nix4me, there's some examples in some previous posts of this thread.
Yes, it's easy to use and really powerful
Yes, but i won't use it
No, the GUI has to be improved
nix4me, there's some examples in some previous posts of this thread.
I'm actually becoming more interested in trying mysql to control users with proftpd. Doing some reading now on it.
nix4me
New version of gproftpd is out (8.2.8 ). Is it possible to update the .deb in the first post too?
Hello there, I have a problem with my proftpd setup. After installing everything(which went like a charm) I edited the .conf-file to my needs, and now I can upload and download stuff from the ftp. Theres one thing I can't do though - overwrite. It's probably something minor in the .conf I have to change, but I can't find out what, even after reading all the suggestions and confs posted.
I've attached the .conf.
Thank you in advance. Shoot
Maybe there's an option to add in the limit command used in the directory, there :I never tried to overwrite a file anyway you can delete the file then write it but for sure it's less easy than a simple overwrite.Code:<Directory /var/www/> Umask 022 022 AllowOverwrite on <Limit MKD STOR DELE XMKD RNRF RNTO RMD XRMD> AllowAll </Limit> </Directory>
Here is the official documentation about the limit options if it helps : http://www.proftpd.org/localsite/Use...ref_Limit.html
Sorry to not help you more.
Good luck
Atleast you tried to help, I appreciate that. Gonna go check that limit documentation through. Thanks
shoot
edit: Hmm, I read it and added some stuff, saved and restarted proftpd, now I get an error (550) when I try to upload anything to the server. I removed the stuff I added and restarted, still get error 550. What's the problem now?
Last edited by shoot; August 11th, 2006 at 02:32 PM.
I have httpd installed, when i log into ftp with the made username and password it takes me to the website root DIR (WWW) hmmm how secure eh lol NOT!
whats up with this then? heres my conf file!
Code:# To really apply changes reload proftpd after modifications. AllowOverwrite on AuthAliasOnly on # Choose here the user alias you want !!!! UserAlias sauron userftp ServerName "c0ntempt" ServerType standalone DeferWelcome on MultilineRFC2228 on DefaultServer on ShowSymlinks off TimeoutNoTransfer 600 TimeoutStalled 100 TimeoutIdle 2200 DisplayFirstChdir .message ListOptions "-l" RequireValidShell off TimeoutLogin 20 RootLogin off # It's better for debug to create log files ;-) ExtendedLog /var/log/ftp.log TransferLog /var/log/xferlog SystemLog /var/log/syslog.log #DenyFilter \*.*/ # I don't choose to use /etc/ftpusers file (set inside the users you want to ban, not useful for me) UseFtpUsers on # Allow to restart a download AllowStoreRestart on # Port 21 is the standard FTP port, so don't use it for security reasons (choose here the port you want) Port 21 # To prevent DoS attacks, set the maximum number of child processes # to 30. If you need to allow more than 30 concurrent connections # at once, simply increase this value. Note that this ONLY works # in standalone mode, in inetd mode you should use an inetd server # that allows you to limit maximum number of processes per service # (such as xinetd) MaxInstances 8 # Set the user and group that the server normally runs at. User nobody Group nogroup # Umask 022 is a good standard umask to prevent new files and dirs # (second parm) from being group and world writable. Umask 022 022 PersistentPasswd off MaxClients 8 MaxClientsPerHost 8 MaxClientsPerUser 8 MaxHostsPerUser 8 # Display a message after a successful login AccessGrantMsg "welcome to c0ntempts ftp, **** around and your banned! !!!" # This message is displayed for each access good or not ServerIdent on "you're at home" # Set /home/FTP-shared directory as home directory DefaultRoot /home/FTP-shared # Lock all the users in home directory, ***** really important ***** DefaultRoot ~ MaxLoginAttempts 5 #VALID LOGINS <Limit LOGIN> AllowUser userftp DenyALL </Limit> <Directory /home/FTP-shared> Umask 022 022 AllowOverwrite off <Limit ALL> Order Allow,Deny AllowUser userftp </Limit> </Directory> <Directory /home/FTP-shared/download/*> Umask 022 022 AllowOverwrite off <Limit ALL> Order Allow,Deny AllowUser userftp </Limit> </Directory> <Directory> /home/FTP-shared/upload/> Umask 022 022 AllowOverwrite on <Limit ALL> Order Allow,Deny AllowUser userftp </Limit> <Limit STOR CWD MKD> AllowAll </Limit> </Directory>
Hi - what do I need to do to send users (when they login with their own username and passwd) to their home dir?
