[CentOS] selinux allow FTP
SilverTip257
silvertip257 at gmail.com
Tue Mar 3 17:35:56 UTC 2015
On Mon, Mar 2, 2015 at 5:51 PM, Eero Volotinen <eero.volotinen at iki.fi>
wrote:
> 2015-03-03 0:43 GMT+02:00 Tim Dunphy <bluethundr at gmail.com>:
>
> > >
> > > errr, I meant, sftp, not rscp
> >
> >
> > Heh.. yeah. But the client isn't gonna go for that. LOL. Any way to allow
> > regular ol' FTP using SELinux? Or does that just defeat the purpose of
> > having a secure SELlinux server entirely?
> >
>
> FTP is not safe as it does not encrypt username(s) and password(s) or
> traffic during transfer.
>
I'd choose SSH for my own users.
And for customers if proper steps are taken to prevent any interactive
shells (it's even dicier with shared hosting).
>
> RHEL/Centos provides SELinux booleans and settings at least for vsftpd
> (very secure ftpd). Please use it, if possible.
>
Use FTPS protocol?
http://wiki.vpslink.com/Configuring_vsftpd_for_secure_connections_(TLS/SSL/SFTP)
--
---~~.~~---
Mike
// SilverTip257 //
More information about the CentOS
mailing list