{"id":1226,"date":"2016-05-17T13:55:21","date_gmt":"2016-05-17T04:55:21","guid":{"rendered":"http:\/\/www.kinryo.net\/?p=1226"},"modified":"2023-05-10T17:49:36","modified_gmt":"2023-05-10T08:49:36","slug":"%ef%bc%92%ef%bc%99%ef%bc%9aftp%e3%82%b5%e3%83%bc%e3%83%90%e3%83%bc%e6%a7%8b%e7%af%89vsftpd","status":"publish","type":"post","link":"https:\/\/www.kinryo.net\/?p=1226","title":{"rendered":"\uff12\uff19\uff1aFTP\u30b5\u30fc\u30d0\u30fc\u69cb\u7bc9(vsftpd)"},"content":{"rendered":"
\n

vsftpd\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb<\/b>
\n#<\/span> yum -y install vsftpd<\/span>
\nvsftpd\u8a2d\u5b9a
\n#<\/span> gedit \/etc\/vsftpd\/vsftpd.conf<\/span><\/p>\n

\n
anonymous_enable=NO\u3000\u2190\u3000no\u306b\u5909\u66f4<\/span>\r\nxferlog_file=\/var\/log\/vsftpd.log\u3000\u2190\u3000#\u3092\u53d6\u308a\u3001\u53f3\u8fba\u306e\u5909\u66f4<\/span>\r\nxferlog_std_format=NO\u3000\u2190\u3000no\u306b\u5909\u66f4<\/span>\r\nascii_upload_enable=YES\u3000\u2190\u3000\u30b3\u30e1\u30f3\u30c8\u3092\u5916\u3059<\/span>\r\nascii_download_enable=YES\u3000\u2190\u3000\u30b3\u30e1\u30f3\u30c8\u3092\u5916\u3059<\/span>\r\nftpd_banner=Welcome to blah FTP service.\u3000\u2190\u3000\u30b3\u30e1\u30f3\u30c8\u3092\u5916\u3059<\/span>\r\nchroot_local_user=YES\u3000\u2190\u3000\u30b3\u30e1\u30f3\u30c8\u3092\u5916\u3059<\/span>\r\nchroot_list_enable=NO\u3000\u2190\u3000\u30b3\u30e1\u30f3\u30c8\u3092\u5916\u3057\u3001\u53f3\u8fba\u3092\u5909\u66f4<\/span>\r\nchroot_list_file=\/etc\/vsftpd\/chroot_list\u3000\u2190\u3000\u30b3\u30e1\u30f3\u30c8\u3092\u5916\u3059<\/span>\r\nuserlist_deny=NO\u3000\u2190\u3000\u8ffd\u8a18<\/span>\r\nls_recurse_enable=YES\u3000\u2190\u3000\u30b3\u30e1\u30f3\u30c8\u3092\u5916\u3059<\/span>\r\n\u4ee5\u4e0b\u3092\u6700\u4e0b\u884c\u3078\u8ffd\u52a0<\/span>\r\nuse_localtime=YES\r\nport_promiscuous=YES\r\npasv_addr_resolve=NO\r\npasv_address=192.168.xx.xx\u3000\u2190\u3000\u81ea\u5206\u306eIP\u30a2\u30c9\u30ec\u30b9<\/span>\r\npasv_min_port=60000\u3000\u2190\u3000PASV\u30e2\u30fc\u30c9\u63a5\u7d9a\u6642\u306e\u6700\u5c0f\u30dd\u30fc\u30c8\u756a\u53f7<\/span>\r\npasv_max_port=60030\u3000\u2190\u3000PASV\u30e2\u30fc\u30c9\u63a5\u7d9a\u6642\u306e\u6700\u5927\u30dd\u30fc\u30c8\u756a\u53f7<\/span>\r\nssl_enable=YES\u3000\u2190\u3000SSL\u306e\u6709\u52b9\u5316<\/span>\r\nrsa_cert_file=\/etc\/pki\/tls\/certs\/vsftpd.pem\u3000\u2190\u3000\u30b5\u30fc\u30d0\u30fc\u8a3c\u660e\u66f8\u3092\u6307\u5b9a<\/span>\r\nforce_local_logins_ssl=YES\u3000\u2190\u3000\u30ed\u30b0\u30a4\u30f3\u6642\u306bSSL\u63a5\u7d9a\u3092\u5f37\u5236<\/span>\r\nforce_local_data_ssl=YES\u3000\u2190\u3000\u30c7\u30fc\u30bf\u8ee2\u9001\u6642\u306bSSL\u63a5\u7d9a\u3092\u5f37\u5236<\/span><\/span><\/code><\/pre>\n<\/div>\n
\u4e0a\u8a18\u306f\u5909\u66f4\u7b87\u6240\u306e\u307f\u30ea\u30b9\u30c8\u30a2\u30c3\u30d7
