Here we will install and configure vsftpd (Very Secure File Transfer Protocol Daemon) on Ubuntu.
Install vsftpd
Update the package list and dependencies for vsftpd. Then second command download and Install vsftpd.
$ sudo apt update && sudo apt install vsftpd
Check the status of vsftpd
$ sudo service vsftpd status
Configure Firewall
$ sudo ufw allow OpenSSH
$ sudo ufw allow 20/tcp$ sudo ufw allow 21/tcp
$ sudo ufw allow 40000:50000/tcp
$ sudo ufw allow 990/tcp
$ sudo ufw enable
$ sudo ufw status
Create FTP User
$ sudo adduser ftpuser
$ sudo nano /etc/ssh/sshd_config
DenyUsers ftpuser
$ sudo service sshd restart
Directory Permissions
Upload to a Web Server
$ sudo usermod -d /var/www ftpuser
$ sudo chown ftpuser:ftpuser /var/www/html
Upload to a Home Folder
$ sudo mkdir /home/ftpuser/ftp
$ sudo chown nobody:nogroup /home/ftpuser/ftp
$ sudo chmod a-w /home/ftpuser/ftp
$ sudo mkdir /home/ftpuser/ftp/files
$ sudo chown ftpuser:ftpuser /home/ftpuser/ftp/files
Configure vsftpd
$ sudo mv /etc/vsftpd.conf /etc/vsftpd.conf.bak
$ sudo nano /etc/vsftpd.conf
listen=NO
listen_ipv6=YES
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
dirmessage_enable=YES
use_localtime=YES
xferlog_enable=YES
connect_from_port_20=YES
chroot_local_user=YES
secure_chroot_dir=/var/run/vsftpd/empty
pam_service_name=vsftpd
force_dot_files=YES
pasv_min_port=40000
pasv_max_port=50000user_sub_token=$USER
local_root=/home/$USER/ftpWe are done with vsftpd.conf
$ sudo systemctl restart vsftpd
Secure FTP with TLS (Recommended)
$ sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/vsftpd.pem -out /etc/ssl/private/vsftpd.pem$ sudo nano /etc/vsftpd.conf
ssl_enable=YES
rsa_cert_file=/etc/ssl/private/vsftpd.pem
rsa_private_key_file=/etc/ssl/private/vsftpd.pem
allow_anon_ssl=NO
force_local_data_ssl=YES
force_local_logins_ssl=YES
ssl_tlsv1=YES
ssl_sslv2=NO
ssl_sslv3=NO
require_ssl_reuse=NO
ssl_ciphers=HIGH$ sudo systemctl restart vsftpd
