Vsftpd. conf Glossary (1)

VsftpdI have been using it all the time. You can also try it. This article introduces the vsftpd. conf glossary. Please refer to the following!

Allow_anon_ssl = NO (whether to use SSL connection, if anonymous users are allowed to use SSL login, default: NO)

Anon_mkdir_write_enable = YES (you can create a directory. Default Value: NO)

Anon_other_write_enable = yes (an anonymous account can have the permission to delete it. Default Value: NO)

Anon_upload_enable = YES (Open upload permission, default: NO)

Anon_world_readable_only = YES (open anonymous user browsing permission, default: YES)

Anonymous_enable = YES (anonymous access is allowed. Default Value: YES)

Ascii_upload_enable = YES (controls whether to allow files to be uploaded in asc ii mode. YES, NO, default: NO)

Ascii_download_enable = YES (controls whether to allow files to be downloaded in asc ii mode. YES, NO, default: NO)

Async_abor_enable = YES (enable the "async ABOR" command to support early FTP clients. Default Value: NO)

Background (default: NO)

Check_shell = YES (this option only applies to VSFTPD without PAM. When this option is disabled, when a local user logs on, VSFTPD does not check the/etc/shells file to find a valid user shell. Default Value: YES)

Chmod_enable = YES (whether to use the CHMOD command, default: YES)

Chown_uploads = NO (whether to activate the permission of anonymous users to upload files; default value: NO)

Chroot_list_enable = YES (lock some users in their own directories, that is, after these users log on, they cannot be transferred to other directories in the system, but they can only be in their own directories, specific users are listed in the files specified by the chroot_list_file parameter. Default Value: NO)

Chroot_local_users = yes (locking local users in their own directories. When this item is activated, the functions of the chroot_list_enable and chroot_local_users parameters will change, users in the files specified by chroot_list_file will not be locked in their own directories. After this parameter is activated, security conflicts may occur, especially when users have to upload files. shell access permission. Therefore, this parameter can be enabled only when you know it. The default value is NO)

Connect_from_port_20 = YES (Are you sure the port is transmitted from 20 (ftp-data), default: NO, but the configuration file still makes this function available)

Deny_email_enable = yes (when the value is YES, anonymous users who use the banned_email_file parameter to specify the e-mail address listed in the file for Logon are denied, that is, when an anonymous user logs on using the e-mail listed in the banned_email_file file, the user is denied. Obviously, this is effective for blocking some Dos attacks. When this parameter is valid, you need to append the banned_email_file parameter. Default Value: NO)

Dirlist_enable = YES (all directory list commands will provide denied permission. Default: YES)

Dirmessage_enable = NO (The. message content under the directory is displayed when the directory is switched. The default value is NO)

Download_enable = YES (all download requests will provide denied permission. Default: YES)

Dual_log_enable = NO (Active dual log mode, address:/var/log/xferlog and/var/log/vsftpd. log. The former is the wu-ftpd log type, and the latter is the vsftpd log type. Default Value: NO)

Force_dot_files

Force_local_data_ssl

Force_local_logins_ssl

Guest_enable = YES (if this function is enabled, all non-Anonymous login users are treated as guest. Default: NO)

Hide_ids = NO (whether to hide the owner and group information of the file, YES. When you use commands such as "ls-al, the owner and group information of all files in the directory list are displayed as ftp, default: NO)

Listen = YES (when the parameter is NO, it runs in Xinetd mode. When the parameter is YES, it runs in separate mode. It is recommended to set it to YES, default: NO)

Listen_ipv6 = NO (whether to use IPv6, default: NO)

Local_enable = YES (whether to allow local user logon, default: NO)

Log_ftp_protocol = NO (when this option is activated, all FTP requests and responses are recorded in the log. When this option is provided, xferlog_std_format cannot be activated. This option helps debugging. Default: NO)

Ls_recurse_enable = NO (whether to use the "ls-R" command. We recommend that you do not use it. It consumes a lot of server resources. Default Value: NO)