\nport_promiscuous=YES\u304b\u30893\u884c\u306f\u53c2\u8003\u306b\u3057\u305fhttp:\/\/centossrv.com\/vsftpd.shtml \u3068\u306f\u5c11\u3057\u9055\u3046\u3002\u30aa\u30ea\u30b8\u30ca\u30eb\u3067\u306fFTP\u306eIP\u30a2\u30c9\u30ec\u30b9\u304c\u727d\u3051\u308bDNS\u306e\u30db\u30b9\u30c8\u540d\u3092\u8a2d\u5b9a\u3059\u308b\u3088\u3046\u306b\u306a\u3063\u3066\u3044\u308b\u304c\u3001\u3053\u308c\u3060\u3068\u30c6\u30b9\u30c8\u3092\u3059\u308b\u6642\u306b\u554f\u984c\u304c\u3067\u305f\u3002\u3068\u8a00\u3046 \u306e\u306f\u30c6\u30b9\u30c8\u306fLAN\u5185\u306e\u30db\u30b9\u30c8\u304b\u3089\u884c\u3063\u305f\u304c\u3001FTP\u30b5\u30fc\u30d0\u30fc\u304c\u4ed6\u306b\u52d5\u3044\u3066\u3044\u305f\u306e\u3067\u3001\u30eb\u30fc\u30bf\u30fc\u306e\u8a2d\u5b9a\u306f\u52d5\u3044\u3066\u3044\u308bFTP\u30b5\u30fc\u30d0\u30fc\u306eIP\u306b\u30d5\u30a9\u30ef\u30fc\u30c9\u3057\u3066\u3044 \u308b\u3002\u5f53\u7136DNS\u304c\u8fd4\u3057\u3066\u6765\u308bIP\u306f\u30b0\u30ed\u30fc\u30d0\u30ebIP\u306a\u306e\u3067\u30eb\u30fc\u30bf\u30fc\u306b\u7740\u3066\u3082\u30c6\u30b9\u30c8\u4e2d\u306eFTP\u30b5\u30fc\u30d0\u30fc\u3067\u306f\u7121\u304f\u3001\u52d5\u3044\u3066\u3044\u308b\u73fe\u884c\u306eFTP\u30b5\u30fc\u30d0\u30fc\u306b\u884c\u3063\u3066\u3057\u307e \u3046\u3002\u4e0a\u8a18\u306e\u8a2d\u5b9a\u306e\u3088\u3046\u306b\u3059\u308c\u3070\u540c\u3058\u72b6\u614b\u3082\u554f\u984c\u306a\u3044\u3002
\n\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3088\u308a\u4e0a\u5c64\u3078\u306e\u30a2\u30af\u30bb\u30b9\u3092\u8a31\u53ef\u3057\u306a\u3044\u30e6\u30fc\u30b6\u306e\u767b\u9332
\n#<\/span> echo \u30db\u30fc\u30e0\u3057\u304b\u30a2\u30af\u30bb\u30b9\u3055\u305b\u306a\u3044\u30e6\u30fc\u30b6\u30fc\u540d >> \/etc\/vsftpd\/chroot_list<\/span>
\n\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3088\u308a\u4e0a\u5c64\u3078\u306e\u30a2\u30af\u30bb\u30b9\u304c\u3067\u304d\u306a\u3044\u30e6\u30fc\u30b6\u306e\u30bf\u30a4\u30e0\u30b9\u30bf\u30f3\u30d7\u3092\u65e5\u672c\u6642\u9593\u306b\u3059\u308b
\n\u65b0\u898f\u30e6\u30fc\u30b6\u5bfe\u51e6
\n#<\/span> mkdir \/etc\/skel\/etc<\/span>
\n#<\/span> cp \/etc\/localtime \/etc\/skel\/etc\/<\/span>
\n\u65e2\u5b58\u30e6\u30fc\u30b6\u5bfe\u51e6
\n#<\/span> gedit localtimset<\/span><\/p>\n
\n
#!\/bin\/bash\r\nfor user in `ls \/home`\r\ndo\r\n   id $user > \/dev\/null 2>&1\r\n   if [ $? -eq 0 ]; then\r\n        grep $user \/etc\/vsftpd\/chroot_list > \/dev\/null 2>&1\r\n        if [ $? -ne 0 ] && [ ! -f \/home\/$user\/etc\/localtime ]; then\r\n            mkdir -p \/home\/$user\/etc\r\n            cp \/etc\/localtime \/home\/$user\/etc\r\n            echo $user\r\n        fi<\/span>\r\n   fi\r\ndone<\/span><\/code><\/pre>\n<\/div>\n
localtime\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7\u30b9\u30af\u30ea\u30d7\u30c8\u5b9f\u884c
\n#<\/span> sh localtimset<\/span>
\nlocaltime\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7\u30b9\u30af\u30ea\u30d7\u30c8\u524a\u9664
\n#<\/span> rm -f localtimset<\/span>
\nFTP\u30b5\u30fc\u30d0\u30fc\u3078\u306e\u30a2\u30af\u30bb\u30b9\u3092\u7981\u6b62\u3059\u308b\u30e6\u30fc\u30b6\u306e\u767b\u9332
\n#<\/span> echo \u7981\u6b62\u3059\u308b\u30e6\u30fc\u30b6\u30fc\u540d >> \/etc\/vsftpd\/ftpusers<\/span>
\n\u30b5\u30fc\u30d0\u30fc\u8a3c\u660e\u66f8\u4f5c\u6210
