Pure Ftpd Metasploit

  



Get my OWASP course with 90% discount on Udemy.Use coupon code: HACKYTDis a demo. Pure-FTPd is a free and secure FTP server. It provides efficiency and ease of use, simple answers to common needs, plus unique useful features for personal users as well as hosting providers. This how to guide will help you to setup Pure-FTPd with MySQL as user database. Also providing detailed instruction to create a user.

I’ve tried different solution for automatic backup of Cisco devices from different clients including python ssh scripting and so on. Cisco included in his routers and switches the “archive” and the “kron” commands that help us in our task and makes it very easy. In this tutorial we describe how to install a better solution than tftp server with FTP protocol, using pure-ftp and centos 7.

tasks:

– scheduled backup of running-config file on remote FTP server
– automatic snapshot at every write memory command

steps:

– pure-ftp installation
– Cisco device configuration

Metasploit

Pure-ftp

Pure ftpd configPure Ftpd Metasploit

in this configuration we’re gonna use virtual user access (no PAM or Unix access)

download epel package

install pure-ftp

configure and set some security settings pure-ftpd

here are some settings:

on centos system we create a pure-ftp user with the relative group:

let’s create a folder to be used for the FTP-server

change folder permissions

create a virtual user “bob” with home folder /home/user/ftp-folder/

insert password.

create virtual user database with this command:

list users with folders

our ftp server is ready

Cisco Devices settings

in this case we want to configure an automatic configuration backup every time we save changes to our device with the command “copy run start” and every day at 01:00 am

insert login parameters to access ftp server

enable backup every time we save the configuration:

in this case when we execute “wr” or “copy running-config startup-config” there’ll be a configuration transfer to our FTP server

if we want to schedule an automatic backup we have to set up the kron command

Pure Ftpd Config

with the command:

Pure Ftpd Metasploit

we can check if everything is ok.
using sh kron schedule

we have information about the next time the schedule will be executed.

Pure Ftpd Configuration

Metasploit

Pure Ftpd Exploit

at this point we have a working system for automatic backup of cisco devices.
The problem at this point will be the logrotate for the rotation of older files that we don’t need to store. This will be the argument of the next tutorial

Pure Ftpd Ssl

enjoy