No_anon_password = NO (to control whether a password is required for anonymous users to log on, YES is not required, NO is required, default: NO)

No_log_lock

One_process_model

Passwd_chroot_enable = NO (when this option is activated, it works with the chroot_local_user option. The location of the chroot () container can be specified based on each user, each user's container comes from the field of each user's own directory in/etc/passwd. Default: NO)

Pasv_enable = YES (passive mode and PASV mode are used on the server. Default Value: YES)

Pasv_promiscuous = NO (security check in PASV mode is disabled when this option is activated. This check ensures that the data connection and control connection come from the same IP address. Be careful to enable this option, the only rational use of this option is that it exists in an organization composed of a security tunnel solution. Default Value: NO)

Port_enable = YES (if you want to cancel the PORT mode during data connection, set this option to NO, default: YES)

Port_promiscuous = NO (when set to YES, cancel the PORT security check. This check ensures that the outgoing data can only be connected to the client. Enable this option with caution. Default: NO)

Run_as_launching_user = NO (, default: NO)

Secure_email_list_enable = NO (if you want to create a list with only the specified email address as the anonymous logon password, set it to YES, this is useful when you do not need to create a virtual user as a low-security access control. If allowed, you can only log on to email_password_file with the email address password specified in email_password_file, the file format is one line and one password. The default file name is/etc/vsftpd. email_passwords; default value: NO)

Session_support = NO (this control determines whether vsftpd maintains a session for login. If vsftpd maintains a session, it will try and upgrade utmp and wtmp, it also opens a PAM session. If you use PAM for authentication, the session will be closed only when you exit. If you do not need to keep the session, you may want to disable this option, or you want vsftpd to consume less resources. Note that utmp and wtmp only support PAM. Default Value: NO)

Setproctitle_enable = NO (YES, VSFTPD will display the status of each session in the system process list. The process report will show what each vsftpd session is doing for security purposes. you can disable Option NO. Only one vsftpd process is running in the Process report. Default Value: NO)

Ssl_enable

Ssl_sslv2

Ssl_sslv3

Ssl_tlsv1

Syslog_enable = NO (if allowed, anything that should have been input to/var/log/vsftpd. log input will be input to the system log, which is recorded in FTPD. Default: NO)

Tcp_wrappers = NO (use the TCP_Wrappers remote access control mechanism in VSFTPD, default: NO)

Text_userdb_names = NO, if you want the owner name to appear, enable this function. Default Value: NO)

Tilde_user_enable

Use_localtime = NO (if allowed, vsftpd will display your local time zone in the directory list. The default value is GMT. This option also affects the time returned by the mdtm ftp command, default Value: NO)

Use_sendfile = YES (an internal setting is used to test the advantages of using sendfile () system call on your platform. Default Value: YES)

Userlist_deny = YES (decide whether to prohibit or allow users in the file specified by userlist_file to log on to the FTP server. This option takes effect only after the userlist_enable option is enabled. YES, Disable User Logon in the file, at the same time, these users are not prompted to enter a password. NO, only allow users in the file to log on to the FTP server. Default: YES)

Userlist_enable = NO (users in the userlist_file file cannot access it. Default: NO)

Virtual_use_local_privs = NO (when this parameter is activated, the virtual user uses the same permissions as the local user. When this parameter is disabled, the virtual user uses the same permissions as the anonymous user. Default Value: NO)

Write_enable = YES (controls whether to allow the use of any FTP command that can modify the file system, such as STOR. DELE. RNFR. RNTO. MKD. RMD. APPE and SITE. Default Value: NO, but this option is enabled in the simple configuration file)

Xferlog_enable = YES (activate the upload and download logs, address/var/log/vsftpd. log, default: NO, but this option is activated in the built-in configuration file)

Xferlog_std_format = NO (controls whether log files use the xferlog standard format. Like wu-ftpd, the existing transmission statistics generator can be re-used using the xferlog format, the default log format is more readable. The default format is NO, but this option is activated in the built-in configuration file)