www.ProFTPD.de

ProFTPD => ProFTPD - Deutsch => Thema gestartet von: Hirsch am 15. September 2004, 19:42:16


Titel: na was wohl ^^ ;)
Beitrag von: Hirsch am 15. September 2004, 19:42:16
frage an euch admins...
könnt ihr eine config posten wo alles einngestellt ist (zwegs fxp ) ;)
habe auch nen strato server... aber ich bin mir mal sicher das proftp drauf ist ^^..

wäre nett wenn ihr das machen würdet... hatte die standartconf. von eurer page heolt funzt auch net .. habe auch "AllowForeignAddress on" eingetragen und wie immer funzt das net... wieso haben ftp progs sone probs ^^ =?

THX im voraus

Titel: na was wohl ^^ ;)
Beitrag von: Hirsch am 15. September 2004, 19:56:39
Code:
# This is a basic ProFTPD configuration file. It establishes a single
# server and a single anonymous login. It assumes that you have a
# user/group "nobody"/"nogroup" for normal operation and anon.

#    !!! PLEASE read the documentation of proftpd !!!
#
# You can find the documentation in /usr/doc/packages/proftpd/,
# http://www.proftpd.org/ and don't forget to read carefully
# and _follow_ hints on http://www.proftpd.net/security.html.

ServerName "FTP SERVER"
#ServerType inetd
ServerType standalone
ServerAdmin ftpadm@localhost
#
# uncomment, if you want to hide the servers name:
#
#ServerIdent on "FTP Server ready"
DeferWelcome on
DefaultServer on


# Port 21 is the standard FTP port.
Port 21

# disable listen on 0.0.0.0:21 - the port (and IP) should
# be specified explicitly in each VirtualHost definition
#
#Port                           0

# listen for each (additional) address explicitly that is
# specified (via Bind and Port) in a VirtualHost definition
#
#SocketBindTight                        on


# Umask 022 is a good standard umask to prevent new dirs
# and files from being group and world writable.
Umask 022

# Set the user and group that the server normally runs at.
User nobody
Group nogroup

# Normally, we want files to be overwriteable.
DefaultRoot ~/
<Directory /*>
  AllowOverwrite on
  HiddenStor on
  #HideNoAccess on
</Directory>

# protect .ftpaccess and similar - see also PathDenyFilter
#<Directory /*.ftp*>
#  <Limit ALL>
#    DenyAll
#    IgnoreHidden on
#  </Limit>
#</Directory>

# It is a very good idea to allow only filenames containing normal
# alphanumeric characters for uploads (and not shell code...);
# see also the PathDenyFilter option
#PathAllowFilter ".*/[a-zA-Z0-9]+$"
#PathAllowFilter ".*/[a-zA-Z0-9~ \*\/,_.-]+$"

# Do not allow to pass printf-Formats (see also AllowFilter option):
DenyFilter  "%"

# To prevent DoS attacks, set the maximum number of child processes
# to 30.  If you need to allow more than 30 concurrent connections
# at once, simply increase this value.  Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 30

# Performance: skip DNS resolution when we process the logs...
#UseReverseDNS        off

# Turn off Ident lookups
IdentLookups         off

# Set the maximum number of seconds a data connection is allowed
# to "stall" before being aborted.
#TimeoutStalled                  300

# Where do we put the pid files?
ScoreboardFile       /var/run/proftpd

#
# Logging options
#
TransferLog          /var/log/xferlog

# Some logging formats
#
#LogFormat            default "%h %l %u %t \"%r\" %s %b"
#LogFormat            auth    "%v [%P] %h %t \"%r\" %s"
#LogFormat            write   "%h %l %u %t \"%r\" %s %b"

# Log file/dir access
#ExtendedLog          /var/log/proftpd.access_log    WRITE,READ write

# Record all logins
#ExtendedLog          /var/log/proftpd.auth_log      AUTH auth

# Paranoia logging level....
##ExtendedLog          /var/log/proftpd.paranoid_log  ALL default

#
# Do a chroot for web-users (i.e. public or www group), but
# do not change root if the user is also in the users group...
#
#DefaultRoot ~/public_html       public,!users
#DefaultRoot ~

