LinuxVSFTP configuration (2)

Article Title: linuxVSFTP configuration (2 ). Linux is a technology channel of the IT lab in China. Includes basic categories such as desktop applications, Linux system management, kernel research, embedded systems, and open source.

3. configuration file description

In the example, some omitted settings can be found here, such as the total number of connections, the number of connections to the same address, and the name of the owner of the file, you can make the most suitable settings.

Format

The content of vsftpd. conf is very simple, and each line is set. If it is a blank line or a line starting with #, it will be ignored. There is only one content format, as shown below

Option = value

It should be noted that the equal sign cannot be blank on both sides, otherwise it is incorrect.

=== Ascii settings ==============================

Ascii_download_enable

Controls whether ASCII download is available. The default value is NO.

Ascii_upload_enable

Controls whether ASCII upload is available. The default value is NO.

=== Individual user settings ===========================

Chroot_list_enable

If this function is enabled, all local users can log on to the data folder outside the root directory, except the column

In addition to users in/etc/vsftpd. chroot_list. The default value is NO.

Userlist_enable

Usage: YES/NO

If this function is enabled, the user name in/etc/vsftpd. user_list is read. This function can display a failure message before asking for the password, without the need to check the password program. The default value is disabled.

Userlist_deny

Usage: YES/NO

This option is verified only when userlist_enable is started. If you set this option to YES

Users in/etc/vsftpd. user_list cannot log in? If it is set to NO, only users in/etc/vsftpd. user_list can log on. In addition, this function can display an error message before asking for the password, without the need to check the password program.

User_config_dir

Defines the directory where a file is stored by an individual user, for example

User_config_dir =/etc/vsftpd/userconf,

And there are users test1, test2 on the host, then we can add the file name in the user_config_dir directory

Test1 and test2. If you log on to test1, the settings in the file test1 under user_config_dir will be read. The default value is none.

=== Welcome language ===============================

Dirmessage_enable

If this option is enabled, the first time a user enters a directory, the user will check whether there is a. message in this directory.

If this archive exists, the contents of this archive will appear. Normally, this archive will contain welcome words or

Description of the directory. The default value is enable.

Banner_file

When a user logs in, the file content of this setting is displayed, which is usually a welcome word or description. Default Value

Is none.

Ftpd_banner

Here, we can define a string of welcome words. Compared with banner_file, it is in the file format, while ftpd_banner is in the string format. Default Value: none.

=== Special Security Settings ===========================

Chroot_local_user

If YES, all users on the local machine can switch to a folder other than the root directory. Preset

The value is NO.

Hide_ids

If this function is enabled, the owner and group of all files are ftp, that is, the user logs in to use ls-al

And other commands, the file owner and group are all ftp. The default value is disabled.

Ls_recurse_enable

If this function is enabled, the user can use the ls-R command. The default value is NO.

Write_enable

Usage: YES/NO

This option can control whether FTP commands allow file system changes, such as STOR, DELE,

RNFR, RNTO, MKD, RMD, APPE, and SITE. Disabled by default.

Setproctitle_enable

Usage: YES/NO

When this function is enabled, vsftpd will display all processes that are online in different ways. In other words, you can use commands such as ps-ef to view the online status. The default value is disabled.

Tcp_wrappers

Usage: YES/NO

If it is started, vsftpd is combined with tcp wrapper, that is, it can be connected

/Etc/hosts. deny defines the source address that can be online or rejected.

Pam_service_name

The name used by PAM is defined here. The default value is vsftpd.

Secure_chroot_dir

This option must specify an empty folder and no logon user can write data. When vsftpd does not need

The user is restricted to this data folder when file system is to be authorized. Default Value:/usr/share/empty

[1] [2] [3] Next page