\n#<\/span> cd \/etc\/pki\/tls\/certs\/<\/span>
\n#<\/span> make vsftpd.pem<\/span><\/p>\n
\n
\u524d\u7565\r\nCountry Name (2 letter code) [XX]:JP<\/span>\r\nState or Province Name (full name) []:Tokyo<\/span>\r\nLocality Name (eg, city) [Default City]:Ota-ku<\/span>\r\nOrganization Name (eg, company) [Default Company Ltd]:kinryokai.net<\/span>\r\nOrganizational Unit Name (eg, section) []:\u7a7aEnter<\/span>\r\nCommon Name (eg, your name or your server's hostname) []:ftp.kinryokai.net<\/span>\r\nEmail Address []<\/span>:root@kinryokai.net\r\n<\/span><\/code><\/pre>\n<\/div>\n
\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3078\u623b\u308b
\n#<\/span> cd<\/span>
\nvsftpd\u8d77\u52d5
\n#<\/span> service vsftpd start<\/span>
\n#<\/span> chkconfig vsftpd on<\/span>
\n\"\"FTP\u3067\u4f7f\u3046port\u3092\u958b\u3051\u308b\uff08tcp21, \u30d1\u30c3\u30b7\u30d6\u7528 tcp 60000:60030,\u3053\u306e\u30dd\u30fc\u30c8\u306f\u201d\u30b5\u30fc\u30d0\u30fc\u5236\u4f5c : \uff18\uff1a\u30d5\u30a1\u30a4\u30a2\u30a6\u30a9\u30fc\u30eb\u69cb\u7bc9(iptables)\u201d\u3067\u8a2d\u5b9a\u3057\u3066\u3044\u308b\uff09
\n\/root\/iptables.sh \u306e\u8a2d\u5b9a\u3068\u5916\u90e8\u304b\u3089\u53d7\u3051\u4ed8\u3051\u308b\u305f\u3081\u3001\u30de\u30a4\u30b0\u30ec\u30fc\u30b7\u30e7\u30f3\u6642\u306b\u30eb\u30fc\u30bf\u30fc\u306e\u30dd\u30fc\u30c8\u3082\u3053\u306e\u30db\u30b9\u30c8\u306b\u30d5\u30a9\u30ef\u30fc\u30c9\u3059\u308b
\n\u30a2\u30af\u30bb\u30b9\u5236\u9650\u306f\u5916\u90e8\u304b\u3089\u3053\u306eWEB\u306bFTP\u3067\u30a2\u30c3\u30d7\u3059\u308b\u5fc5\u8981\u304c\u3042\u308b\u8907\u6570\u306e\u30e6\u30fc\u30b6\u30fc\u304c\u304a\u308a\u3001\u7279\u5b9a\u3059\u308b\u306e\u304c\u96e3\u3057\u3044\u305f\u3081\u30a2\u30af\u30bb\u30b9\u5236\u9650\u306f\u884c\u3063\u3066\u3044\u307e\u305b\u3093\u3002
\n\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a
\n\u3053\u306eFTP\u306b\u63a5\u7d9a\u3059\u308b\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u306e\u8a2d\u5b9a
\n\u30c6\u30b9\u30c8\u306e\u70ba\u306b\u3053\u306e\u30b5\u30d6\u30db\u30b9\u30c8\u306e\u89aa\u30db\u30b9\u30c8\uff08\u540c\u3058CenOS\uff09\u306bFTP\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u307e\u3059\u3002
\n#<\/span> yum -y install filezilla<\/span>\u3000\u2190\u3053\u306e\u6642\uff25\uff30\uff25\uff2c\u306e\u30ec\u30dd\u30b8\u30c8\u30ea\u30fc\u3092\u6709\u52b9\u306b\u3057\u3066\u304a\u304f\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002
\n\u3053 \u308c\u3067\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u2192\u30a4\u30f3\u30bf\u30fc\u30cd\u30c3\u30c8\u2192FileZilla \u304c\u51fa\u6765\u3066\u3044\u307e\u3059\u306e\u3067\u3001\u30af\u30ea\u30c3\u30af\u3057\u3001\u30d5\u30a1\u30a4\u30eb\u2192\u30b5\u30a4\u30c8\u30de\u30cd\u30fc\u30b8\u30e3\u30fc\u3092\u30af\u30ea\u30c3\u30af\u3057\u307e\u3059\u3068\u56f3\u306e\u69d8\u306b\u30b5\u30a4\u30c8\u30de\u30cd\u30fc\u30b8\u30e3\u30fc\u304c\u958b\u304d\u307e\u3059\u306e\u3067\u3001\u8d64\u7dda\u306e\u6240\u3092\u8a2d\u5b9a\u3057\u3066\u3044\u304d\u307e \u3059\u3002\u4eca\u306f\u5b9f\u9a13\u6bb5\u968e\u306a\u306e\u3067\u30db\u30b9\u30c8\u540d\u306b\u306fIP\uff08\u4e00\u90e8\u4f0f\u305b\u3066\u3042\u308a\uff09\u3092\u8a2d\u5b9a\u3057\u3066\u3044\u307e\u3059\u3002\u4e00\u822c\u4ee5\u5916\u306e\u30bf\u30d6\u306f\u30c7\u30d5\u30a9\u30eb\u30c8\u3067\u3082OK\u3067\u3057\u305f\u304c\u3001\u8ee2\u9001\u8a2d\u5b9a\u30bf\u30d6\u306e\u8ee2\u9001\u30e2\u30fc\u30c9\u306f \u30d1\u30c3\u30b7\u30d6\u306b\u3057\u3066\u304a\u3044\u305f\u65b9\u304c\u3044\u3044\u304b\u3082\u3002
\n\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a\uff0a
\n\u3053\u3053\u304b\u3089\u306fvsftp\u3092\u5165\u308c\u305f\u30b5\u30fc\u30d0\u30fc\u306e\u8a2d\u5b9a
\n\u5b9f\u306f\u79c1\u81ea\u8eab\u982d\u304c\u30b9\u30d1\u30b2\u30c3\u30c6\u30a3\u30fc\u306b\u306a\u3063\u305f\u90e8\u5206\u304c\u3042\u308a\u3001\u4e00\u3064\u76ee\u306f\u6697\u53f7\u5316\u306e\u554f\u984c\u3002FileZilla\u306e\u8a2d\u5b9a\u3067
\nsftp\u306fSSH\u3092\u4f7f\u3044FTP\u306b\u30a2\u30af\u30bb\u30b9\u3001\u3060\u304b\u3089SSH\u306b\u30a2\u30af\u30bb\u30b9\u51fa\u6765\u308b\u30e6\u30fc\u30b6\u30fc\u306e\u307f\u53ef\u80fd\u3001\uff08OS\u3078\u306e\u30ed\u30b0\u30a4\u30f3\u3092\u8a31\u53ef\u3057\u306a\u3051\u308c\u3070\u306a\u3089\u306a\u3044\u3068\u601d\u3046\uff09
\nfpt\u3067”\u660e\u793a\u7684\u306aFTP over TLS\u304c\u5fc5\u8981”\u306fFTP\u3067TLS\u3092\u4f7f\u3044\uff08\u3053\u306e\u8a2d\u5b9a\u3092\u4f7f\u7528\uff09ftp\u30dd\u30fc\u30c8\u306e\uff12\uff11\u306b\u30a2\u30af\u30bb\u30b9\u3059\u308b\u3002\uff08OS\u3078\u306e\u30ed\u30b0\u30a4\u30f3\u3092\u4e0d\u8a31\u53ef\u3067\u3082\u53ef\uff09
\nftp\u3067”\u6697\u9ed9\u306eFTP over TLS\u304c\u5fc5\u8981”\u306fFTP\u3067TLS\u3092\u4f7f\u3044\u3001sftp\u30dd\u30fc\u30c8\u306e\uff19\uff19\uff10\u306b\u30a2\u30af\u30bb\u30b9\u3059\u308b\u3068\u601d\u3046\u3002\uff08OS\u3078\u306e\u30ed\u30b0\u30a4\u30f3\u3092\u4e0d\u8a31\u53ef\u3067\u3082\u53ef\uff09
\n\u3053\u308c\u3089\u306fFileZilla\u306e\u30dd\u30fc\u30c8\u306e\u8a2d\u5b9a\u3092\u30d6\u30e9\u30f3\u30af\u306b\u3057\u305f\u5834\u5408\u3002
\n\u6b21\u306flog\u306e\u95a2\u9023
\nhttp:\/\/www.nina.jp\/server\/redhat\/vsftpd\/vsftpd.conf.html\u306evsftpd \u306e\u8a2d\u5b9a\uff08\u30ed\u30b0\uff09\u306b\u308f\u304b\u308a\u3084\u3059\u3044\u8868\u304c\u3042\u308a\u307e\u3059\u306e\u3067\u898b\u3066\u304a\u3044\u3066\u4e0b\u3055\u3044\u3002
\n\u6b21\u306b\u306b\u30e6\u30fc\u30b6\u30fc\u306e\u30ea\u30b9\u30c8\u95a2\u4fc2\u3092\u6574\u7406\u3057\u3066\u304a\u304d\u307e\u3059\u3002
\n\uff11\uff1a\/etc\/vsftpd\/ftpusers \u306b\u8a2d\u5b9a\u3057\u3066\u3042\u308b\u30e6\u30fc\u30b6\u30fc\u306fFTP\u30b5\u30fc\u30d0\u30fc\u306e\u8a2d\u5b9a\u306b\u95a2\u308f\u3089\u305a\u30a2\u30af\u30bb\u30b9\u304c\u8a8d\u3081\u3089\u308c\u306a\u3044
\n\uff12\uff1a\u8a2d\u5b9a\u306b userlist_deny=NO \u306a\u3089\u3001\u8a2d\u5b9a\u3057\u3066\u3042\u308b\u30e6\u30fc\u30b6\u30fc\u306f\u30a2\u30af\u30bb\u30b9\u304c\u8a8d\u3081\u3089\u308c\u308b\u30e6\u30fc\u30b6\u30fc
