ch 19 FTP
port 21
An FTP server normally used TCP ____ ___.
directives
Boolean, numeric and string name-value pairs of configuration parameters called ________________.
equal sign with no spaces
Each name-value pair is joined by an __________ with __________ __________.
YES
Either this parameter or listen_ipv6 but not both can be set to _________.
system-config-selinux
You can set the Targeted Policy with ___________________.
listen - YES
________ - ____ accepts IPv4 connections only
write_enable parameter
_______________ must be set to yes to permit local users to upload files
FTP (File Transfer Protocol)
a method of downloading files from and uploading files to another system using TCP/IP over a network.
chroot jail
a program that is run in such a modified environment that cannot access files and commands outside the directory tree
vsftpd (very secure FTP daemon)
a server which it used internally and offers as part of its distribution.
listen_ipv6 - YES
accepts IPv6 clients.
port 21
an FTP server listens for incoming connections on ______ _______.
Chroot
an operation that changes the apparent root directory for the current running process and their children
077
change local_umask to __________ to allow only the user who created a file to download and overwrite it
PASV (passive)
client initiates the connection to the server (default on port 20)
ftp (client utility)
invokes the FTP protocol
# sysemctl status vsftpd.service
lets you know that the server is running
/ect/vsftpd/ftpusers
lists users, one per line, who are never allowed to login on the FTP server,
vsftpd
malicious user finds it more difficult to directly compromise the system running it
ftp
not secure, traffic is sent in clear text over an unsecure connection
root privileges
one feature that makes vsfpd more secure than ftpd is that it does not run with ____ ____________.
YES
only one IPv4 or IPv6 must be set to ________
FTP site
refers to an FTP server that is connected to the Internet; can be public, allowing anonymous users to login and download software and documentation
sftp
secure protocol, encrypted connection
listen_address
specifies the IP address of the local interface that vsftpd listens on for incoming connections
max_per_ip
specifies the maximum number of clients from the same IP address. (0) indicates unlimited clients from the same IP address. Default : 0
max_clients
specifies the maximum number of clients. (0) indicates unlimited clients. Default : 0
listen_port
specifies the port that vsftpd listens on for incoming connections
21
the default listen port
PORT (active)
the server initiates the connection (there is no default port)
/etc/vsftpd/vsftpd.conf
the vsftpd configuration file (must restart vsftpd after you make changes)
user ID (UID), initial working directory, root directory
three basic parameters control a user who is logged in on a vsftpd server
ftp & sftp
two common types of ftp client utilities
YES
what anonymous enable must be set to allow users to log in
/var/ftp
when someone logs in as an anonymous user, that person works in the __________ directory.
any
with listen address unset or set to ________ , vsftpd accepts connections from both IPv4 and IPv6 clients.