Kunna Asusun da ba a sani ba don Sabar Proftpd a cikin RHEL/CentOS 7

Bayan koyaswar ƙarshe game da Proftpd Server a cikin CentOS/RHEL 7, wannan koyawa za ta yi ƙoƙarin tsawaita ayyukan Proftpd ta hanyar ba ku damar shigar da asusun Anonymous. Ana amfani da shigar da ba a san su ba don ƙyale masu amfani waɗanda ba su da asusu akan sabar don samun damar takamaiman kundin adireshi a cikin tsarin tsarin, wanda ta tsohuwa a cikin CentOS/RHEL 7 shine /var/ftp directory, ba tare da buƙatar mai amfani da ba a san shi ba. shigar da kalmar sirri.

Da zarar an tabbatar da masu amfani da ba a san su ba kuma sun shiga cikin uwar garken suna chroot zuwa tsoffin kundin adireshi kuma ba za su iya samun damar manyan kundayen adireshi akan hanyar tsarin ba. Yayin da umarnin toshe ba a san shi ba yawanci ana adana shi a cikin babban fayil ɗin daidaitawa na Proftpd.

  1. Shigar da Proftpd Server a cikin CentOS/RHEL 7

A kan wannan batu zan yi amfani da wata hanya ta daban ta adana saitunan asusun Anonymous, tare da taimakon kundayen adireshi guda biyu, enabled_mod da disabled_mod, waɗanda za su adana duk sabbin kayan aikin uwar garken nan gaba, ba tare da lalata babban fayil ɗin sanyi na Proftpd ba.

Mataki 1: Kunna Module mara suna don Proftpd Server

1. Bayan an shigar da Proftpd Server akan tsarin ku tare da tsohowar fayil ɗin daidaitawa ta dakatar da tsarin daemon, madadin proftpd babban fayil ɗin tsoho sannan sannan ku buɗe fayil ɗin proftpd.conf don gyara tare da editan rubutu da kuka fi so.

# systemctl stop proftpd
# cp /etc/proftpd.conf  /etc/proftpd.conf.bak
# nano /etc/proftpd.conf

2. Yanzu da ka bude babban fayil na Proftpd don yin editing, je zuwa kasan wannan fayil ɗin sannan a layin ƙarshe ka ƙara bayanin da ke gaba, wanda zai haifar da
uwar garken don tantancewa da amfani da duk tsarin da aka samo a cikin fayilolin da aka ƙare tare da tsawo .conf daga enabled_mod directory.

Include /etc/proftpd/enabled_mod/*.conf

3. Bayan kun gama ƙara bayanin da ke sama sai ku ajiye kuma ku rufe fayil ɗin kuma ku ƙirƙiri enabled_mod da disabled_mod kundin adireshi. Za a adana duk tsarin da za a yi a gaba daga yanzu a cikin disabled_mod directory kuma za a kunna shi akan uwar garken Proftpd ta hanyar ƙirƙirar hanyoyin alamomi daidai da enabled_mod directory. .

# mkdir -p /etc/proftpd/enabled_mod
# mkdir -p /etc/proftpd/disabled_mod

4. Yanzu lokaci ya yi da za a ƙara ƙayyadadden tsarin fayil ɗin Anonymous don Proftpd. Amfani da editan rubutun da kuka fi so ƙirƙirar fayil mai suna anonymous.conf akan hanyar disabled_mod.

# nano /etc/proftpd/disabled_mod/anonymous.conf

Ƙara waɗannan maganganun a cikin fayil ɗin.

<Anonymous ~ftp>
  User ftp
  Group ftp

UserAlias anonymous ftp
DirFakeUser       on ftp 
DirFakeGroup on ftp
MaxClients 10

    <Directory *>    
<Limit WRITE>     
DenyAll   
</Limit> 
    </Directory>

</Anonymous>

Idan kuna buƙatar ƙarin ci gaba na gaba game da asusun Anonymous jin daɗin amfani da takaddun Proftpd a hanyoyin haɗin yanar gizo masu zuwa.

  1. http://www.proftpd.org/docs/directives/linked/config_ref_Anonymous.html
  2. http://www.proftpd.org/docs/configs/anonymous.conf

5. Ko da yake an ƙirƙiri tsarin Anonymous amma har yanzu ba a kunna ba. Don kunna wannan tsarin ka tabbata ka ƙirƙiri hanyar haɗi ta alama zuwa enabled_mod directory, ta amfani da umarnin da ke ƙasa, sannan fara FTP daemon don aiwatar da canje-canje.

# ln -s /etc/proftpd/disabled_mod/anonymous.conf  /etc/proftpd/enabled_mod/
# ll /etc/proftpd/enabled_mod/
# systemctl start proftpd
# systemctl status proftpd

6. Don samun damar fayilolin da uwar garken Proftpd ke bayarwa ba tare da suna ba, buɗe mashigar bincike sannan ka rubuta adireshin IP na uwar garken ko sunan yankin ta amfani da ka'idar FTP kuma ya kamata a shigar da kai kai tsaye azaman wanda ba a san sunansa ba kuma a dawo da tsarin shugabanci.

ftp://192.168.1.21
ftp://your_domain_name

7. Idan kuna amfani da FileZilla kawai zaɓi Anonymous akan Nau'in Logon kuma za'a tantance ku ta atomatik zuwa uwar garken. Idan kuna amfani da wasu abokan ciniki na FTP fiye da masu bincike ko FileZilla, wanda zai buƙaci ku shigar da sunan mai amfani, kawai ku rubuta anymous akan sunan mai amfani da aka shigar kuma ku bar kalmar sirri
an shigar da blank don tantancewa.

8. Tsofaffin kundin adireshin FTP Anonymous shine hanyar tsarin /var/ftp/, wanda ya ƙunshi kundayen adireshi biyu tare da izini daban-daban.

  1. shafi directory - Littafin FTP na jama'a wanda duk masu amfani da ba a san su ba za su iya karantawa kuma su jera su. Anan zaka iya sanya fayiloli don abokan ciniki don samun dama da saukewa.
  2. loads directory - Yana da ƙuntatawa izini kuma masu amfani da ba a san su ba ba za su iya jera su ba.

9. Don musaki Anonymous Anonymous on Proftpd Server, kawai share anonymous.conf fayil daga enabled_mod directory kuma zata sake farawa FTP daemon
don aiwatar da canje-canje.

# rm /etc/proftpd/enabled_mod/anonymous.conf
# systemctl restart proftpd.service

Shi ke nan! A kan koyawa na gaba game da ProFTPD Server akan RHEL/CentOS 7, zan tattauna yadda zaku iya amfani da ɓoyayyen fayil ɗin SSL/TLS don amintaccen canja wurin bayanai tsakanin abokan ciniki da uwar garken.