proftpd用户权限设置不起作用。附配置文件,请帮忙查错,谢谢。

由 落伍者 在 10-09-2004 12:30 发表:

proftpd用户权限设置不起作用。附配置文件,请帮忙查错,谢谢。

This is a basic ProFTPD configuration file (rename it to

'proftpd.conf' for actual use. It establishes a single server

and a single anonymous login. It assumes that you have a user/group

"nobody" and "ftp" for normal operation and anon.

ServerName "www.m-cool.cn FTP Server"

ServerType standalone

DefaultServer on

Port 21 is the standard FTP port.

Port 2100

RootLogin off

AllowRetrieveRestart on

"nobody" and "ftp" for normal operation and anon.

ServerName "www.m-cool.cn FTP Server"

ServerType standalone

DefaultServer on

Port 21 is the standard FTP port.

Port 2100

ServerIdent off

RootLogin off

AllowRetrieveRestart on

AllowStoreRestart on

UseReverseDNS off

identLookups off

MaxLoginAttempts 5

#DirFakeUser On FTP #inorder to no show group and id info

DirFakeGroup On FTP

TimeoutLogin 30

TimeoutIdle 120

TimeoutNoTransfer 300

MaxClientsPerHost 5

#umask 022 is a good standard umask to prevent new dirs and files

from being group and world writable.

Umask 022

To prevent DoS attacks, set the maximum number of child processes

to 30. If you need to allow more than 30 concurrent connections

at once, simply increase this value. Note that this ONLY works

in standalone mode, in inetd mode you should use an inetd server

that allows you to limit maximum number of processes per service

(such as xinetd).

MaxInstances 30

Set the user and group under which the server will run.

User nobody

Group nobody

To cause every FTP user to be "jailed" (chrooted) into their home

directory, uncomment this line.

DefaultRoot ~ ftpusers

1<directory></directory>

AllowOverwrite on AllowForeignAddress on

PassivePorts 49152 65534

Normally, we want files to be overwriteable.

AllowOverwrite on

Bar use of SITE CHMOD by default

  1<limit site_chmod="">   
  2  
  3DenyAll   
  4  
  5<directory></directory>   
  6  
  7AllowOverwrite on   
  8  
  9
 10<directory data="" ftp="" system="" test="">
 11<limit dele="" retr="" rmd="" rnfr="">   
 12  
 13DenyUser tester   
 14  
 15</limit>
 16</directory>
 17<directory data="" ftp="" system="">
 18<limit write="">   
 19  
 20DenyUser movie   
 21  
 22</limit>
 23</directory>   
 24  
 25  
 26  
 27AllowForeignAddress on   
 28  
 29PassivePorts 49152 65534   
 30  
 31# Normally, we want files to be overwriteable.   
 32  
 33AllowOverwrite on   
 34  
 35  
 36  
 37# Bar use of SITE CHMOD by default   
 38  
 39<limit site_chmod="">   
 40  
 41DenyAll   
 42  
 43</limit>   
 44  
 45  
 46  
 47我想起的作用:tester用户在/data/system/ftp/test目录下只能上传,不允许删除,改名,下载,但实际情况是可以上传,删除,下载,等同于这个限制不起作用,不知哪里出现了语法错误。请指点。 
 48
 49  
 50
 51
 52* * *
 53
 54  
 55_由 faint 在 10-09-2004 22:50 发表:_   
 56  
 57
 58
 59****
 60
 61  
 62  
 63
 64
 65<directory pub="">
 66<limit dele="" mkd="" rmd="" write="">   
 67  
 68Denyall   
 69  
 70</limit>
 71</directory>
 72<directory incoming="" temp="">
 73<limit write="">   
 74  
 75Allowall   
 76  
 77</limit>
 78</directory>   
 79  
 80  
 81  
 82  
 83  
 84给你一个有关相关的资源吧。   
 85  
 86  
 87  
 88#<limit>容器内有以下权限:   
 89  
 90# CWD:改变所在目录   
 91  
 92# MKD/XMKD:新建目录   
 93  
 94# RNFR/RNTO:重命名目录的(一起使用)   
 95  
 96# DELE:删除文件   
 97  
 98# RMD/XRMD:删除目录   
 99  
100# RETR:下载   
101  
102# STOR:上传   
103  
104# LOGIN:登陆   
105  
106# READ:包括了RETR,SITE,SIZE,STAT   
107  
108# WRITE:包括了APPE, DELE, MKD, RMD, RNTO, STOR, XMKD, XRMD   
109  
110# DIRS:包括了DUP, CWD, LIST, MDTM, NLST, PWD, RNFR, XCUP, XCWD, XPWD   
111  
112# ALL:包括了READ WRITE DIRS   
113  
114#以上权限结合动作一起使用:   
115  
116# AllowUser:允许某个用户   
117  
118# DenyUser:禁止某个用户   
119  
120# AllowGroup:允许某个用户组   
121  
122# DenyGroup:禁止某个用户组   
123  
124# AllowAll:允许所有用户   
125  
126# DenyAll:禁止所有用户 
127
128  
129
130
131* * *
132
133  
134_由 落伍者 在 10-10-2004 08:59 发表:_   
135  
136
137
138****
139
140  
141  
142
143
144# This is a basic ProFTPD configuration file (rename it to   
145  
146# 'proftpd.conf' for actual use. It establishes a single server   
147  
148# and a single anonymous login. It assumes that you have a user/group   
149  
150# "nobody" and "ftp" for normal operation and anon.   
151  
152  
153  
154ServerName "www.m-cool.cn FTP Server"   
155  
156ServerType standalone   
157  
158DefaultServer on   
159  
160RequireValidShell off #匿名登陆没有shell可以进入   
161  
162ServerIdent off #不显示FTP信息   
163  
164RootLogin off #root用户不能进入   
165  
166AllowRetrieveRestart on #允许断点下载   
167  
168AllowStoreRestart on #允许断点续传   
169  
170UseReverseDNS off #加快连接速度   
171  
172IdentLookups off #加快连接速度   
173  
174MaxLoginAttempts 5 #密码错误重复尝试次数   
175  
176TimeoutLogin 30   
177  
178TimeoutIdle 120   
179  
180TimeoutNoTransfer 300   
181  
182MaxClientsPerHost 5 "对不起,每个ip只允许有5个连接!" #5线程   
183  
184MaxHostsPerUser 100 "对不起,已经到达该用户最大连接数100,请您稍候再试!"   
185  
186#RateReadBPS 204800 #写速度限制为200k   
187  
188#RateWriteBPS 204800 #读速度限制为200k   
189  
190AllowForeignAddress on   
191  
192PassivePorts 49152 65534   
193  
194  
195  
196  
197  
198DefaultRoot ~ ftpusers   
199  
200  
201  
202# Port 21 is the standard FTP port.   
203  
204Port 2100   
205  
206  
207  
208#umask 022 is a good standard umask to prevent new dirs and files   
209  
210# from being group and world writable.   
211  
212Umask 022   
213  
214  
215  
216# To prevent DoS attacks, set the maximum number of child processes   
217  
218# to 30. If you need to allow more than 30 concurrent connections   
219  
220# at once, simply increase this value. Note that this ONLY works   
221  
222# in standalone mode, in inetd mode you should use an inetd server   
223  
224# that allows you to limit maximum number of processes per service   
225  
226# (such as xinetd).&lt;br /</limit></limit>
Published At
Categories with 服务器类
Tagged with
comments powered by Disqus