vsFTPd Installer

ASAS uses vsFTPd secure FTP server ~ vsftpd: version 3.0.3 (as of 11/08/17)

---

• Main Menu
  • Install vsFTPd
  • Configure vsFTPd Settings
  • Backup Config (vsftpd.conf)
  • Remove vsFTPd (Config Saved)
  • Purge vsFTPd (Wipe Clean)
  • Return to Main Menu
  • Exit

Install vsFTPd

This installs vsFTPd via apt it also creates a backup of the maintainers vsftpd.conf and replaces it with our optimized version. We simply add additional security/optimization settings otherwise it is identical to maintainers. The vsftpd.conf will be updated with new software releases, if applicable, staying in line with new efficiency and/or security settings.

Configure vsFTPd Settings

Basic vsFTPd settings that admin can edit/change from installer. More to be added some point in future. Edit /etc/vsftpd.conf manually for extended options in the meantime especially SSL settings.

• Server Listening Port (Default:23452) By default connection port is 23452 instead of 21 which is insecure. Always use a non standard port, something high anything above 20000 if possible.

• IPv4 Listen Address (Default:None) (Optional) Default is blank. Add an IPv4 address usually the main server IP or if a domain is using a dedicated IP then use that to connect. If IPv6 enabled this doesn't do anything.

• Enable IPv6 Listen (Default:Disabled) By default I enabled IPv4 listen only but this can be edited simply by enabling via Enable IPv6 Listen. When IPv6 enabled it will listen on both IPv4 and IPv6.

• IPv6 Listen Address (Default:None) (Optional) Default is blank. Add an IPv6 address usually the main server IP or if a domain is using a dedicated IP then use that to connect. If IPv6 disabled this doesn't do anything.

• Show/Hide dot(.) Files (Default:Hidden) Show or Hide dot(.) files like .htaccess .bashrc etc. This adds a layer of security but also can be counterproductive as many frameworks, git applications, etc use dot(.) files(.env .gitignore .travis.yml etc.) for configuration and the user does need access to them. Use at your discretion.

• Enable Anonymous FTP (Default:Disabled) Enable/Disable anonymous FTP logins. Enabling this feature is a security risk and should be avoided. If allowing this then make sure to edit settings manually for anonymous access.

• Enable SSL (Default:Disabled) Enable/Disable SSL connections, make sure to add a cert and key for this to work properly. Users must connect via SSL (AUTH SSL) explicit or SSL/TLS (AUTH TLS) explicit on port of choice. Manually edit vsftpd.conf for exhaustive list of SSL options.

• Set SSL Cert path Add full path to a custom SSL .pem file, only works on SSL enabled FTP server. Full path IE: /etc/ssl/certs/vsftpd.pem

• Set SSL Key path Add full path to a custom SSL .key file, only works on SSL enabled FTP server. Full path IE: /etc/ssl/private/vsftpd.key

Backup Config

Create a backup of vsftpd.conf useful after configuring/changing settings or when deciding to purge vsFTPd. Backup will be placed in the scripts /backups directory (created if doesn't exist).

Remove vsFTPd

This removes the vsFTPd application from system but preserves vsftpd.conf and logs, as well as application service files and some other leftovers. If using this option you can reinstall vsFTPd and it will use your prior vsftpd.conf settings.

Purge vsFTPd

This wipes vsFTPd clean from system, no config files saved, logs deleted, as well as all application files. Use the backup config option to create vsftpd.conf backup before purging if you want your last config.

Return to Main Menu

Returns to main ASAS menu