Knowledgebase

How do I change the FTP server to use SFTP?

 

Login to the server and recompile proftp:

 

cd /usr/local/directadmin/custombuild
./build update
perl -pi -e 's/proftpd=no/proftpd=yes/g' options.conf
mkdir -p custom/proftpd
cp configure/proftpd/configure.proftpd custom/proftpd/configure.proftpd
perl -pi -e 's/mod_tls/mod_sftp/g' custom/proftpd/configure.proftpd
./build proftpd

 

Edit "/etc/proftpd.conf" and change "Port" to new port number (i.e. 1122) and add the following section:

 

 

# SFTP Support
SFTPEngine      On
SFTPHostKey /etc/ssh/ssh_host_rsa_key
SFTPHostKey /etc/ssh/ssh_host_dsa_key
SFTPClientMatch "WS_FTP" channelWindowSize 1GB
# enable for sftp debugging:
#TraceLog /var/log/proftpd/sftp-trace.log
#Trace scp:20 sftp:20 ssh2:20

 

Edit "/etc/proftpd.vhosts.conf" and for each VirtualHost section insert (comment out the bytes log in each VirtualHost entry):

 

SFTPEngine      On
Port            1122
SFTPHostKey /etc/ssh/ssh_host_rsa_key
SFTPHostKey /etc/ssh/ssh_host_dsa_key

Edit "/usr/local/directadmin/data/templates/custom/proftpd.vhosts.conf" and add/merge the following:

 

        ServerName              "|ServerName|"
        AuthUserFile            |AuthUserFile|
        SFTPEngine      On
        Port            1122
        SFTPHostKey /etc/ssh/ssh_host_rsa_key
        SFTPHostKey /etc/ssh/ssh_host_dsa_key

Restart Proftpd

/etc/init.d/proftpd restart

 

Allow the port through the firewall (i.e edit /etc/csf/csf.conf and add to TCP_IN).

 

Add to Favourites    Print this Article

DirectAdmin HowTo ... Upgrade Apache from 1.x to 2.x (Views: 1639)

How do I access the DirectAdmin control panel? (Views: 3067)

What is PHP? (Views: 2488)

What is MySQL? (Views: 2461)

Change control panel & FTP passwords (Views: 2366)