Pureftpd 架设与系统帐号分离的ftp服务器
来源: 作者: 出处:综艺读书 2006-10-01
环境:系统FreeBSD freebsd.hcren.com 4.9-STABLE FreeBSD 4.9-STABLE
[size=18:4151c61130][color=red:4151c61130][b:4151c61130]特别感谢 Freebsdchina 的jayvan 技术支持![/b:4151c61130][/color:4151c61130][/size:4151c61130]
|
|
|||
研究freebsd 已有几个月了。但一直没有找到一个比windows下的serv-u 易管理的
ftp 服务器软件。前一段服务器都是用vsftpd+系统quota , 但帐号是系统本身帐号。虽然,我做了
/sbin/nologin
但感觉还是不安全。也试过。proftpd+mysql ,但如果一个企业就开ftp,你要和系统帐号分离,难道还要
装mysql,等等数据库不成?
下面我就把我pureftpd 配置写出来。本人是菜鸟,哪地方不对希望高手多多指点!
我都是都过ports 方式安装的
freebsd# cd /usr/ports/ftp/pure-ftpd/
默认ports 安装pure-ftpd 不支持 puredb 需要
freebsd# vi Makefile
加入 --with-puredb
然后wq!
freebsd# make W99vH_LANG=simplified-chinese install
建立第一个虚拟用户:如down 用户,组都为888 主目录/home/888
freebsd# mkdir /home/888
freebsd# chown -R 888:888 /home/888
freebsd# /usr/local/bin/pure-pw useradd down -u 888 -g 888 -d /home/888
Password: 输入二次
Enter it again:
建立用户数据库:
freebsd# /usr/local/bin/pure-pw mkdb /usr/local/etc/pureftpd.pdb
修改配置文件。
freebsd# cd /usr/local/etc/
freebsd# cp pure-ftpd.conf.sample pure-ftpd.conf
找到# PureDB /etc/pureftpd.pdb
把#掉支掉,路径改成你刚才建的。 我的是/usr/local/etc/pureftpd.pdb
启动pureftpd 。。
freebsd# /usr/local/sbin/pure-config.pl /usr/local/etc/pure-ftpd.conf
D:\>ftp 218.*.*.*
Connected to *.*.*.*
220---------- 欢迎来到 Pure-FTPd [TLS] ----------
220-您是第 1 个使用者,最多可达 50 个连接
220-现在本地时间是 13:20。服务器端口: 21。
220 在 15 分钟内没有活动,您被会断线。
User (218.*.*.*:(none)):
好了。就这么简单。就和系统帐号完全分离了。如果你想即系统帐号又和puredb 帐号同时使用
在pure-ftpd.conf 打开UnixAuthentication yes
些项即可。自启动把/usr/local/etc/rc.d/pure-ftpd.sh.sample 改名cp 去掉.sample 即可。其实还有
很多比如quota ,好多,你们慢慢研究吧!最后把我的pureftpd 给大家看一看。
###########################################################
# #
# Configuration file for pure-ftpd wrappers #
# #
############################################################
# If you want to run Pure-FTPd with this configuration
# instead of command-line options, please run the
# following command :
#
# /usr/local/sbin/pure-config.pl /usr/local/etc/pure-ftpd.conf
#
# Please don't forget to have a look at documentation at
# http://www.pureftpd.org/documentation.html for a complete list of
# options.
# Cage in every user in his home directory
ChrootEveryone yes
# If the previous option is set to "no", members of the following group
# won't be caged. Others will be. If you don't want chroot()ing anyone,
# just comment out ChrootEveryone and TrustedGID.
# TrustedGID 100
# Turn on compatibility hacks for broken clients
BrokenClientsCompatibility no
# Maximum number of simultaneous users
MaxClientsNumber 50
# Fork in background
Daemonize yes
# Maximum number of sim clients with the same IP address
MaxClientsPerIP 8
# If you want to log all client commands, set this to "yes".
# This directive can be duplicated to also log server responses.
VerboseLog no
# List dot-files even when the client doesn't send "-a".
DisplayDotFiles yes
# Don't allow authenticated users - have a public anonymous FTP only.
AnonymousOnly no
# Disallow anonymous connections. Only allow authenticated users.
NoAnonymous no
# Syslog facility (auth, authpriv, daemon, ftp, security, user, local*)
# The default facility is "ftp". "none" disables logging.
SyslogFacility ftp
# Display fortune cookies
# FortunesFile /usr/share/fortune/zippy
# Don't resolve host names in log files. Logs are less verbose, but
# it uses less bandwidth. Set this to "yes" on very busy servers or
# if you don't have a working DNS.
DontResolve yes
# Maximum idle time in minutes (default = 15 minutes)
MaxIdleTime 15
# LDAP configuration file (see README.LDAP)
# LDAPConfigFile /etc/pureftpd-ldap.conf
# MySQL configuration file (see README.MySQL)
# MySQLConfigFile /etc/pureftpd-mysql.conf
# Postgres configuration file (see README.PGSQL)
# PGSQLConfigFile /etc/pureftpd-pgsql.conf
# PureDB user database (see README.Virtual-Users)
PureDB /usr/local/etc/pureftpd.pdb
# Path to pure-authd socket (see README.Authentication-Modules)
# ExtAuth /var/run/ftpd.sock
# If you want to enable PAM authentication, uncomment the following line
# PAMAuthentication yes
# If you want simple Unix (/etc/passwd) authentication, uncomment this
UnixAuthentication yes
# Please note that LDAPConfigFile, MySQLConfigFile, PAMAuthentication and
# UnixAuthentication can be used only once, but they can be 
更多内容请看FTP服务器 ftp服务器的配置 FTP软件的安装专题,或进入讨论组讨论。
·双核服务器技术 (5594篇文章)
·Linux服务器 (11031篇文章)
·服务器存储专栏 (6211篇文章)
·邮件服务器专题 (5852篇文章)
·网吧组网架设 (692篇文章)
·FTP软件的安装 (122篇文章)
·ftp服务器的配置 (113篇文章)
·服务器架设 (676篇文章)
·FTP协议 (614篇文章)
·在FreeBSD4.x中制作启动菜单 12-12
·在FREEBSD 5中使用MRTG画图 12-07
·浅谈FreeBSD 5.2常用操作的改变 12-02
·FreeBSD如何通过代理上网更新 11-21
·拿刀砍才能进freebsd系统的修复方法 10-27
·FreeBSD新手建议 10-14
·CERT? Advisory CA-2003-25 Buffer Overflow in Se 10-12
·FREEBSD下使用crunch集成编译程序 10-10
·FreeBSD下配置IPSec:WinXP------FreeBSD 10-10
