(2)配置文件

  1. # This is a basic ProFTPD configuration file (rename it to  
  2.  
  3. 'proftpd.conf' for actual use. It establishes a single server  
  4.  
  5. # and a single anonymous login. It assumes that you have a user/group  
  6.  
  7. "nobody" and "ftp" for normal operation and anon.  

ServerName "Formax BPO FTP Server"

ServerType standalone

DefaultServer on

# Port 21 is the standard FTP port.

Port 21

UseReverseDNS off

IdentLookups off# Umask 022 is a good standard umask to prevent new dirs and files

# from being group and world writable.

Umask 000

  1. # To prevent DoS attacks, set the maximum number of child processes  
  2.  
  3. # to 30. If you need to allow more than 30 concurrent connections  
  4.  
  5. # at once, simply increase this value. Note that this ONLY works  
  6.  
  7. in standalone mode, in inetd mode you should use an inetd server  
  8.  
  9. # that allows you to limit maximum number of processes per service  
  10.  
  11. # (such as xinetd).  

MaxInstances 30

# Set the user and group under which the server will run.

User nobody

Group nogroup

  1. # To cause every FTP user to be "jailed" (chrooted) into their home  
  2.  
  3. # directory, uncomment this line.  
  4.  
  5. # DefaultRoot ~  

DefaultRoot /ftproot

# Normally, we want files to be overwriteable.

AllowOverwrite on

AllowStoreRestart on

ServerIdent off

TLSEngine on

TLSLog /var/ftpd/tls.log

TLSProtocol SSLv23

# Are clients required to use FTP over TLS when talking to this server?

TLSRequired on

# Server's certificate

TLSRSACertificateFile /etc/proftpd.cert

TLSRSACertificateKeyFile /etc/proftpd.key

# CA the server trusts

TLSCACertificateFile /etc/proftpd.cert

# Authenticate clients that want to use FTP over TLS?

TLSVerifyClient off

TLSOptions NoCertRequest

  1. # Allow SSL/TLS renegotiations when the client requests them, but  
  2.  
  3. do not force the renegotations. Some clients do not support  
  4.  
  5. # SSL/TLS renegotiations; when mod_tls forces a renegotiation, these  
  6.  
  7. # clients will close the data connection, or there will be a timeout  
  8.  
  9. # on an idle data connection.  

TLSRenegotiate required off

# Bar use of SITE CHMOD by default

通过阅读全文,我们知道了Proftpd权限的设置原理,希望对大家有所帮助!


共2页: 上一页12下一页

相关内容