I’m at my [limited] wits end!
I’ve been trying to fortify my My Book Live 3GB’s for external access by family members gradually spreading out around the globe.
I don’t like the WD2GO solution due to the lack of controls/logging, so I’ve been utilizing FTP within the MBL.
However, I feel exposed with that solution, so I’ve been trying to implement SFTP with logons for specified MBL users.
Using threads like How to Setup Secure FTP, and others, I sucessfully got it working. However, when the client software (Filezilla) connects, the user (not admin) goes to the root level of the device, not to the /shares folder. The etc/password file shows /shares as the home directory, but it’s being ignored. I love my family, but I’m not at all confortable with them being able to modify root level files!
I have configured etc/vsftpd.conf and restarted it.
Following is the vsftp.conf file I’m using.
Hopefully someone knows what I’m doing wrong! Thanks!
Turn on SSL
Allow anonymous users to use secured SSL connections Sugg: YES
All non-anonymous logins are forced to use a secure SSL connection in order to
send and receive data on data connections. Sugg: YES
All non-anonymous logins are forced to use a secure SSL connection in order to send the password.
Permit TLS v1 protocol connections. TLS v1 connections are preferred
Permit SSL v2 protocol connections. TLS v1 connections are preferred
permit SSL v3 protocol connections. TLS v1 connections are preferred
Disable SSL session reuse (required by WinSCP)
Select which SSL ciphers vsftpd will allow for encrypted SSL connections (required by FileZilla)
This option specifies the location of the RSA certificate to use for SSL