano /etc/shells

Add “/usr/sbin/nologin” to this file

addgroup ftpusers

sudo usermod -Gftpusers ftpuser

service vsftpd restart

BONUS:

You can chroot users by uncommenting this section of vsftpd.conf file:

chroot_local_user=YES
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd.chroot_list

Add “ftpuser” to this file

nano /etc/vsftpd.chroot

Questions?  Hit up the comments.

 

Add jail shelled FTP/SSH user on CentOS / Plesk

By | Interest, Linux | 4 Comments

The process of adding a new FTP user with SSH access to a Plesk / CentOS server is more difficult than it needs to be.  Plesk will only allow you to add WebUsers to your domains which have FTP accounts, not full SSH accounts.  Here is the quick and dirty. We want our new user to be in chroot jail and to inherit the same permissions as another user on the system.  The user will be restricted to the top level directory you define (for example httpdocs in this case).

Login as Root:

1.  cat /etc/passwd/ | grep 'anyusername'

This will return:

[cci]anyusername:x:10009:2524::/var/www/vhosts/anydomain.com:/bin/bash[/cci]

The first set of numbers after “:x:” is the UID or User Identifier.  We will use this in the next command to copy the same permissions.

2.useradd -u 10009 -o -d /var/www/vhosts/anydomain.com/httpdocs/ -g psaserv -s /usr/local/psa/bin/chrootsh newusername

Replace “anydomain.com” with your domain, and “newusername” with the new user you would like to add.

3.passwd newusername

Gives the user a password.

4. usermod -s /bin/bash newusername

Boom! Done.

Extras:
For an in-depth discussion on working with rssh, chroot, and users – see UnixCraft