How to use SSL with vstpd

**kolp** · 23-07-2008, 17:26

I have vsftp working on my router, everything is woking fine. But when I was looking at the vsftp log, I was amazed to find people trying to login in from taiwan and beijing. They couldnn't log in as they didnt have the right user name or password. So I was a bit reluctant now to have the ftp without some security measures. Any suggestions to this problem for now they are only 2 users who can get in to the ftp. My brother and me so is there a way that I can restrict only 2 users can log in and block other ips.

Also my other problem is the adduser command, I had added my brother account using this command is this right because after like 5 days. He was no longer able to login with that password and username. So I made a same usrname and pw once again so its working now this is the command I used:
adduser -h /tmp/harddisk Jon

That is the only command I have used to create an account. So is there another way or something. Thanks for your help guys

**wirespot** · 23-07-2008, 18:06

Look here:
http://vsftpd.beasts.org/vsftpd_conf.html

It has everything you need to configure vsftpd.

You don't need SSL for your case. SSL is useful, but not the first thing you need. It's useful because it encrypts the stream and machines (and people) along the way between your router and the place you connect to it from cannot eavesdrop and fetch your user and password. This most often happens in the departure or arrival LAN.

But if you just want to make sure other people don't log in there's two things you can do:

1. Pick good passwords. Mix lowercase and uppercase letters, digits and other keyboard symbols. Make it at least 8 characters long.

2. Use the vsftpd config to only allow connections from the IP's you know are good and deny others.

**kolp** · 25-07-2008, 16:01

Thanks for the reply

**darius** · 25-07-2008, 16:13

Hi,

my solution to your problem
is dynamic iptables firewall , restricting ftp access by MAC address.
And have shell script to run iptables rules.
I am just learning iptables and there is a rule to
let you and your brother only to get access to ftp port.

just my one cent

darius

Originally Posted by kolp

I have vsftp working on my router, everything is woking fine. But when I was looking at the vsftp log, I was amazed to find people trying to login in from taiwan and beijing. They couldnn't log in as they didnt have the right user name or password. So I was a bit reluctant now to have the ftp without some security measures. Any suggestions to this problem for now they are only 2 users who can get in to the ftp. My brother and me so is there a way that I can restrict only 2 users can log in and block other ips.

Also my other problem is the adduser command, I had added my brother account using this command is this right because after like 5 days. He was no longer able to login with that password and username. So I made a same usrname and pw once again so its working now this is the command I used:
adduser -h /tmp/harddisk Jon

That is the only command I have used to create an account. So is there another way or something. Thanks for your help guys

Thread: How to use SSL with vstpd

Thread Tools

Rate This Thread

Display

How to use SSL with vstpd

Similar Threads

BusyBox http-WebServer "busybox_httpd" mit ssl absichern

BusBox http-WebServer "busybox_httpd" with ssl

lighttpd and SSL

vsftpd and ssl

Posting Permissions