Home > FTP > Switch to pure-ftpd

Switch to pure-ftpd

September 14, 2005 Posted by KP

WebHost Manager on my Linux VPS displayed the following message:

At this time, it is recommended that all customers using proftpd Switch to pure-ftpd as soon as possible to eliminate a potential security hole. It is important to consider that this security hole has not been verified. Multiple reports of compromised machines which have Trojans horse binaries installed with the proftpd group have been received. We wish acknowledge that there is only circumstantial evidence pointing to proftpd as the culprit, however we feel it is best to err on the side of caution.

Switching to pure-ftpd on WebHost Manager is as easy as one mouse click. It also solved a very annoying problem of proftpd — up to 15 seconds delay with new connections. This is a common problem of proftpd, I believe it’s because of my poor configuration, but I can’t fix it. Time to replace proftpd on FreeBSD too.

Install pure-ftpd on FreeBSD
# cd /usr/ports/ftp/pure-ftpd
# make install clean
# rehash

Start pure-ftpd, this doesn’t need any configuration. The sample configuration file is /usr/local/etc/pure-ftpd.conf.sample, if needed.

# /usr/local/sbin/pure-ftpd &

If you want to Chroot (FTP clients see /home/account/ as /), start with the option “-A”:
# /usr/local/sbin/pure-ftpd -A &

No anonymous login:
# /usr/local/sbin/pure-ftpd -E &

Run Pure-FTPd with a configuration file instead of command-line options:
# /usr/local/sbin/pure-config.pl /usr/local/etc/pure-ftpd.conf &

Bookmark and Share


Related Posts:

Filed Under: FTP

Leave a Comment









*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word


Subscribe via RSS/EMail


Categories

Archives

Links

  • Dedicated Servers

    • Meta