blob: 75bb974a3ee84b8ada76cc3b2f7841c974c9559e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
|
# Server Config
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
dirmessage_enable=YES
# Security and User auth
chroot_local_user=YES
pam_service_name=vsftpd_virtual
virtual_use_local_privs=YES
chmod_enable=NO
user_config_dir=/etc/vsftpd/user_conf
user_sub_token=$USER
#local_root=/srv/$USER
local_root=/srv/
userlist_enable=NO
allow_writeable_chroot=YES
# Logging
log_ftp_protocol=YES
xferlog_enable=YES
xferlog_std_format=YES
#xferlog_file=/dev/stdout
syslog_enable=NO
dual_log_enable=YES
# Remap all login users to this username
guest_enable=YES
guest_username=ftp
hide_ids=YES
# Networking
connect_from_port_20=NO
listen=YES
tcp_wrappers=YES
pasv_min_port=${FTPS_PASV_MIN}
pasv_max_port=${FTPS_PASV_MAX}
# SSL
ssl_enable=Yes
require_ssl_reuse=NO
force_local_data_ssl=YES
force_local_logins_ssl=YES
ssl_ciphers=HIGH
allow_anon_ssl=NO
ssl_tlsv1=YES
ssl_sslv2=YES
ssl_sslv3=YES
rsa_cert_file=/etc/ssl/private/ftp.crt
rsa_private_key_file=/etc/ssl/private/ftp.key
require_cert=YES
ssl_request_cert=YES
ca_certs_file=/etc/ssl/private/dfc.crt
write_enable=YES
pasv_address=${IPFILESERVER}
|