\n\uff13\uff1a\u8a2d\u5b9a\u306b userlist_deny=YES \u306a\u3089\u3001\u8a2d\u5b9a\u3057\u3066\u3042\u308b\u30e6\u30fc\u30b6\u30fc\u306f\u30a2\u30af\u30bb\u30b9\u304c\u8a8d\u3081\u3089\u308c\u306a\u3044\u30e6\u30fc\u30b6\u30fc\u4f46\u3057\u3001ftpusers\u306b\u8a2d\u5b9a\u3059\u308c\u3070\u3044\u3044\u306e\u3067\u3001\u3053\u308c\u306f\u610f\u5473\u304c\u7121\u3044\u3068\u601d\u3046\u3002
\n\u4e0a\u8a18\u306e\u8a2d\u5b9a\u3092\u65bd\u305b\u3070\u30c7\u30d5\u30a9\u30eb\u30c8\u306e\u8a2d\u5b9a\u306b\u3042\u308b\u201dlocal_enable=YES\u201d\u306fNO\u306b\u3057\u3066\u3082\u3044\u3044\u306e\u304b\u3082\u3068\u601d\u3044\u3001\u3084\u3063\u3066\u307f\u308b\u3068\u898b\u4e8b\u306b\u30a8\u30e9\u30fc<\/p>\n
\n
\u30ec\u30b9\u30dd\u30f3\u30b9:\t500 OOPS: vsftpd: both local and anonymous access disabled!<\/span><\/code><\/span><\/pre>\n<\/div>\n
\u6b21\u306fchroot\u306e\u95a2\u4fc2
\nhttp:\/\/www.aconus.com\/~oyaji\/ftp\/vsftpd_rpm.htm\u306e\uff11\uff11\uff61\u30a2\u30af\u30bb\u30b9\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u306e\u5236\u9650 ( chroot )<\/a>\u306b\u898b\u3084\u3059\u3044\u8868\u304c\u3042\u308a\u307e\u3059\u306e\u3067\u53c2\u8003\u306b\u3057\u3066\u4e0b\u3055\u3044\u3002\u79c1\u306e\u8a2d\u5b9a\u306f\u4e0a\u8a18\u3067\u3059\u304c\u3053\u306e\u8a2d\u5b9a\u3067\u3059\u3068 chroot_list \u306b\u8a18\u5165\u3059\u308b\u30e6\u30fc\u30b6\u30fc\u306f\u30db\u30fc\u30e0\u30da\u30fc\u30b8\u4ee5\u4e0b\u306b\u3057\u304b\u30a2\u30af\u30bb\u30b9\u3067\u304d\u306a\u304f\u306a\u308a\u3001\u305d\u306e\u30db\u30fc\u30e0\u30da\u30fc\u30b8\u3092\u30a2\u30af\u30bb\u30b9\u3092\u8a31\u3059WEB\u5185\u306edirectory\u306b\u3057\u3066\u304a\u3051\u3070\u3088\u3044\u3002
\nFTP\u30b5\u30fc\u30d0\u30fc\u3060\u3051\u306b\u30a2\u30af\u30bb\u30b9\u53ef\u80fd\u306a\u30e6\u30fc\u30b6\u30fc\u306e\u4f5c\u6210\u306f -d \u3067\u30a2\u30af\u30bb\u30b9\u3055\u305b\u308bWEB\u306edirectory -s \/sbin\/nologin \u3067\u30b7\u30b9\u30c6\u30e0\u3078\u306e\u30ed\u30b0\u30a4\u30f3\u3092\u8a31\u53ef\u3057\u306a\u3044\u3002
\n\u4f8b\uff1auseradd -d \/path\/to\/web\/directory -s \/sbin\/nologin \u30e6\u30fc\u30b6\u30fc\u540d\u3000\u3067\u4f5c\u6210\u5f8c passwd \u30e6\u30fc\u30b6\u30fc\u540d\u3067\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u8a2d\u5b9a\u3059\u308b
\n\u6700\u5f8c\u306b\u5c11\u3057\u554f\u984c\u304c\u3042\u308a\u307e\u3059\u3002\u305d\u306e\u554f\u984c\u3068\u306f
\n\uff11\uff1a \u3053\u306e\u30c6\u30b9\u30c8\u3057\u3066\u3044\u308bFTP\u30b5\u30fc\u30d0\u30fc\u3068\u306f\u7269\u7406\u7684\u306b\u5225\u3067\u3059\u304c\u540c\u3058LAN\u5185\u306eCentOS6.5\uff08KVM\u3092\u4f7f\u3063\u305f\u89aa\u30db\u30b9\u30c8\uff09\u304b\u3089\u306f\u554f\u984c\u306a\u304f\u3001\u53c8\u540c\u3058LAN\u5185\u306b\u3042 \u308bwindows7\u304b\u3089\u3082\u3001\u5916\u90e8\u304b\u3089\u30a2\u30af\u30bb\u30b9\u3057\u305f\uff08\u30eb\u30fc\u30bf\u30fc\u8d8a\u3048\u3001\u3082\u3061\u308d\u3093\u3053\u306e\u6642\u306e\u30eb\u30fc\u30bf\u30fc\u306e\u8a2d\u5b9a\u306f\u3053\u306e\u30c6\u30b9\u30c8\u30b5\u30fc\u30d0\u30fc\u306b\u30d5\u30a9\u30ef\u30fc\u30c9\u3057\u3066\u3044\u307e \u3059\uff09Windows7\u3082\u554f\u984c\u3042\u308a\u307e\u305b\u3093\u304c\u3001
