BBS水木清华站∶精华区

发信人: cirrus (望眼欲穿), 信区: Linux
标  题: Re: a simple proftpd conf
发信站: BBS 水木清华站 (Sat Nov 27 13:50:31 1999)

【在 kxn (好好学习！) 的大作中提到: 】
∶ # This is a basic ProFTPD configuration file (rename it to
∶ # 'proftpd.conf' for actual use.  It establishes a single server
∶ # and a single anonymous login.  It assumes that you have a user/group
∶ # "nobody" and "ftp" for normal operation and anon.
∶ ServerType                      standalone
∶ DefaultServer                   on
∶ ServerAdmin                     "root@proftpd.org"
∶ ServerIdent                     off
强烈建议加上
UseReverseDNS                   off
∶ # Port 21 is the standard FTP port.
∶ Port                            21
∶ # Umask 022 is a good standard umask to prevent new dirs and files
∶ # from being group and world writable.
∶ Umask                           002
∶ # To prevent DoS attacks, set the maximum number of child processes
∶ # to 30.  If you need to allow more than 30 concurrent connections
∶ # at once, simply increase this value.  Note that this ONLY works
∶ # in standalone mode, in inetd mode you should use an inetd server
∶ # that allows you to limit maximum number of processes per service
∶ # (such as xinetd)
∶ MaxInstances                    230
∶ MaxLoginAttempts                2
∶ UseReverseDNS                   off
∶ TimeoutIdle                     300
∶ TimeoutLogin                    200
∶ IdentLookups                    off
∶ # Set the user and group that the server normally runs at.
∶ User                            ftp
∶ Group                           ftp
∶ # Normally, we want files to be overwriteable.
∶ <Directory /*>
∶   AllowOverwrite                on
∶ </Directory>
∶ # A basic anonymous configuration, no upload directories.
∶ <Anonymous ~ftp>
∶   User                          ftp
∶   Group                         ftp
∶   # We want clients to be able to login with "anonymous" as well as "ftp"
∶   AuthAliasOnly                 on
∶   UserAlias                     anonymous ftp
∶   AuthUsingAlias                on
∶   # Limit the maximum number of anonymous logins
∶   MaxClients                    200 "Sorry, %m users -- try again later"
∶   MaxClientsPerHost             5
∶   RequireValidShell             off
∶   # We want 'welcome.msg' displayed at login, and '.message' displayed
∶   # in each newly chdired directory.
∶   DisplayLogin                  welcome.msg
∶   DisplayFirstChdir             .message
∶   PathDenyFilter "(\.ftpaccess)|(\.htaccess)|(\.forward)|(\core)$"
∶   # Limit WRITE everywhere in the anonymous chroot
∶   <Limit LOGIN>
∶      Order                       allow,deny
∶      Deny                        from badguy.net
∶      Allow                       from all
∶   </Limit>
∶   <Limit WRITE>
∶     DenyAll
∶   </Limit>
∶   <Directory incoming/*>
∶     <Limit STOR MKD>
∶       AllowAll
∶     </Limit>
∶   </Directory>
∶ </Anonymous>

--
※ 来源:·BBS 水木清华站 bbs.net.tsinghua.edu.cn·[FROM: 210.32.137.16]