]>
Commit | Line | Data |
---|---|---|
1 | #Configuration file for bftpd. | |
2 | #The given values are only examples, modify this file for your own needs. | |
3 | ||
4 | user global { | |
5 | #If set to no, access is allowed. | |
6 | #If set to yes, access is denied without giving a reason. | |
7 | #If set to anything else, access is denied giving the content of this variable as a reason. | |
8 | DENY_LOGIN="no" | |
9 | ||
10 | #If SERVER_ENABLED is not set to yes, you can give a reason for the server | |
11 | #shutdown here, or just say 'none'. | |
12 | DISABLE_REASON=none | |
13 | ||
14 | #If PORT data connections should be opened from port 20, say yes here. You | |
15 | #will probably need this if your server is behind a firewall that restricts | |
16 | #outgoing packets from ports higher than 1024. Note that this may be a | |
17 | #security hole, as the server can not drop its root privileges completely | |
18 | #if you say yes here. | |
19 | DATAPORT20="no" | |
20 | ||
21 | #You can force bftpd to use a specific port range in passive mode. | |
22 | #If none of the given ports could be bound, the connection is | |
23 | #is refused. If you want to bind any free port in that case, add | |
24 | #"0" to the list. | |
25 | #PASSIVE_PORTS="10000,12000-12100,13000" | |
26 | PASSIVE_PORTS="0" | |
27 | ||
28 | #The password for the administration commands, encrypted (man mkpasswd). | |
29 | ADMIN_PASS="x" | |
30 | ||
31 | #With this option, you can put your entire FTP environment into a chroot | |
32 | #jail. Apart from security, this offers you the possibility of having | |
33 | #virtual users that don't exist in the system. | |
34 | #INITIAL_CHROOT="/ftp" | |
35 | ||
36 | #This option controls the buffer size while transferring files. | |
37 | #If you are on a very fast network (fast meaning 100 Mbit/s or more), | |
38 | #you should set this to 64000 or something like that. | |
39 | #Transferring from localhost to localhost, I had a transfer speed of | |
40 | #approx. 15 MB/s with XFER_BUFSIZE=2048 and a speed of approx. 20 MB/s | |
41 | #with XFER_BUFSIZE=64000. You should not set big values for this if you have | |
42 | #slow (dialup) clients. | |
43 | XFER_BUFSIZE="2048" | |
44 | ||
45 | #When set to yes, this option makes the server allow data connections which | |
46 | #don't go to the client who initiated them. | |
47 | #This is needed for FXP. | |
48 | ALLOW_FXP="no" | |
49 | ||
50 | #With the option ALLOWCOMMAND_XXXX, you can disable the command XXXX. | |
51 | #For example, if you don't want any user to delete files, you can do | |
52 | #ALLOWCOMMAND_DELE=no | |
53 | #Of course, you can disable it for specific users by writing the appropiate | |
54 | #lines into the user structures. | |
55 | ALLOWCOMMAND_DELE="yes" | |
56 | ALLOWCOMMAND_STOR="yes" | |
57 | ALLOWCOMMAND_SITE="yes" | |
58 | ||
59 | #After how many seconds of idle time should a user be kicked from the server? | |
60 | CONTROL_TIMEOUT="300" | |
61 | ||
62 | #After how many seconds of idle time should a user be kicked from the server | |
63 | #during a file transfer? | |
64 | DATA_TIMEOUT="30" | |
65 | ||
66 | #Use Ratio if you want the client to send a file before he can get a file. | |
67 | #Usage: RATIO=send/receive or RATIO=none. Example: RATIO=2/1 lets the client | |
68 | #receive a 1 MB file when he has sent a 2 MB file. | |
69 | RATIO=none | |
70 | ||
71 | #ROOTDIR specifies the root directory of the client. It defaults to %h | |
72 | #(user's home directory). %u is replaced by the user name. | |
73 | ROOTDIR="%h" | |
74 | ||
75 | #Umask for the files or directories users create. | |
76 | UMASK=022 | |
77 | ||
78 | #Name of the log file. Specify "syslog" (without quotes) to log into syslog. | |
79 | LOGFILE="/var/log/bftpd.log" | |
80 | ||
81 | #Use %v for version, %h for the server FQDN and %i for the server IP address. | |
82 | HELLO_STRING=bftpd %v at %h(%i) ready. | |
83 | ||
84 | #Path to the message of the day, seen by all users before login. | |
85 | MOTD_GLOBAL="/etc/ftpmotd" | |
86 | ||
87 | #Path to the message of the day, seen after login, relative to the root | |
88 | #path of the user (see ROOTDIR). | |
89 | MOTD_USER="/.ftpmotd" | |
90 | ||
91 | #What message should be used as reply for the QUIT command? | |
92 | QUIT_MSG="See you later..." | |
93 | ||
94 | #Authentication type, values: PAM, PASSWD | |
95 | AUTH=PAM | |
96 | ||
97 | #Enable this if you want the client's IP address to be resolved to a host | |
98 | #name. Note that it increases the overhead and it may not work if your DNS | |
99 | #is not configured correctly. Clients without a valid DNS name will take very | |
100 | #long to connect. | |
101 | RESOLVE_CLIENT_IP=no | |
102 | ||
103 | #If RESOLVE_UIDS is enabled, in directory lists the user and group names | |
104 | #are shown instead of UID/GID. This may slow down directory listings. | |
105 | RESOLVE_UIDS=yes | |
106 | ||
107 | #If DO_CHROOT is enabled, a user can not access directories other than his | |
108 | #HOMEDIR and its subdirectories. DON'T disable this globally if you don't | |
109 | #want to have a security hole! | |
110 | DO_CHROOT=yes | |
111 | ||
112 | #Enable this to log each login to wtmp. | |
113 | LOG_WTMP=yes | |
114 | ||
115 | #If you want bftpd to bind itself to one specific network interface, enter | |
116 | #its IP address here. Else enter 'any'. This option only works in standalone | |
117 | #mode. | |
118 | BIND_TO_ADDR=any | |
119 | ||
120 | #Path to the ftpusers file. It can contain user names that are denied. | |
121 | #If it does not exist, every user can log in. If you don't want this, | |
122 | #just put a nonexistent filename here. | |
123 | PATH_FTPUSERS="/etc/ftpd/ftpusers" | |
124 | } | |
125 | ||
126 | user ftp { | |
127 | #Any password fits. | |
128 | ANONYMOUS_USER=yes | |
129 | } | |
130 | ||
131 | user anonymous { | |
132 | #If the client wants anonymous, ftp is taken instead. | |
133 | ALIAS=ftp | |
134 | } | |
135 | ||
136 | user root { | |
137 | SERVER_ENABLED=no | |
138 | DISABLE_REASON=Root login not allowed. | |
139 | } |