01-22-2010
I kept reading after I posted and pretty much found that out too.
As far as setting up a seperate ftp daemon goes: I think there would be too little pay off for that much work and usage of cpu cycles.
The whole point of this was to backup the MySQL database directories in /var/lib/mysql this way we could have both a dumped backup of the database, and a hard copy that we could easily just replace the ones that were present with.
I think we'll just stick with a redundant backup of dumped databases, because it's easier to secure MySQL than to secure FTP.
Oh and one more thought... PAM couldn't be configured to do something like that?
Last edited by mashiox; 01-22-2010 at 06:46 PM..
Reason: Added some PAM.
10 More Discussions You Might Find Interesting
1. Cybersecurity
I have installed TCP wrappers , Good package ...
I have a problem with the hosts_options part ...
I am not able to use the twist command .. It just dosent respond
I have compiled wrappers 7.6 for Solaris 8 with ipv6 support ...
Everything works fine except the twist doesnt work
I have... (1 Reply)
Discussion started by: DPAI
1 Replies
2. IP Networking
I have an RS6000 server running AIX and on occasion all users are logged out of the server "connection closed by foreign host" is the error message. Normally a user can press enter and get a Login prompt, but they get the message "connection refused" and then the users can wait a minute or so and... (2 Replies)
Discussion started by: Docboyeee
2 Replies
3. Solaris
Hello,
I'm administrating new installed cluster that runs Legato Networker and Oracle 9. And I want to restrict the use of root to my self and givr the application and DBA the proper and needed privileges to do their duties without hassle in addition I would like to log users activities.
my... (0 Replies)
Discussion started by: sh_ksa
0 Replies
4. Solaris
I want to log tcp-wrapper events Solaris 10. I researched and saw that I could make a syslog entry in the hosts.deny, which I did below. After restarting syslog and having ssh blocking, I see nothing logging. I also do not get the email that should be generated. The file was taken from a... (2 Replies)
Discussion started by: csgonan
2 Replies
5. Solaris
has anyone ever tried using a client list in thier hosts.allow file
Example of hosts.allow) in.ftpd: /etc/ftp.hosts
"ftp.hosts" has my list of IP address that are allow access....
However I cant get this work...Any Comments or Help? (0 Replies)
Discussion started by: dodge_man
0 Replies
6. AIX
With things installed and wrapping ftpd on AIX 5.1 in hosts.deny I have;
ALL: ALL
in hosts.allow;
ftpd: x.x.x.x
ALL: x.x.x.x
I get this on connect via ftp;
421 Service not available, remote server has closed connection
So its working as far as blocking but the hosts.allow seems to be... (1 Reply)
Discussion started by: traken
1 Replies
7. Shell Programming and Scripting
how can i make my users to not use particular commands in the network
like:wall.......
pl z help me regarding this (1 Reply)
Discussion started by: yashwanthguru
1 Replies
8. Red Hat
Hello,
can someone please provide steps, can I restrict a multiple users to only access only sftp on a server, to perform upload and download of files on their home directories.
1. I have updated their login shell as /sbin/nologin.
anything else do I need to update.
Thanks, (3 Replies)
Discussion started by: bobby320
3 Replies
9. AIX
hi all
just installed the netsec.options.tcpwrapper from expansion pack, which used to be a rpm, for my aix 6.1 test box.
it is so unpredictable. i set up the hosts.deny as suggested for all and allow the sshd for specific ip addresses/hostnames.
the tcpdchk says the hosts allowed and... (0 Replies)
Discussion started by: wf201626
0 Replies
10. AIX
Hi,
I have in my organization varied OS types (AIX,RHEL,Solaris)
My need was to block ftp connections from some addresses on my organization,
but to not disable the protocol.
In the linux servers i did that with the hosts.deny file that used by the vsftpd deamon.
In my AIX servers, i have... (6 Replies)
Discussion started by: moshesa
6 Replies
VSFTPD(8) BSD System Manager's Manual VSFTPD(8)
NAME
vsftpd -- Very Secure FTP Daemon
SYNOPSIS
vsftpd [configuration file and / or options]
DESCRIPTION
vsftpd is the Very Secure File Transfer Protocol Daemon. The server can be launched via a ``super-server'' such as inetd(8) or xinetd(8).
Alternatively, vsftpd can be launched in standalone mode, in which case vsftpd itself will listen on the network. This latter mode is easier
to use, and recommended. It is activated by setting listen=YES in /etc/vsftpd.conf. Direct execution of the vsftpd binary will then launch
the FTP service ready for immediate client connections.
OPTIONS
An optional configuration file or files may be given on the command line. These files must be owned as root if running as root. Any command
line option not starting with a "-" character is treated as a config file that will be loaded. Note that config files are loaded in the
strict order that they are encountered on the command line. If no config files are specified, the default configuration file of
/etc/vsftpd.conf will be loaded, after all other command line options are processed.
Supported options are:
-v Print the version information and exit, even if other options are encountered.
-ooption=value
Set a single option, value pair as per the format in the config file. Multiple -o options are supported, and they are applied in
strict order relative to their appearance on the command line, including intermingling with loading of config files.
EXAMPLES
vsftpd -olisten=NO /etc/vsftpd.conf -oftpd_banner=blah
That example overrides vsftpd's built-in default for the "listen" option to be NO, but then loads /etc/vsftpd.conf which may override that
setting. Finally, the "ftpd_banner" setting is set to "blah", which overrides any default vsftpd setting and any identical setting that was
in the config file.
FILES
/etc/vsftpd.conf
SEE ALSO
vsftpd.conf(5)
March 8, 2001