Thanks
Just to say thanks for an excelent HOWTO.
Took me 2 days to get it all working, but that was down to my router and its inbuilt firewall. Just adding the PassivePorts section and including a ranged port allowance on my router and hey-presto it worked.
All this done while in another country thanks to putty and ssh
Cheers,
John.
Code:# # To really apply changes reload proftpd after modifications. # MasqueradeAddress (oops not showing this) PassivePorts 60000 65535 AllowOverwrite on AuthAliasOnly on #Choose here the user alias you want !!! UserAlias scorpuk userftp ServerName "HTPC" ServerType standalone DeferWelcome on MultilineRFC2228 on DefaultServer on ShowSymlinks off TimeoutNoTransfer 600 TimeoutStalled 100 TimeoutIdle 2200 DisplayFirstChdir .message ListOptions "-l" RequireValidShell off TimeoutLogin 20 Rootlogin off #It's better for debug to create log files ;-) ExtendedLog /var/log/ftp.log TransferLog /var/log/xferlog SystemLog /var/log/syslog.log DenyFilter \*.*/ #I don't choose to use /etc/ftpusers file (set inside the users you want to ban, not useful for me) UseFtpUsers off #Allow to restart a download AllowStoreRestart on #Port 21 is the standard FTP port, so don't use it for security reasons Port 1980 # To prevent DoS attacks, set the maximum number of child processes # to 30. If you need to allow more than 30 concurrent connections # at once, simply increase this value. Note that this ONLY works # in standalone mode, in inetd mode you should use an inetd server # that allows you to limit maximum number of processes per service # (such as xinetd) MaxInstances 2 # Set the user and group that the server normally runs at. User nobody Group nogroup # Umask 022 is a good standard umask to prevent new files and dirs # (second parm) from being group and world writable. Umask 022 022 PersistentPasswd off MaxClients 8 MaxClientsPerHost 8 MaxClientsPerUser 8 MaxHostsPerUser 8 #Display a message after a successful login AccessGrantMsg "Welcome !!!" #This message is displayed for each access good or not ServerIdent on "Scorpuk FTP Server" # Set /home/FTP-shared directory as home directory DefaultRoot /home/FTP-shared #Lock all the users in home directory, ****** really important ***** DefaultRoot ~ MaxLoginAttempts 5 #VALID LOGINS <Limit LOGIN> AllowUser userftp DenyALL </Limit> <Directory /home/FTP-shared> Umask 022 022 AllowOverwrite off <Limit MKD STOR DELE XMKD RNRF RNTO RMD XRMD> DenyAll </Limit> </Directory> <Directory /home/FTP-shared/download/*> Umask 022 022 AllowOverwrite off <Limit MKD STOR DELE XMKD RNEF RNTO RMD XRMD> DenyAll </Limit> </Directory> <Directory /home/FTP-shared/upload/> Umask 022 022 AllowOverwrite on <Limit READ RMD DELE> DenyAll </Limit> <Limit STOR CWD MKD> AllowAll </Limit> </Directory>
Last edited by Scorpuk; August 21st, 2006 at 01:58 PM.
Just making sure but did you do this in the install sequence?
The above coding forces the home directory for the user to the FTP-shared.Code:sudo useradd userftp -p your_password -d /home/FTP-shared -s /bin/false
Other than that your config file is similar to mine except the end part for <directory> settings as far as i can tell.
Anywho hope ya get it sorted.
John.
Last edited by Scorpuk; August 21st, 2006 at 03:24 PM. Reason: My fingers are dyslexic
Bookmarks