\n\uff12\uff1a\u30a2\u30af\u30bb\u30b9\u3067\u304d\u305fKVM\u4e0b\u306e\u30b5\u30d6\u30db\u30b9\u30c8\u3084\u3053\u306eFTP\u30b5\u30fc\u30d0\u30fc\u306e\u89aa\u30db\u30b9\u30c8\u3067\u3042\u308b KVM\uff08CentOS6.5\uff09\u304b\u3089\u306f\u30a8\u30e9\u30fc\u304c\u51fa\u3066\u63a5\u7d9a\u3067\u304d\u307e\u305b\u3093\u3002\u3053\u308c\u306f\u6697\u53f7\u5316\u3092\u5916\u305b\u3070\u30a2\u30af\u30bb\u30b9\u51fa\u6765\u308b\u306e\u3067\u3001LAN\u5185\u3067\u3082\u3042\u308a\u3001\u3053\u308c\u3089\u306e\u30db\u30b9\u30c8\u306f\u6697\u53f7\u5316\u3092 \u3057\u3066\u3044\u307e\u305b\u3093\u3002(force_local_logins_ssl= \u3068 force_local_data_ssl= \u306fNO\u306b\u3057\u307e\u3059\uff09\u305d\u306e\u30a8\u30e9\u30fc\u306f<\/p>\n
\n
11:06:29\t\u72b6\u614b:\tTLS \u3092\u521d\u671f\u5316\u3057\u3066\u3044\u307e\u3059...\r\n11:06:29\t\u30a8\u30e9\u30fc:\tGnuTLS error -50 in gnutls_priority_set_direct: The request is invalid.\r\n11:06:29\t\u30a8\u30e9\u30fc:\tTLS \u306e\u521d\u671f\u5316\u306b\u5931\u6557\u3057\u307e\u3057\u305f.\r\n11:06:29\t\u30a8\u30e9\u30fc:\t\u30b5\u30fc\u30d0\u306b\u63a5\u7d9a\u3067\u304d\u307e\u305b\u3093\u3067\u3057\u305f\u3002<\/span><\/code><\/pre>\n<\/div>\n
\u6b63\u5e38\u306b\u3064\u306a\u304c\u308b\u3068\u304d\u306fTLS\u306e\u521d\u671f\u5316\u5f8c\u306f\u72b6\u614b:\u3000\u8a3c\u660e\u66f8\u3092\u691c\u8a3c\u4e2d\u306b\u306a\u308a\u307e\u3059\u3002\u30a2\u30f3\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u305f\u308a\u8272\u3005\u3084\u308a\u307e\u3057\u305f\u304c\u51fa\u6765\u307e\u305b\u3093\u3067\u3057\u305f\u3002
\n\u3064 \u306a\u304c\u3063\u3066\u3044\u308b\u30db\u30b9\u30c8\u3082\u3042\u308b\u306e\u3067\u3001FTP\u30b5\u30fc\u30d0\u30fc\u306e\u554f\u984c\u3067\u306f\u7121\u304f\u3001\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u306e\u65b9\u3060\u3068\u601d\u3046\u306e\u3067\u3059\u304c\u3001\u3069\u3053\u3092\u3044\u3058\u308c\u3070\u3044\u3044\u306e\u304b\u3055\u3063\u3071\u308a\uff1f\u3082\u3061\u308d\u3093ftp\u30af\u30e9 \u30a4\u30a2\u30f3\u30c8\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u306fwindows\uff17\u306f3.8.1 CentOS\u306f\u5168\u30663.7.3\u3067\u540c\u3058\u3067\u3059\u3002google\u5148\u751f\u306b\u805e\u3044\u305f\u3089\u3001\u3053\u3053\u306b\u3042\u3063\u305f\u304c<\/a>\u3001\u30d1\u30c3\u30c1\u3092\u5165\u308c\u308b\u3068\u3044\u3044\u3068\u3042\u308b\u304c\u3001\u30bd\u30fc\u30b9\u304b\u3089\u3084\u3089\u306a\u3044\u3068\u3044\u3051\u306a\u3044\u306e\u3067\u3084\u3081\u305f\u3002\u3042\u3068\u4ed6\u306eWEB\u3067ssl_cipher=HIGH\u3068\u5165\u308c\u308b\u3068\u3088\u3044\u3068\u3042\u308a\u307e\u3057\u305f\u304c\u3001\u79c1\u306e\u5834\u5408\u306f\u5165\u308c\u3066\u3082\u51fa\u6765\u307e\u305b\u3093\u3067\u3057\u305f\u3002
\n2014-08-04\u8ffd\u8a18<\/span>\uff1a\u3053\u306e\u30a8\u30e9\u30fc\u306fGnuTLS\u306e\u554f\u984c\u3060\u3068\u601d\u3044\u307e\u3059\u3002\u305d\u3053\u3067GnuTLS\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u3092\u8abf\u3079\u308b\u3068
