Experimental environment CentOS7, vsftpd3.0.2
Create two accounts fanyc1, fanyc2
1. Login account restrictions:
Conclusion 1: ftpuusers is a blacklist, as long as there are only users here, they cannot log in
Conclusion 2: user_list is a whitelist. After the following configuration, users who are not in ftpusers but in user_list can log in
# vsftpd.conf userlist_enable=YES userlist_deny=NO
Conclusion 3: user_list is a blacklist. After the following configuration, users who are not in ftpusers and not in user_list can log in
# vsftpd.conf userlist_enable=YES userlist_deny=YES
2. Home directory restriction: first ensure that both fanyc1 and fanyc2 can log in through the above user_list whitelist
Conclusion 1: Users in the chroot_list are restricted to the home directory
chroot_local_user=NO chroot_list_enable=YES chroot_list_file=/etc/vsftpd/chroot_list allow_writeable_chroot=YES // Solve the problem of 500 OOPS error on the client side
Conclusion 2: Users not in the chroot_list are restricted to the home directory
chroot_local_user=YES chroot_list_enable=YES chroot_list_file=/etc/vsftpd/chroot_list allow_writeable_chroot=YES // Solve the problem of 500 OOPS error on the client side