Novell迷

本站QQ群:29602181
Novell 讨论交流群

搜索

热门标签

Novell资讯 NetWare LinuxSUSE ZENworks GroupWise i 系列 Platespin
返回首页
当前位置: Novell迷 > Novell归档 > SUSE >

如何在OES2上架设FTP服务器

时间:2009-05-03 22:38来源:未知 作者:Novell迷 点击:
Here are the recommended steps to prevent LDAP anonymous binds via FTP to the OES2 server. Install Novell FTP through the OES install and configuration within YAST. Go to the LDAP server object through iManager. Go to the Connections section
Here are the recommended steps to prevent LDAP anonymous binds via FTP to the OES2 server.
  1. Install Novell FTP through the OES install and configuration within YAST.  

  2. Go to the LDAP server object through iManager. Go to the Connections section of the General Tab. Under Restrictions change the bind restrictions to "Disallow anonymous simple bind" Apply the setting, go to the General Information tab and choose the refresh button to reload LDAP.

  3. Go to the LDAP group object through iManager. Uncheck the "require TLS for Simple Binds with password"

  4. Edit the /etc/ldap.conf. The below changes / settings are required:
    • host <ipaddr>  (recommend local ip address)
    • base <FDN of base> (example: "base o=novell")
    • ldap_version 3
    • bind_policy soft
    • binddn <FDN of user> (this is your proxy user that will authenticate. This is required for the disabled anonymous bind to work.)
    • bindpw <password of binddn user>
    • pam_lookup_policy yes
    • pam_password nds
    • change "ssl on" to "ssl no"
    • uncomment the nss_map_attribute uniqueMember member line
    • comment out the ssl start_tls comment Novell迷网站內容,版权所有

  5. Edit the /etc/pure-ftpd/pure-ftpd.conf file.
    • Enable parameter CreateHomeDir to yes.
    • Set the AnonymousOnly to no if you want eDirectory users to authentitcate as the ftp user.
    • Set the NoAnonymous to yes if you don't want any anonymous ftp users.
    • If you wish to login to ftp as an anonymous ftp user, when it prompts for a user, type "anonymous". (This is different than LDAP anonymous authentication)

  6. As anonymous LDAP binds are disabled, you will want to configure LUM to use a proxy user. Modify the nam.conf to do this. Make sure the proxy user has sufficient rights to the LUM objects in the tree.
  • proxy-user-fdn=cn=lum-proxy,o=novell
  • proxy-user-pwd=novell

Make sure to add a replica of the partition where the user objects are located as well as the server's ncp server object. This will help with LUM, FTP and LDAP related events. 本文转载自http://novell.me

LUM enable all users you wish to FTP into the box.

Run the following commands to get the services back up and running:
rcpure-ftpd stop
rcpure-ftpd start
nldap -u
nldap -l
rcnamcd stop
rcnamcd start 转载请注明出处!
本文地址 http://novell.me/SUSE/2009/0503/setup-ftp-on-oes2.html
(责任编辑:Novell迷)
对我有帮助
(0)
0%
没什么帮助
(0)
0%
------分隔线----------------------------
发表评论
验证码:点击我更换图片
最新评论 进入详细评论页>>
赞助商链接
推荐内容
热点内容

关于我们 | 加群须知 | 捐助本站 | 网站声明 | 网站地图 | 联系我们 | 会员中心 | TAG标签 | RSS订阅
Copyright © 2009 Novell迷 版权所有苏ICP备14034963号-1

苏公网安备 32059002001001号

P0wered By D3d3CMS