Configuring FTP Access: Difference between revisions

From Sympl Wiki
Jump to navigation Jump to search
Tag: visualeditor-wikitext
m (Kelduum moved page Setting FTP Access to Configuring FTP Access)
 
(2 intermediate revisions by the same user not shown)
Line 1: Line 1:
FTP can be set up in a number of ways, for the basic guide, we will look at the already enabled 'sympl' users access, setting up access per domain and then setting per user access for that domain
FTP can be set up in a number of ways, for the basic guide, we will look at setting up access per domain, and for specific users on that domain.
 
==SSH FTP access==
 
Any 'regular' user set up with an account on sympl, users set up with 'useradd' or 'adduser' command, will be able to connect over sftp by default. This is an ftp session created of ssh and as such carries the encryption of the ssh connection. You can connect using sftp using most FTP clients and you will need the ip address or hostname of the server, username and password. The 'sympl' user that was set up when sympl was installed will be able to connect over sftp.


==Per domain access==
==Per domain access==
Line 11: Line 7:
<code>/srv/'''''example.com'''''/config/ftp-password</code>
<code>/srv/'''''example.com'''''/config/ftp-password</code>


The easiest way to do this is to create the file, connect using SFTP as above with the 'sympl' users credentials, navigate to the remote directory <code>/srv/'''''example.com'''''/config</code> and then upload the file <code>ftp-password</code>. You will then be able to connect using [https://wiki.filezilla-project.org/FTP_over_TLS#Explicit_vs_Implicit_FTPS Explicit FTPS] to the server using <code>'''''example.com'''''</code> as the username and the password that is in the ftp-password file. The directory path will automatically be set to the public folder of the domain <code>/srv/'''''example.com'''''/public/</code>
The directory path will automatically be set to the public folder of the domain <code>/srv/'''''example.com'''''/public/</code> allowing access to the <code>logs</code> and <code>htdocs</code> directories.


==Per user domain access==
==Per user domain access==
Line 20: Line 16:


   # username:password:directory:quota
   # username:password:directory:quota
   babs:babs password:babs:10M
   babs:babsPassword:babs:10M


This file will allow access to <code>babs@'''''example.com'''''</code> with the password <code>babs password</code> to the folder <code>/srv/'''''example.com'''''/public/babs/ </code>with a userquota of 10M. The directory must be relative to the public folder of the domain the ftp-users file correlates to, otherwise you will get an authentication error.
This file will allow access to <code>babs@'''''example.com'''''</code> with the password <code>babsPassword</code> to the folder <code>/srv/'''''example.com'''''/public/babs/ </code>with a quota of 10M. The directory must be relative to the public folder of the domain the ftp-users file correlates to, otherwise you will get an authentication error.


For more details on configuring FTP Access, see [[FTP_Configuration_Reference]]
For more details on configuring FTP Access, see [[FTP_Configuration_Reference]]
==SFTP (FTP over SSH)==
Any regular system user, such as the <code>sympl</code> user or other, users set up with <code>adduser</code> command, will be able to connect using SFTP by default.
This is an FTP session connecting over an SSH connection and as such carries the encryption of the SSH connection, but allows full access to the server rather than limiting the user to the relevant domain, potentially allowing snooping on emails or changing of the operating system configuration, and as such it is suggested this isn't used for third parties.
You can connect using SFTP using most FTP clients - you will need the IP address or hostname of the server, username and password or SSH key. The <code>sympl</code> user that was set up when Sympl was installed will be able to connect over SFTP, and can be used to make most configuration changes.


==See Also==
==See Also==

Latest revision as of 11:37, 4 September 2020

FTP can be set up in a number of ways, for the basic guide, we will look at setting up access per domain, and for specific users on that domain.

Per domain access

You can set up ftp access to a domain by adding a file called 'ftp-password' containing the password to the relevent domain's config folder:

/srv/example.com/config/ftp-password

The directory path will automatically be set to the public folder of the domain /srv/example.com/public/ allowing access to the logs and htdocs directories.

Per user domain access

For granting access to individual users to a domain you will need to set up another file called ftp-users. The file needs to be in the same location of /srv/example.com/config/ftp-users

The file needs to be in the following format and comments start with a #:

 # username:password:directory:quota
 babs:babsPassword:babs:10M

This file will allow access to babs@example.com with the password babsPassword to the folder /srv/example.com/public/babs/ with a quota of 10M. The directory must be relative to the public folder of the domain the ftp-users file correlates to, otherwise you will get an authentication error.

For more details on configuring FTP Access, see FTP_Configuration_Reference

SFTP (FTP over SSH)

Any regular system user, such as the sympl user or other, users set up with adduser command, will be able to connect using SFTP by default.

This is an FTP session connecting over an SSH connection and as such carries the encryption of the SSH connection, but allows full access to the server rather than limiting the user to the relevant domain, potentially allowing snooping on emails or changing of the operating system configuration, and as such it is suggested this isn't used for third parties.

You can connect using SFTP using most FTP clients - you will need the IP address or hostname of the server, username and password or SSH key. The sympl user that was set up when Sympl was installed will be able to connect over SFTP, and can be used to make most configuration changes.

See Also