centos4.8上FTP实验
作者 佚名技术
来源 Linux系统
浏览
发布时间 2012-03-29
| you define on your system a unique user which the # ftp server can use as a totally isolated and unprivileged user. #nopriv_user=ftpsecure # # Enable this and the server will recognise asynchronous ABOR requests. Not # recommended for security (the code is non-trivial). Not enabling it, # however, may confuse older FTP clients. #async_abor_enable=YES # # By default the server will pretend to allow ASCII mode but in fact ignore # the request. Turn on the below options to have the server actually do ASCII # mangling on files when in ASCII mode. # Beware that turning on ascii_download_enable enables malicious remote parties # to consume your I/O resources, by issuing the command "SIZE /big/file" in # ASCII mode. # These ASCII options are split into upload and download because you may wish # to enable ASCII uploads (to prevent uploaded scripts etc. from breaking), # without the DoS risk of SIZE and ASCII downloads. ASCII mangling should be # on the client anyway.. #ascii_upload_enable=YES #ascii_download_enable=YES # # You may fully customise the login banner string: #ftpd_banner=Welcome to blah FTP service. # # You may specify a file of disallowed anonymous e-mail addresses. Apparently # useful for combatting certain DoS attacks. #deny_email_enable=YES # (default follows) #banned_email_file=/etc/vsftpd.banned_emails # # You may specify an explicit list of local users to chroot() to their home # directory. If chroot_local_user is YES, then this list becomes a list of # users to NOT chroot(). chroot_list_enable=YES # (default follows) chroot_list_file=/etc/vsftpd.chroot_list chroot_local_user=YES # # You may activate the "-R" option to the builtin ls. This is disabled by # default to avoid remote users being able to cause excessive I/O on large # sites. However, some broken FTP clients such as "ncftp" and "mirror" assume # the presence of the "-R" option, so there is a strong case for enabling it. #ls_recurse_enable=YES pam_service_name=vsftpd userlist_enable=YES #enable for standalone mode listen=YES tcp_wrappers=YES 1 local_umask=022 此为权限反码,一个用户上传后的文件对文件的管理权限为666-022(权限反码)= 644 一个用户上传后的目录的管理权限为777-022=755,注意这里的022不要动. 2 chroot_list_enable=YES 意思是是否开启变更根目录,如果这行的注释被去掉则代表开启.如果么有开启这项功能,则用户登录ftp后只能在Linux的/home 下,但是如果开启后则用户可以任意切换到别的目录. 3 chroot_list_file=/etc/vsftpd.chroot_list 如果把这行也开启话则在list表内的用户不能切换到别的目录,但是表外的用到别切换. 4 如果想让表内用户可以切换,而表外的用户不能.则我吗可以在原来的两条下 面 再填写一条 chroot_list_enable=YES chroot_list_file=/etc/vsf |
凌众科技专业提供服务器租用、服务器托管、企业邮局、虚拟主机等服务,公司网站:http://www.lingzhong.cn 为了给广大客户了解更多的技术信息,本技术文章收集来源于网络,凌众科技尊重文章作者的版权,如果有涉及你的版权有必要删除你的文章,请和我们联系。以上信息与文章正文是不可分割的一部分,如果您要转载本文章,请保留以上信息,谢谢! |
你可能对下面的文章感兴趣
上一篇: linux日志模块下一篇: linux中软件的安装
关于centos4.8上FTP实验的所有评论
