当前位置: 首页 > 图文教程 > 服务器 > FTP服务器 > 用tar包配置高可用性vsftp (下)

FTP服务器
用SSL加密增强FTP服务器安全性
Windows下FTP服务器的安全管理
如何配置FTP服务器
FTP服务器快速架设全攻略
FTP服务器如何实现安全性 (上)
基于UNIX平台FTP服务器的建立(下)
Windows XP架设FTP服务器的方法教程
Linux系统架设VSFTP服务器实例解析
企业内部FTP服务器的架设
FTP服务器安全
Linux的ftp服务vsftp详细配置
Ubuntu自带的FTP服务器vsftpd技巧
在Linux下建立强大的FTP搜索引擎
用无线路由器构建FTP服务器
FTP服务中允许上传权限存在的问题
简单实用 Linux下的FTP服务器配置
FTP空间不足 Windows 系统性能监控来报警
如何启用Web服务器并运行FTP服务
FTP服务器架设的三方面安全因素
如何配置Linux操作系统下的FTP服务器

FTP服务器 中的 用tar包配置高可用性vsftp (下)


出处:互联网   整理: 软晨网(RuanChen.com)   发布: 2009-10-17   浏览: 40 ::
收藏到网摘: n/a

三、附目

1、我的/etc/vsftpd.conf文件的内容

以下为引用的内容:
  [quote:93f3c4a2db]#Exampleconfigfile/etc/vsftpd.conf
  #
  #Thedefaultcompiledinsettingsarefairlyparanoid.Thissamplefile
  #loosensthingsupabit,tomaketheftpdaemonmoreusable.
  #Pleaseseevsftpd.conf.5forallcompiledindefaults.
  #
  #READTHIS:ThisexamplefileisNOTanexhaustivelistofvsftpdoptions.
  #Pleasereadthevsftpd.conf.5manualpagetogetafullideaofvsftpd's
  #capabilities.
  #
  #AllowanonymousFTP?(Beware-allowedbydefaultifyoucommentthisout).
  anonymous_enable=NO
  #
  #Uncommentthistoallowlocaluserstologin.
  local_enable=YES
  #
  #UncommentthistoenableanyformofFTPwritecommand.
  write_enable=YES
  #
  #Defaultumaskforlocalusersis077.Youmaywishtochangethisto022,
  #ifyourusersexpectthat(022isusedbymostotherftpd's)
  local_umask=022
  #
  #UncommentthistoallowtheanonymousFTPusertouploadfiles.Thisonly
  #hasaneffectiftheaboveglobalwriteenableisactivated.Also,youwill
  #obviouslyneedtocreateadirectorywritablebytheFTPuser.
  anon_upload_enable=NO
  #
  #UncommentthisifyouwanttheanonymousFTPusertobeabletocreate
  #newdirectories.
  anon_mkdir_write_enable=NO
  #
  #Activatedirectorymessages-messagesgiventoremoteuserswhenthey
  #gointoacertaindirectory.
  dirmessage_enable=YES
  #
  #Activateloggingofuploads/downloads.
  xferlog_enable=YES
  #
  #MakesurePORTtransferconnectionsoriginatefromport20(ftp-data).
  connect_from_port_20=YES
  #
  #Ifyouwant,youcanarrangeforuploadedanonymousfilestobeownedby
  #adifferentuser.Note!Using"root"foruploadedfilesisnot
  #recommended!
  #chown_uploads=YES
  #chown_username=whoever
  #
  #Youmayoverridewherethelogfilegoesifyoulike.Thedefaultisshown
  #below.
  #xferlog_file=/var/log/vsftpd.log
  #
  #Ifyouwant,youcanhaveyourlogfileinstandardftpdxferlogformat
  #xferlog_std_format=YES
  #
  #Youmaychangethedefaultvaluefortimingoutanidlesession.
  #idle_session_timeout=600
  #
  #Youmaychangethedefaultvaluefortimingoutadataconnection.
  #data_connection_timeout=120
  #
  #Itisrecommendedthatyoudefineonyoursystemauniqueuserwhichthe
  #ftpservercanuseasatotallyisolatedandunprivilegeduser.
  #nopriv_user=ftpsecure
  #
  #EnablethisandtheserverwillrecogniseasynchronousABORrequests.Not
  #recommendedforsecurity(thecodeisnon-trivial).Notenablingit,
  #however,mayconfuseolderFTPclients.
  #async_abor_enable=YES
  #
  #BydefaulttheserverwillpretendtoallowASCIImodebutinfactignore
  #therequest.TurnonthebelowoptionstohavetheserveractuallydoASCII
  #manglingonfileswheninASCIImode.
  #Bewarethatturningonascii_download_enableenablesmaliciousremoteparties
  #toconsumeyourI/Oresources,byissuingthecommand"SIZE/big/file"in
  #ASCIImode.
  #TheseASCIIoptionsaresplitintouploadanddownloadbecauseyoumaywish
  #toenableASCIIuploads(topreventuploadedscriptsetc.frombreaking),
  #withouttheDoSriskofSIZEandASCIIdownloads.ASCIImanglingshouldbe
  #ontheclientanyway..
  ascii_upload_enable=YES
  ascii_download_enable=YES
  #
  #Youmayfullycustomisetheloginbannerstring:
  ftpd_banner=WelcometoServ-UFTPserser.#(一个真实的慌言:em02:)
  #
  #Youmayspecifyafileofdisallowedanonymouse-mailaddresses.Apparently
  #usefulforcombattingcertainDoSattacks.
  #deny_email_enable=YES
  #(defaultfollows)
  #banned_email_file=/etc/vsftpd.banned_emails
  #
  #Youmayspecifyanexplicitlistoflocaluserstochroot()totheirhome
  #directory.Ifchroot_local_userisYES,thenthislistbecomesalistof
  #userstoNOTchroot().
  chroot_list_enable=YES
  #(defaultfollows)
  chroot_list_file=/etc/vsftpd.chroot_list
  #
  #Youmayactivatethe"-R"optiontothebuiltinls.Thisisdisabledby
  #defaulttoavoidremoteusersbeingabletocauseexcessiveI/Oonlarge
  #sites.However,somebrokenFTPclientssuchas"ncftp"and"mirror"assume
  #thepresenceofthe"-R"option,sothereisastrongcaseforenablingit.
  #ls_recurse_enable=YES
  chroot_local_user=YES
  listen_port=2121
  listen=yes
  guest_enable=YES
  guest_username=virtual
  pasv_min_port=30000
  pasv_max_port=30999
  pam_service_name=ftp.vu
  anon_world_readable_only=NO
  user_config_dir=/etc/vsftpd_user_conf[/quote:93f3c4a2db]

2、我的/etc/vsftpd_user_conf/download的内容

[quote:93f3c4a2db]anon_world_readable_only=NO[/quote:93f3c4a2db]

3、我的/etc/vsftpd_user_conf/upload的内容

以下为引用的内容:
  [quote:93f3c4a2db]anon_world_readable_only=NO
  write_enable=YES
  anon_upload_enable=YES
  anon_mkdir_write_enable=YES[/quote:93f3c4a2db]

4、我的/etc/vsftpd_user_conf/admin的内容

以下为引用的内容:
  [quote:93f3c4a2db]anon_world_readable_only=NO
  write_enable=YES
  anon_upload_enable=YES
  anon_other_write_enable=YES
  anon_mkdir_write_enable=YES[/quote:93f3c4a2db]

5、自启动脚本,在/etc/rc.local中加入/usr/local/sbin/vsftpd/etc/vsftpd.conf&