\nOK\u306a\u30db\u30b9\u30c8\uff1agnutls.x86_64 2.8.5-10.el6_4.2
\n\u30c0\u30e1\u306a\u30db\u30b9\u30c8\uff1agnutls.x86_64 2.8.5-14.el6_5
\n\u3067 \u3057\u305f\u3002OK\u306a\u30db\u30b9\u30c8\u306fCentOS\u306e6.4\u3067GnuTLS\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u306f2.8.5-10\u3060\u3063\u305f\u3002\u3053\u306e\u8fba\u304c\u554f\u984c\u307f\u305f\u3044\u3060\u304c\u3001gnutls\u306e 2.8.5-10\u306e\u3042\u308a\u304b\u304c\u5206\u304b\u3089\u306a\u3044\u3002\u3061\u306a\u307f\u306bVSFTPD\u304c\u52d5\u3044\u3066\u3044\u308b\u30db\u30b9\u30c8\u306e\u5206\u306f\u30c0\u30e1\u306a\u30db\u30b9\u30c8\u3068\u540c\u30582.8.5-14.el6_5\u3067\u3059
\n\u53c8\u3001FTP\u7528\u306e\u30d0\u30fc\u30c1\u30e3\u30eb\u30e6\u30fc\u30b6\u30fc\u3092\u4f5c\u308b\u65b9\u6cd5\u3082\u3042\u308a\u307e\u3059\u304c\u3001\u4e00\u90e8\u306e\u30e6\u30fc\u30b6\u30fc\u3067\u30a8\u30e9\u30fc\u304c\u51fa\u3066\u3001\u3046\u307e\u304f\u3044\u304d\u307e\u305b\u3093\u3067\u3057\u305f\u3002\u30a8\u30e9\u30fc\u306f<\/p>\n
\n
\u72b6\u614b:\tTLS\/SSL \u63a5\u7d9a\u304c\u78ba\u7acb\u3055\u308c\u307e\u3057\u305f.\r\n\u30ec\u30b9\u30dd\u30f3\u30b9:\t331 Please specify the password. \r\n\u30b3\u30de\u30f3\u30c9:\tPASS ********* \r\n\u30a8\u30e9\u30fc:\tGnuTLS error -8: A record packet with illegal version was received.<\/span><\/code><\/pre>\n<\/div>\n
\u63a5\u7d9a\u306f\u51fa\u6765\u308b\u304c\u30d1\u30b9\u30ef\u30fc\u30c9\u3067\u30d1\u30b1\u30c3\u30c8\u304c\u30a4\u30ea\u30fc\u30ac\u30eb\u30d0\u30fc\u30b8\u30e7\u30f3\u3060\u3068\u306f\u306d\u3089\u308c\u3066\u3044\u308b\u3002\u4ed6\u306e\u30e6\u30fc\u30b6\u30fc\u306f\u554f\u984c\u306a\u3044\u3057\u3001\u30d1\u30b9\u30ef\u30fc\u30c9\u3082\u4f55\u56de\u898b\u3066\u3082\u9593\u9055\u3063\u3066\u3044\u306a\u3044\u3057\u3001\u3082\u3057 \u9055\u3063\u3066\u5165\u308c\u3070\u3001\u30a8\u30e9\u30fc\u30e1\u30c3\u30bb\u30fc\u30b8\u304c\u9055\u3046\u3068\u601d\u3046\u3002google\u5148\u751f\u306b\u805e\u3044\u3066\u3082GnuTLS error -8\u306f\u51fa\u3066\u6765\u306a\u3044\u3002
\n2014-07-28\u8ffd\u8a18\uff1a<\/span>
\n\u4eca\u307e\u3067\u306f\u30b9\u30bf\u30f3\u30c9\u30a2\u30ed\u30fc\u30f3\u3067vsftp\u3092\u8d70\u3089\u305b\u3066\u3044\u307e\u3057\u305f\u304c\u3001FTP\u3067\u30c7\u30fc\u30bf\u30fc\u304c\u8ee2\u9001\u3055\u308c\u308b\u306e\u306f\u305d\u3093\u306a\u306b\u591a\u304f\u306a\u3044\u306e\u3067\u3001xinetd \u7d4c\u7531\u3067RQ\u304c\u3042\u3063\u3066\u304b\u3089vsftp\u3092\u8d70\u3089\u3059\u3088\u3046\u306b\u3057\u307e\u3059\u3002
\nCentOS\u3067\u306f\u30c7\u30d5\u30a9\u30eb\u30c8\u3067xinetd\u306f\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u7121\u3044\u306e\u3067yum\u304b\u3089\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u3066\u4e0b\u3055\u3044\u3002\u79c1\u306f\u65b0\u7701\u30a8\u30cd\u30b5\u30fc\u30d0\u30fc\u5236\u4f5c : \uff11\uff13\uff1aVNC\u30b5\u30fc\u30d0\u30fc\u306e\u8a2d\u5b9a\u3067\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u6e08\u307f\u3067\u3059\u3002<\/a>\u307e\u305a\u306fvsftpd\u3092\u6b62\u3081\u3001xinetd\u306e\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\u3092\u4f5c\u308a\u307e\u3059\u3002
