This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.

secure proftpd with SFTP and force it
#1
secure proftpd with SFTP and force it
Hi! I am wondering how to force SFTP instead of FTP with Proftpd.
A few questions, is the file, /etc/sentora/configs/proftpd/proftpd-mysql.conf the only config file?

I found a tutorial but it talks about authorized users, which file is unfamiliar to me with sentora?
https://www.digitalocean.com/community/t...ead-of-ftp

Could I just add the info on the bottom to proftpd?
Code:
<IfModule mod_sftp.c>

        SFTPEngine on
        Port 2222
        SFTPLog /var/log/proftpd/sftp.log

        # Configure both the RSA and DSA host keys, using the same host key
        # files that OpenSSH uses.
        SFTPHostKey /etc/ssh/ssh_host_rsa_key
        SFTPHostKey /etc/ssh/ssh_host_dsa_key

        SFTPAuthMethods publickey

        SFTPAuthorizedUserKeys file:/etc/proftpd/authorized_keys/%u

        # Enable compression
        SFTPCompression delayed

</IfModule>

If so, what to do with the line:
Code:
SFTPAuthorizedUserKeys file:/etc/proftpd/authorized_keys/%u

Can I use passwords with SFTP? Or only work with keys??
Should I sable SFTP Access on the SSH Port? Like that guide suggests, and if so why?


Thanks
Reply
Thanks given by:
#2
RE: secure proftpd with SFTP and force it
Doing so you will rely on SSH authenfications keys no more on users created in DB, it's explained in the tutorial.

You would rather focus on only adding TLS to Proftpd instead of blowing out your setup:

http://www.proftpd.org/docs/howto/TLS.html

M B
No support using PM (Auto adding to IGNORE list!), use the forum. 
How to ask
Freelance AWS Certified Architect & SysOps// DevOps

10$ free to start your VPS
Reply
Thanks given by:


Possibly Related Threads…
Thread Author Replies Views Last Post
ProFTPd & DNS Zone Updating Andy11548 2 5 ,565 03-03-2018, 09:23 PM
Last Post: Andy11548
proftpd problems timce2000 2 6 ,374 03-01-2018, 09:14 AM
Last Post: timce2000
FORCE ROUNDCUBE TO USE SSL zanga 11 21 ,513 10-03-2017, 06:37 AM
Last Post: zanga

Forum Jump:


Users browsing this thread: 1 Guest(s)