1 #Configuration file for bftpd.
2 #The given values are only examples, modify this file for your own needs.
5 #If set to no, access is allowed.
6 #If set to yes, access is denied without giving a reason.
7 #If set to anything else, access is denied giving the content of this variable as a reason.
10 #If SERVER_ENABLED is not set to yes, you can give a reason for the server
11 #shutdown here, or just say 'none'.
14 #If PORT data connections should be opened from port 20, say yes here. You
15 #will probably need this if your server is behind a firewall that restricts
16 #outgoing packets from ports higher than 1024. Note that this may be a
17 #security hole, as the server can not drop its root privileges completely
21 #You can force bftpd to use a specific port range in passive mode.
22 #If none of the given ports could be bound, the connection is
23 #is refused. If you want to bind any free port in that case, add
25 #PASSIVE_PORTS="10000,12000-12100,13000"
28 #The password for the administration commands, encrypted (man mkpasswd).
31 #With this option, you can put your entire FTP environment into a chroot
32 #jail. Apart from security, this offers you the possibility of having
33 #virtual users that don't exist in the system.
34 #INITIAL_CHROOT="/ftp"
36 #This option controls the buffer size while transferring files.
37 #If you are on a very fast network (fast meaning 100 Mbit/s or more),
38 #you should set this to 64000 or something like that.
39 #Transferring from localhost to localhost, I had a transfer speed of
40 #approx. 15 MB/s with XFER_BUFSIZE=2048 and a speed of approx. 20 MB/s
41 #with XFER_BUFSIZE=64000. You should not set big values for this if you have
42 #slow (dialup) clients.
45 #When set to yes, this option makes the server allow data connections which
46 #don't go to the client who initiated them.
47 #This is needed for FXP.
50 #With the option ALLOWCOMMAND_XXXX, you can disable the command XXXX.
51 #For example, if you don't want any user to delete files, you can do
53 #Of course, you can disable it for specific users by writing the appropiate
54 #lines into the user structures.
55 ALLOWCOMMAND_DELE="yes"
56 ALLOWCOMMAND_STOR="yes"
57 ALLOWCOMMAND_SITE="yes"
59 #After how many seconds of idle time should a user be kicked from the server?
62 #After how many seconds of idle time should a user be kicked from the server
63 #during a file transfer?
66 #Use Ratio if you want the client to send a file before he can get a file.
67 #Usage: RATIO=send/receive or RATIO=none. Example: RATIO=2/1 lets the client
68 #receive a 1 MB file when he has sent a 2 MB file.
71 #ROOTDIR specifies the root directory of the client. It defaults to %h
72 #(user's home directory). %u is replaced by the user name.
75 #Umask for the files or directories users create.
78 #Name of the log file. Specify "syslog" (without quotes) to log into syslog.
79 LOGFILE="/var/log/bftpd.log"
81 #Use %v for version, %h for the server FQDN and %i for the server IP address.
82 HELLO_STRING=bftpd %v at %h(%i) ready.
84 #Path to the message of the day, seen by all users before login.
85 MOTD_GLOBAL="/etc/ftpmotd"
87 #Path to the message of the day, seen after login, relative to the root
88 #path of the user (see ROOTDIR).
91 #What message should be used as reply for the QUIT command?
92 QUIT_MSG="See you later..."
94 #Authentication type, values: PAM, PASSWD
97 #Enable this if you want the client's IP address to be resolved to a host
98 #name. Note that it increases the overhead and it may not work if your DNS
99 #is not configured correctly. Clients without a valid DNS name will take very
103 #If RESOLVE_UIDS is enabled, in directory lists the user and group names
104 #are shown instead of UID/GID. This may slow down directory listings.
107 #If DO_CHROOT is enabled, a user can not access directories other than his
108 #HOMEDIR and its subdirectories. DON'T disable this globally if you don't
109 #want to have a security hole!
112 #Enable this to log each login to wtmp.
115 #If you want bftpd to bind itself to one specific network interface, enter
116 #its IP address here. Else enter 'any'. This option only works in standalone
120 #Path to the ftpusers file. It can contain user names that are denied.
121 #If it does not exist, every user can log in. If you don't want this,
122 #just put a nonexistent filename here.
123 PATH_FTPUSERS="/etc/ftpd/ftpusers"
132 #If the client wants anonymous, ftp is taken instead.
138 DISABLE_REASON=Root login not allowed.