ec2 customization
aws ec2
EC2 Instance
- vsftpd
- Enabled vsftpd as per this site.
- Fixing error 500 oops vsftpd refusing to run with writable root inside chroot.
- Added below to vsftpd.conf
listen=YES #--- for error in filezilla "Server sent passive reply with unroutable address. Using server address instead."
#listen_ipv6=YES #--- for error in filezilla "Server sent passive reply with unroutable address. Using server address instead."
pasv_enable=YES
port_enable=YES
pasv_min_port=64000 #--- open in aws security groups
pasv_max_port=64321 #--- open in aws security groups
allow_writeable_chroot=YES #--- Fixing 500 OOPS: vsftpd: refusing to run with writable root inside chroot ()
pasv_address=xx.xx.xx.xx
pasv_addr_resolve=NO
#pasv_address=host.domain.com
#pasv_addr_resolve=YES
pasv_promiscuous=YES #--- fixes "425 Security: Bad IP connecting" in filezilla when downloading files
#start TLS config (https://www.digitalocean.com/community/tutorials/how-to-configure-vsftpd-to-use-ssl-tls-on-a-centos-vps)
rsa_cert_file=/etc/pki/tls/certs/host_domain.crt
rsa_private_key_file=/etc/pki/tls/private/host_PRIVATE_KEY.key
ssl_enable=YES
allow_anon_ssl=NO
force_local_data_ssl=YES
force_local_logins_ssl=YES
ssl_tlsv1=YES
ssl_sslv2=NO
ssl_sslv3=NO
require_ssl_reuse=NO
ssl_ciphers=HIGH
#end TLS config
- Set timezone
- timedatectl list-timezones
- timedatectl set-timezone Asia/Kolkata