Securing an FTP server on Ubuntu

As some of you might notice i setup a new blog recently, and with that, the most important thing needs to be dealt with, backups.  My blog is running WordPress, and i used one of the numerous backup plugins from the repository.  One of those options for backup is FTP of the files.  I like having a copy of things on my home network, so i decided to setup an FTP server on my Ubuntu machine.

Setting up an FTP on Ubuntu is really really simple

sudo apt-get install vsftpd

I chose vsftp since it has good reviews, is easy to setup via the repository and is known for strong security.

Once you have run the install, you can edit the configuration of vsftp with your favorite editor ( mine’s vim )

sudo vi /etc/vsftpd.conf

There are a couple changes I strongly recommend you make the following changes

uncomment the following lines

local_enable=YES # this allows only users that have an account on the machine to login via FTP

write_enable=YES # this allows authorized users to write to the FTP server not only read

chroot_local_user=YES # this locks users to their home directory

Once this is setup,  I proceeded to create a “throwaway” account for the WordPress backups with a strong password.  Once the account is setup, the WordPress backup plugin copies the backups to this account, and i move them to somewhere else using a script.

2 Replies to “Securing an FTP server on Ubuntu”

Leave a Reply

Your email address will not be published. Required fields are marked *