Yadda ake Shigar, Sanya da Amintaccen FTP Server a cikin RHEL 8

FTP (yana nufin\"Fayil ɗin Fayil na Fayil") daidaitaccen kuma tsohuwar yarjejeniya ce ta hanyar sadarwa wacce aka yi amfani da ita don canja fayiloli tsakanin abokin ciniki da sabar akan hanyar sadarwar komputa. An gina ta ne a kan tsarin ƙirar kwastomomi na abokin ciniki, wanda ke ba da damar yin amfani da fayiloli da kuma kundayen adireshi ta hanyar abokin cinikin FTP, don loda fayiloli zuwa sabar da kuma sauke fayiloli daga gare ta.

A cikin labarinmu da ya gabata, munyi bayanin yadda ake girka, saitawa da amintar da FTP Server a cikin CentOS/RHEL 7 don canja fayilolin kwamfuta tsakanin abokin ciniki da sabar akan hanyar sadarwar komputa.

A cikin wannan labarin, zamu bayyana yadda ake girka, saitawa da amintar da sabar FTP akan RHEL 8 don rarraba fayil ɗin asali tsakanin kwamfutoci.

Sanya FTP Server akan RHEL 8

1. Don girka kunshin FTP amintacce, yi amfani da umarnin dnf mai zuwa.

# dnf install vsftpd

2. Lokacin da kafuwa ta kammala, kana buƙatar fara sabis na vsftpd a halin yanzu, ba shi damar farawa ta atomatik a boot boot sannan ka tabbatar da matsayin ta amfani da waɗannan umarni na systemctl.

# systemctl start vsftpd
# systemctl enable vsftpd
# systemctl status vsftpd

3. Na gaba, kuna buƙatar buɗe tashar FTP tashar 21 akan shinge na tsarin don ba da damar isa ga ayyukan FTP daga tsarin waje.

# firewall-cmd --zone=public --permanent --add-port=21/tcp
# firewall-cmd --zone=public --permanent --add-port=45073/tcp
# firewall-cmd --reload

Sanya FTP Server akan RHEL 8

4. Don saita sabar FTP, kuna buƙatar ɗaukar ajiyar babban fayil ɗin sanyi na FTP /etc/vsftpd/vsftpd.conf ta amfani da umarnin kwafi mai zuwa.

# cp /etc/vsftpd/vsftpd.conf /etc/vsftpd/vsftpd.conf.orig

5. Sannan bude fayil din sanyi ta amfani da editan layin umarni da kafi so.

# vi /etc/vsftpd/vsftpd.conf

Kafa sigogi masu zuwa tare da waɗannan ƙimomin da suka dace (duba mutum vsftpd.conf don ma'anonin sigogin daidaitawa):

anonymous_enable=NO             
local_enable=YES		
write_enable=YES		
local_umask=022		        
dirmessage_enable=YES	        
xferlog_enable=YES		
connect_from_port_20=YES        
xferlog_std_format=YES          
listen=NO   			
listen_ipv6=YES		        
pam_service_name=vsftpd        

6. Na gaba, kana buƙatar saita FTP don bawa/hana masu amfani damar zuwa sabis na FTP dangane da fayil ɗin mai amfani /etc/vsftpd.userlist.

Ta hanyar tsoho, masu amfani da aka jera a cikin /etc/vsftpd.userlist fayil an hana su damar tare da userlist_deny zabin da aka saita zuwa YES , idan userlist_enable = YES , yana ba da damar isa.

Amma, saita ma'auni userlist_deny = NO yana canza saitin, ma'ana cewa masu amfani ne kawai a bayyane suke a cikin userlist_file =/etc/vsftpd.userlist za a basu izinin shiga.

Sabili da haka, ƙara layuka masu zuwa a cikin fayil ɗin sanyi na vsftpd.conf (ko kuma idan akwai dama, ku ba su wahala kuma ku saita dabi'unsu kamar yadda aka nuna):

userlist_enable=YES                   # allow access to list of usernames from the userlist_file
userlist_file=/etc/vsftpd.userlist    # stores usernames.
userlist_deny=NO   

7. Yanzu ƙara layuka masu zuwa a cikin fayil ɗin sanyi na vsftpd.conf don ƙuntata masu amfani da FTP zuwa kundin adireshin Gidan su.

chroot_local_user=YES		#means local users will be placed in a chroot jail, their home directory after login by default settings.
user_sub_token=$USER         	
local_root=/home/$USER/ftp   	

Adana canje-canje a cikin fayil ɗin kuma rufe shi.

8. Kafa dokar SELinux mai zuwa don bawa FTP damar karanta/rubuta fayiloli na kundin adireshin gidan mai amfani.

# semanage boolean -m ftpd_full_access --on

9. A ƙarshe sake kunna sabis na vsftpd don shafar duk canje-canjen da muka kawo yanzu sama:

# systemctl restart vsftpd

Gwajin FTP Server akan RHEL 8

10. Don gwadawa idan saitin FTP da ke sama yana tafiya daidai, fara da ƙirƙirar mai amfani da FTP tare da umarnin useradd kuma ƙirƙirar kalmar sirri ga wannan mai amfani.

# useradd -m -c "Tecmint HowTos" -s /bin/bash tecmint
# passwd tecmint

11. Sannan ka kara amfani da tecmint din mai amfani a file /etc/vsftpd.userlist ta amfani da echo command kamar haka.

# echo "tecmint" | tee -a /etc/vsftpd.userlist
# cat /etc/vsftpd.userlist

12. Bayan haka sai ka kirkiri madadin kundin adireshi na gari na mai amfani (tecmint, naka wataqila ya banbanta) sa'annan ka saita izinin da ya dace akan wannan kundin.

# mkdir -p /home/tecmint/ftp
# chown nobody:nobody /home/tecmint/ftp
# chmod a-w /home/tecmint/ftp

13. Na gaba, ƙirƙiri kundin adireshi a cikin asalin tushen wurin, inda mai amfani zai kiyaye fayilolin sa/fayiloli.

# mkdir /home/tecmint/ftp/files
# chown tecmint:tecmint /home/tecmint/ftp/files
# chmod 0700 /home/tecmint/ftp/files/

14. Yanzu haɗi zuwa sabar FTP ta amfani da duk wani abokin FTP kamar haka.

# ftp [email 

Connected to 192.168.56.100
220 Welcome to TecMint.com FTP service.
331 Please specify the password.
Password:
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls

Shi ke nan! A cikin wannan labarin, mun bayyana yadda za a girka, daidaitawa da kuma tabbatar da uwar garken FTP a cikin RHEL 8. A cikin labarinmu na gaba, za mu nuna yadda za mu amintar da uwar garken FTP ta amfani da haɗin SSL/TLS. Har sai lokacin, zauna tare da mu.