HPB
12-06-2001, 12:03 AM
i searched everywhere trying to figure this out since I would feel like an idiot asking but i finally have given up and look to you guys for guidance. I haven't the slightest idea how to set my ProFTPd server up. I need help with the proper wording in the proftpd.conf file. Here is what i am using and needing.
I am trying to run ProFTPd 1.2.4 on a Redhat Linux 7.1 machine. I have one static ip address. Examples of what i am looking for. let's say i make a directory called /www/ftp. I want to set it up so that i can allow five users access to this directory but not to any other directory above it. I want them to have download and upload as well as overwrite access in this directory. Let's say one of the users i want to have access to it is named joe. Here is the steps i would take to set up his account in linux (tell me if i am wrong) i set up a new user joe and set him to group:ftp. Command interpreter i set to /bin/false (i think) then i set his home directory to /www/ftp and give him a password like joerules. i think that is all i have to do to set up the user. The part i am having a conniption over is what i put in proftpd.conf to allow joe access. But like i said i want joe and four others to have access and i don't want to let anyone else have access to the ftp server. I started out with the basic proftpd.conf file that installed with the server but i butchered it and went back to the basic.conf.
If i wrote to much to make a long story short (too late) i need step by step help on how to properly set up a user on my machine and what to put into the proftpd.conf to allow those users and no anonymous users.
Whew!
Sorry
Adam
Example of the basic proftpd.conf if you need to see it:
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.
ServerName "ProFTPD Default Installation"
ServerType standalone
DefaultServer on
# Port 21 is the standard FTP port.
Port 21
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 30
# Set the user and group that the server normally runs at.
User nobody
Group nogroup
# Normally, we want files to be overwriteable.
<Directory /*>
AllowOverwrite on
</Directory>
# A basic anonymous configuration, no upload directories.
<Anonymous ~ftp>
User ftp
Group ftp
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous ftp
# Limit the maximum number of anonymous logins
MaxClients 10
# We want 'welcome.msg' displayed at login, and '.message' displayed
# in each newly chdired directory.
DisplayLogin welcome.msg
DisplayFirstChdir .message
# Limit WRITE everywhere in the anonymous chroot
<Limit WRITE>
DenyAll
</Limit>
</Anonymous>
I am trying to run ProFTPd 1.2.4 on a Redhat Linux 7.1 machine. I have one static ip address. Examples of what i am looking for. let's say i make a directory called /www/ftp. I want to set it up so that i can allow five users access to this directory but not to any other directory above it. I want them to have download and upload as well as overwrite access in this directory. Let's say one of the users i want to have access to it is named joe. Here is the steps i would take to set up his account in linux (tell me if i am wrong) i set up a new user joe and set him to group:ftp. Command interpreter i set to /bin/false (i think) then i set his home directory to /www/ftp and give him a password like joerules. i think that is all i have to do to set up the user. The part i am having a conniption over is what i put in proftpd.conf to allow joe access. But like i said i want joe and four others to have access and i don't want to let anyone else have access to the ftp server. I started out with the basic proftpd.conf file that installed with the server but i butchered it and went back to the basic.conf.
If i wrote to much to make a long story short (too late) i need step by step help on how to properly set up a user on my machine and what to put into the proftpd.conf to allow those users and no anonymous users.
Whew!
Sorry
Adam
Example of the basic proftpd.conf if you need to see it:
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.
ServerName "ProFTPD Default Installation"
ServerType standalone
DefaultServer on
# Port 21 is the standard FTP port.
Port 21
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 30
# Set the user and group that the server normally runs at.
User nobody
Group nogroup
# Normally, we want files to be overwriteable.
<Directory /*>
AllowOverwrite on
</Directory>
# A basic anonymous configuration, no upload directories.
<Anonymous ~ftp>
User ftp
Group ftp
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous ftp
# Limit the maximum number of anonymous logins
MaxClients 10
# We want 'welcome.msg' displayed at login, and '.message' displayed
# in each newly chdired directory.
DisplayLogin welcome.msg
DisplayFirstChdir .message
# Limit WRITE everywhere in the anonymous chroot
<Limit WRITE>
DenyAll
</Limit>
</Anonymous>