\n#<\/span> service vsftpd stop<\/span>
\n#<\/span> chkconfig vsftpd off<\/span>
\n#<\/span> gedit \/etc\/xinetd.d\/vsftpd<\/span><\/p>\n
\n
service ftp {\r\n       socket_type    = stream\r\n       wait           = no\r\n       user           = root\r\n       server         = \/usr\/sbin\/vsftpd\r\n       server_args    = \/etc\/vsftpd\/vsftpd.conf\r\n       nice           = 10\r\n       disable        = no\r\n       flags          = IPv4<\/span>\r\n}<\/span><\/code><\/pre>\n<\/div>\n
CentOS\u306e\u5834\u5408\u306f \/etc\/services \u306b<\/p>\n
\n
ftp-data        20\/tcp\r\nftp-data        20\/udp\r\n# 21 is registered to ftp, but also used by fsp\r\nftp             21\/tcp\r\nftp             21\/udp          fsp fspd<\/span><\/code><\/pre>\n<\/div>\n
\u3068\u8a2d\u5b9a\u6e08\u307f\u306a\u306e\u3067\u4e0a\u8a18\u306e\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\u3060\u3051\u3067OK\u3067\u3059\u3002
\n\u8a2d\u5b9a\u3092\u5909\u3048\u305f\u306e\u3067xinetd\u3092\u518d\u8d77\u52d5
\n#<\/span> service xinetd restart<\/span>
\n\u3053\u308c\u3067FTP\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u304b\u3089\u3084\u308b\u3068\u30a8\u30e9\u30fc<\/p>\n
\n
\u72b6\u614b:\t\u63a5\u7d9a\u3092\u78ba\u7acb\u3057\u307e\u3057\u305f, \u30a6\u30a7\u30eb\u30ab\u30e0 \u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u5f85\u3063\u3066\u3044\u307e\u3059... \r\n\u30a8\u30e9\u30fc:\t\u30b5\u30fc\u30d0\u306b\u3088\u3063\u3066\u63a5\u7d9a\u304c\u9589\u3058\u3089\u308c\u307e\u3057\u305f<\/span><\/code><\/pre>\n<\/div>\n
\u305d\u3046\u3060\u3001vsftpd.conf\u3092\u5909\u66f4\u3059\u308b\u306e\u3092\u5fd8\u308c\u3066\u305f\u3002<\/p>\n
\n
listen=NO<\/span>\u3000\u2190 YES\u304b\u3089NO\u306b\u5909\u66f4<\/span><\/code><\/pre>\n<\/div>\n
\u3053\u308c\u3067\u3064\u306a\u304c\u3063\u305f\u3002<\/p>\n<\/div>\n
<\/div>\n","protected":false},"excerpt":{"rendered":"
vsftpd\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb # yum -y install vsftpd vsftpd\u8a2d\u5b9a # gedit \/etc\/vsftpd\/vsftpd.conf anonymous_enable=NO\u3000\u2190\u3000no\u306b\u5909\u66f4 xfe … \u7d9a\u304d\u3092\u8aad\u3080 →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"vkexunit_cta_each_option":"","footnotes":""},"categories":[8],"tags":[],"class_list":["post-1226","post","type-post","status-publish","format-standard","hentry","category-server"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/posts\/1226","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1226"}],"version-history":[{"count":6,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/posts\/1226\/revisions"}],"predecessor-version":[{"id":3323,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/posts\/1226\/revisions\/3323"}],"wp:attachment":[{"href":"https:\/\/www.kinryo.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1226"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1226"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1226"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}