new user – 88plug

vsftpd Ubuntu 12.04 Install and Add Secure User

By admin | Sample Work | No Comments

60 Second Install. 3 – 2 – 1 – GO!

[raw]sudo apt-get install vsftpd[/raw] [raw]sudo nano /etc/vsftpd.conf[/raw]

Uncomment the Following:
[raw] write_enable=YES
local_umask=022
[/raw]

Add to end of the file:

[raw]

# the list of users to give access
userlist_file=/etc/vsftpd.userlist
# this list is on
userlist_enable=YES
# It is not a list of users to deny ftp access
userlist_deny=NO[/raw]

Setup the user, replace /path/to/your/dir

[raw]useradd -d /path/to/your/dir -s /usr/sbin/nologin ftpuser
passwd ftpuser
chown -R ftpuser /path/to/your/dir
chmod 775 /path/to/your/dir
[/raw]

Add new user to vsftpd

[raw] nano /etc/vsftpd.userlist[/raw]

Add “ftpuser” to this file

[raw]nano /etc/shells[/raw]

Add “/usr/sbin/nologin” to this file

[raw]addgroup ftpusers

sudo usermod -Gftpusers ftpuser

service vsftpd restart
[/raw]

BONUS:

You can chroot users by uncommenting this section of vsftpd.conf file:

[raw] chroot_local_user=YES
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd.chroot_list
[/raw]

Add “ftpuser” to this file

[raw]nano /etc/vsftpd.chroot[/raw]

Questions? Hit up the comments.

Add jail shelled FTP/SSH user on CentOS / Plesk

By admin | Interest, Linux | 4 Comments

The process of adding a new FTP user with SSH access to a Plesk / CentOS server is more difficult than it needs to be. Plesk will only allow you to add WebUsers to your domains which have FTP accounts, not full SSH accounts. Here is the quick and dirty. We want our new user to be in chroot jail and to inherit the same permissions as another user on the system. The user will be restricted to the top level directory you define (for example httpdocs in this case).

Login as Root:

1. [raw]cat /etc/passwd/ | grep ‘anyusername'[/raw]

This will return:

[cci]anyusername:x:10009:2524::/var/www/vhosts/anydomain.com:/bin/bash[/cci]

The first set of numbers after “:x:” is the UID or User Identifier. We will use this in the next command to copy the same permissions.

2.[raw]useradd -u 10009 -o -d /var/www/vhosts/anydomain.com/httpdocs/ -g psaserv -s /usr/local/psa/bin/chrootsh newusername[/raw]

Replace “anydomain.com” with your domain, and “newusername” with the new user you would like to add.

3.[raw]passwd newusername[/raw]

Gives the user a password.

4. [raw]usermod -s /bin/bash newusername[/raw]

Boom! Done.

Extras:
For an in-depth discussion on working with rssh, chroot, and users – see UnixCraft

Reset “lost” Administrator Password Mac OS X

By admin | Sample Work | No Comments

Lost your administrator password? Working with a client who has lost their administrator password and need to install applications and updates? Here is a very simple workaround to resetting the password on any account in OS X.

So what do we do?

Basically start up your Mac in single user mode, deleting the local profile cache for the creation of a new user. Upon restart, you will be prompted to setup a new administrator account. This process of creating this account is the same as after a fresh install. Once you have logged in under the new account, open System Preferences>Accounts and change the password of your original account. No data is lost, and nothing is deleted. Logout/Login with your new password and then delete the temporary admin account.

Presto – Password recovered.

1. Reboot in Single User Mode – hold [cci]Apple Key(command)-S[/cci] after you hear the chime

2. Run the following:

[raw]mount -uw /
rm /var/db/.AppleSetupDone
shutdown -h now[/raw]

**Note**
In terms of security, this is why restriction of physical access to a machine is critical. Passwords are not safe, and are not to be conceived as “safe”. Strong passwords are irrelevant if you do not limit physical access to machines. Play safe.