49 lines
976 B
Plaintext
49 lines
976 B
Plaintext
# Server Config
|
|
anonymous_enable=NO
|
|
local_enable=YES
|
|
write_enable=YES
|
|
local_umask=022
|
|
dirmessage_enable=YES
|
|
|
|
# Security and User auth
|
|
chroot_local_user=YES
|
|
pam_service_name=vsftpd_virtual
|
|
virtual_use_local_privs=YES
|
|
chmod_enable=NO
|
|
user_config_dir=/etc/vsftpd/user_conf
|
|
user_sub_token=$USER
|
|
#local_root=/srv/$USER
|
|
local_root=/srv/
|
|
userlist_enable=NO
|
|
allow_writeable_chroot=YES
|
|
|
|
# Logging
|
|
log_ftp_protocol=YES
|
|
xferlog_enable=YES
|
|
xferlog_std_format=YES
|
|
#xferlog_file=/dev/stdout
|
|
syslog_enable=NO
|
|
dual_log_enable=YES
|
|
|
|
# Remap all login users to this username
|
|
guest_enable=YES
|
|
guest_username=ftp
|
|
hide_ids=YES
|
|
|
|
# Networking
|
|
connect_from_port_20=YES
|
|
listen=YES
|
|
tcp_wrappers=YES
|
|
pasv_address=${FTP_PASV_ADDRESS}
|
|
pasv_min_port=${FTP_PASV_MIN_PORT}
|
|
pasv_max_port=${FTP_PASV_MAX_PORT}
|
|
|
|
# SSL
|
|
ssl_enable=Yes
|
|
rsa_cert_file=/etc/ssl/certs/vsftpd.crt
|
|
rsa_private_key_file=/etc/ssl/private/vsftpd.key
|
|
require_ssl_reuse=NO
|
|
force_local_data_ssl=YES
|
|
force_local_logins_ssl=YES
|
|
ssl_ciphers=HIGH
|