How to Configure ProFTPD with SFTP

Technology computers-hardware
By Technology
104 15
    • 1). Launch a text editor such as Notepad in Windows or TextEdit in OS X.

    • 2). Locate the "ftpes.conf" file in your ProFTPD directory and open it in the text editor.

    • 3). Change the text in the .conf file to the following and save the changes:

      Include /usr/local/etc/proftpd/proftpd.conf

      <IfModule mod_tls.c>
      TLSEngine on
      PassivePorts 49152 65535
      #MasqueradeAddress 123.456.789.012 # in case ftpd is behind a firewall
      TLSLog /var/log/proftpd/tls.log
      TLSProtocol SSLv23
      # Require protection on the control channel, but reject protection of the data channel
      TLSRequired ctrl+!data
      TLSRSACertificateFile /usr/local/etc/ssl/certs/proftpd.pem
      TLSRSACertificateKeyFile /usr/local/etc/ssl/certs/proftpd.pem
      TLSVerifyClient off
      TLSRenegotiate none
      </IfModule>

    • 4). Locate the "sftp.conf" file in ProFTPD's directory and open it in the text editor. Modify the text in the file to match the example below. You can change some of the variables such as the network port and maximum number of failed login attempts allowed per connection.

      Include /usr/local/etc/proftpd/proftpd.conf

      <IfModule mod_sftp.c>
      SFTPEngine on
      SFTPLog /var/log/proftpd/sftp.log
      Port 22
      SFTPHostKey /etc/ssh/ssh_host_rsa_key
      SFTPHostKey /etc/ssh/ssh_host_dsa_key
      SFTPCompression delayed
      MaxLoginAttempts 4
      </IfModule>

    • 5). Save the changes to the sftp.conf file and locate the file named "proftpd.conf". Open it in your text editor and change it to the configuration below. Change out the port, maximum instances (simultaneous connections) allowed as well as the IP of the Virtual Host.

      ServerType standalone
      UseReverseDNS off
      DeferWelcome off
      Port 22
      Umask 022
      MaxInstances 30
      User ftp
      Group ftp
      SystemLog /var/log/proftpd/proftpd.log
      TransferLog /var/log/proftpd/xferlog
      <Global>
      <Directory /*>
      AllowOverwrite on
      </Directory>
      </Global>
      <VirtualHost 192.168.789.123>
      ServerName "ProFTPD"
      DefaultRoot ~/www
      DefaultServer on
      </VirtualHost>

    • 6). Save the changes to proftpd.conf and restart the computer that hosts the ProFTPD server to complete the SFTP configuration.

Source...
Subscribe to our newsletter
Sign up here to get the latest news, updates and special offers delivered directly to your inbox.
You can unsubscribe at any time
You might also like on "Technology"

Leave A Reply

Your email address will not be published.