projects / people / pmueller / ipfire-2.x.git / blame
| Commit | Line | Data |
|---|---|---|
| a08c3a2e MT |
1 | # Example config file /etc/vsftpd.conf |
| 2 | # | |
| 3 | # The default compiled in settings are fairly paranoid. This sample file | |
| 4 | # loosens things up a bit, to make the ftp daemon more usable. | |
| 5 | # Please see vsftpd.conf.5 for all compiled in defaults. | |
| 6 | # | |
| 7 | # READ THIS: This example file is NOT an exhaustive list of vsftpd options. | |
| 8 | # Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd's | |
| 9 | # capabilities. | |
| 10 | # | |
| 11 | # Allow anonymous FTP? (Beware - allowed by default if you comment this out). | |
| 12 | anonymous_enable=YES | |
| 13 | # | |
| 14 | # Uncomment this to allow local users to log in. | |
| 15 | #local_enable=YES | |
| 16 | # | |
| 17 | # Uncomment this to enable any form of FTP write command. | |
| 18 | #write_enable=YES | |
| 19 | # | |
| 20 | # Default umask for local users is 077. You may wish to change this to 022, | |
| 21 | # if your users expect that (022 is used by most other ftpd's) | |
| 22 | #local_umask=022 | |
| 23 | # | |
| 24 | # Uncomment this to allow the anonymous FTP user to upload files. This only | |
| 25 | # has an effect if the above global write enable is activated. Also, you will | |
| 26 | # obviously need to create a directory writable by the FTP user. | |
| 27 | #anon_upload_enable=YES | |
| 28 | # | |
| 29 | # Uncomment this if you want the anonymous FTP user to be able to create | |
| 30 | # new directories. | |
| 31 | #anon_mkdir_write_enable=YES | |
| 32 | # | |
| 33 | # Activate directory messages - messages given to remote users when they | |
| 34 | # go into a certain directory. | |
| 35 | dirmessage_enable=YES | |
| 36 | # | |
| 37 | # Activate logging of uploads/downloads. | |
| 38 | xferlog_enable=YES | |
| 39 | # | |
| 40 | # Make sure PORT transfer connections originate from port 20 (ftp-data). | |
| 41 | connect_from_port_20=YES | |
| 42 | # | |
| 43 | # If you want, you can arrange for uploaded anonymous files to be owned by | |
| 44 | # a different user. Note! Using "root" for uploaded files is not | |
| 45 | # recommended! | |
| 46 | #chown_uploads=YES | |
| 47 | #chown_username=whoever | |
| 48 | # | |
| 49 | # You may override where the log file goes if you like. The default is shown | |
| 50 | # below. | |
| 51 | #xferlog_file=/var/log/vsftpd.log | |
| 52 | # | |
| 53 | # If you want, you can have your log file in standard ftpd xferlog format | |
| 54 | #xferlog_std_format=YES | |
| 55 | # | |
| 56 | # You may change the default value for timing out an idle session. | |
| 57 | #idle_session_timeout=600 | |
| 58 | # | |
| 59 | # You may change the default value for timing out a data connection. | |
| 60 | #data_connection_timeout=120 | |
| 61 | # | |
| 62 | # It is recommended that you define on your system a unique user which the | |
| 63 | # ftp server can use as a totally isolated and unprivileged user. | |
| 64 | #nopriv_user=ftpsecure | |
| 65 | # | |
| 66 | # Enable this and the server will recognise asynchronous ABOR requests. Not | |
| 67 | # recommended for security (the code is non-trivial). Not enabling it, | |
| 68 | # however, may confuse older FTP clients. | |
| 69 | #async_abor_enable=YES | |
| 70 | # | |
| 71 | # By default the server will pretend to allow ASCII mode but in fact ignore | |
| 72 | # the request. Turn on the below options to have the server actually do ASCII | |
| 73 | # mangling on files when in ASCII mode. | |
| 74 | # Beware that on some FTP servers, ASCII support allows a denial of service | |
| 75 | # attack (DoS) via the command "SIZE /big/file" in ASCII mode. vsftpd | |
| 76 | # predicted this attack and has always been safe, reporting the size of the | |
| 77 | # raw file. | |
| 78 | # ASCII mangling is a horrible feature of the protocol. | |
| 79 | #ascii_upload_enable=YES | |
| 80 | #ascii_download_enable=YES | |
| 81 | # | |
| 82 | # You may fully customise the login banner string: | |
| 83 | #ftpd_banner=Welcome to blah FTP service. | |
| 84 | # | |
| 85 | # You may specify a file of disallowed anonymous e-mail addresses. Apparently | |
| 86 | # useful for combatting certain DoS attacks. | |
| 87 | #deny_email_enable=YES | |
| 88 | # (default follows) | |
| 89 | #banned_email_file=/etc/vsftpd.banned_emails | |
| 90 | # | |
| 91 | # You may specify an explicit list of local users to chroot() to their home | |
| 92 | # directory. If chroot_local_user is YES, then this list becomes a list of | |
| 93 | # users to NOT chroot(). | |
| 94 | #chroot_list_enable=YES | |
| 95 | # (default follows) | |
| 96 | #chroot_list_file=/etc/vsftpd.chroot_list | |
| 97 | # | |
| 98 | # You may activate the "-R" option to the builtin ls. This is disabled by | |
| 99 | # default to avoid remote users being able to cause excessive I/O on large | |
| 100 | # sites. However, some broken FTP clients such as "ncftp" and "mirror" assume | |
| 101 | # the presence of the "-R" option, so there is a strong case for enabling it. | |
| 102 | #ls_recurse_enable=YES | |
| 103 | background=YES | |
| 104 | listen=YES | |
| 105 | nopriv_user=vsftpd | |
| 106 | secure_chroot_dir=/var/ftp/empty |