Manual Pages
Table of Contents
na_ftpd - file transfer protocol daemon
options ftpd.enable on
FTPD is the Internet File Transfer Protocol (FTP) server
process. The server uses the TCP protocol and listens at
the well-known port (21) for ftp.
Requests
The FTP server currently supports the following FTP
requests; case is not distinguished.
-
ABOR
- Abort previous command.
-
ACCT
- Specify account (ignored).
-
ALLO
- Allocate storage (without using space).
-
APPE
- Append to a file.
-
AUTH
- Security mechanism.
-
CCC
- Clear command channel.
-
CDUP
- Change to parent of current working directory.
-
CWD
- Change working directory.
-
DELE
- Delete a file.
-
EPRT
- Specify data connection port (IPv4 or IPv6).
-
EPSV
- Prepare for passive mode transfer (IPv4 or
IPv6).
-
HELP
- Give help information.
-
LIST
- Give list files in a directory (ls -lg).
-
MKD
- Make a directory.
-
MODE
- Specify data transfer. mode
-
NLST
- Give name list of files in directory (ls).
-
NOOP
- Do nothing.
-
PASS
- Specify password.
-
PASV
- Prepare for server-to-server transfer.
-
PBSZ
- Protection buffer size.
-
PORT
- Specify data connection port.
-
PROT
- Data channel protection level.
-
PWD
- Print the current working directory.
-
QUIT
- Terminate session.
-
RETR
- Retrieve a file.
-
RMD
- Remove a directory.
-
RNFR
- Specify rename-from file name.
-
RNTO
- Specify rename-to file name.
-
STOR
- Store a file.
-
STOU
- Store a file with a unique name.
-
STRU
- Specify data transfer structure.
-
TYPE
- Specify data transfer type.
-
USER
- Specify user name.
-
XCUP
- Change to parent of current working directory.
-
XCWD
- Change working directory.
-
XMKD
- Make a directory.
-
XPWD
- Print the current working directory.
-
XRMD
- Remove a directory.
The remaining FTP requests specified in RFC 959 are recognized,
but not implemented.
The FTP server aborts an active file transfer only when
the ABOR command is preceded by a Telnet "Interrupt Process"
(IP) signal and a Telnet "Synch" signal in the command
Telnet stream, as described in RFC 959.
The FTP server interprets file names according to the
"globbing" conventions used by sh(1). This enables users
to use the metacharacters: * ? [ ] { } ~.
The FTP server authenticates users according to two rules:
First, the user name must be in the password database,
/etc/passwd, and have a password that is not NULL. A
password must always be provided by the client before any
file operations can be performed.
Second, if the user name is "anonymous" or "ftp", an entry
for the user name ftp must be present in the password and
shadow files. The user is then allowed to log in by specifying
any password -- by convention this is given as the
user's email address (such as [email protected]). Do not
specify a valid shell in the password entry of the ftp
user, and do not give it a valid password (use NP in the
encrypted password field of the shadow file).
For anonymous ftp users, the FTP server takes special measures
to restrict the client's access privileges. The
server performs a chroot(2) command to the home directory
of the "ftp" user.
Ftpd logs all commands to the /etc/log/ftp.cmd file.
Ftpd logs all transfers to the /etc/log/ftp.xfer file.
/etc/passwd
/etc/log/ftp.cmd
/etc/log/ftp.xfer
Postel, Jon, and Joyce Reynolds, File Transfer Protocol
(FTP), RFC 959, Network Information Center, SRI International,
Menlo Park, Calif., October 1985.
Ford-Hutchison, Securing FTP with TLS, RFC 4217, IBM UK
Ltd. October 2005.
Table of Contents