# Limit login attempts
#MaxLoginAttempts                3

# Users needs a valid shell
RequireValidShell               no

#
# Use special Auth files instead....
#
#AuthUserFile                    /var/proftpd/authfiles/passwd
#AuthGroupFile                   /var/proftpd/authfiles/group

#
# Use LDAP server - see README.LDAP
#
#LDAPServer         "localhost"
#LDAPPrefix         "dc=your,dc=domain,dc=top"
#LDAPDN             "cn=YourDNUser,dc=your,dc=domain,dc=top"
#LDAPDNPass         "YourDNUserPassword"


# The ratio directives take four numbers: file ratio, initial file
# credit, byte ratio, and initial byte credit.  Setting either ratio
# to 0 disables that check.
#
# The directives are HostRatio (matches FQDN -- wildcards are allowed
# in this one), AnonRatio (matches password entered in an anon login,
# usually an email address), UserRatio (accepts "*" for 'any user'),
# and GroupRatio.  Matches are looked for in that order.
#
# Some examples:
#
# Ratios     on                                 # enable module
# UserRatio  ftp 0 0 0 0
# HostRatio  anyhost.domain.top 0 0 0 0         # leech access (default)
# GroupRatio proftpd 100 10 5 100000            # 100:1 files, 10 file cred
# AnonRatio  auser@domain.top 1 0 1 0           # 1:1 ratio, no credits
# UserRatio  * 5 5 5 50000                      # special default case
#
# Setting "Ratios on" without configuring anything else will enable
# leech mode: it logs activity and sends status messages to the ftp
# client, but doesn't restrict traffic.


#
# uncomment for anonymous...:
#
#<Anonymous ~ftp>
#     # After anonymous login, daemon runs as:
#     User ftp
#     Group public
#
#     # We want clients to be able to login with "anonymous" as well as "ftp"
#     UserAlias anonymous ftp
#
#     # Limit the maximum number of anonymous logins
#     MaxClients 10
#
#     # We want 'welcome.msg' displayed at login, and '.message' displayed
#     # in each newly chdired directory.
#     DisplayLogin msgs/welcome.msg
#     DisplayFirstChdir .message
#
#     # Deny write operations to all directories, underneath root-dir
#     # Default is to allow, so we don't need a <Limit> for read operations.
#     <Directory *>
#          <Limit WRITE>
#               DenyAll
#          </Limit>
#     </Directory>
#     #
#     # Only uploads into incomming directory are allowed...
#     #<Directory incoming>
#     #
#     #     Umask  017
#     #
#     #     # ... so deny read/write
#     #     <Limit READ WRITE DIRS>
#     #          DenyAll
#     #     </Limit>
#     #
#     #     # ... allow file storing, but not other writes
#     #     <Limit STOR CWD CDUP>
#     #          AllowAll
#     #     </Limit>
#     #
#     #</Directory>
#
#</Anonymous>
<Global>
AllowRetrieveRestart on
AllowStoreRestart on
MaxClients 20 "Sie sind bereits eingeloggt."
ServerIdent on "FTP SERVER"
DefaultChdir ~/
UseFtpUsers on
</Global>
TimeoutIdle 180
UseReverseDNS off


das wollte ich den noch mitsenden ;:)

Titel: na was wohl ^^ ;)
Beitrag von: Wörsty am 15. September 2004, 20:48:53
Bei mir geht es.

Code:
[ich@server irgendwo]# ftp ftp.meinftp.de
Connected to  ftp.meinftp.de (10.11.12.13).
220 ProFTPD 1.2.10 Server (ProFTPD) [10.11.12.13]
Name (ftp.meinftp.de:ich): anonymous
331 Password required for anonymous.
Password: blabla
230 User anonymous logged in.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> cd uploads
250 CWD command successful
ftp> ls
227 Entering Passive Mode (10,11,12,13,223,62).
150 Opening ASCII mode data connection for file list
-rw-rw-rw-   1 anonymous www      51066467 Aug  2 07:26 test
226 Transfer complete.
ftp> bin
200 Type set to I
ftp> get test test2
local: test2 remote: test
227 Entering Passive Mode (10,11,12,13,223,65).
150 Opening BINARY mode data connection for test (51066467 bytes)
226 Transfer complete.
51066467 bytes received in 8.74 secs (5.7e+03 Kbytes/sec)
ftp> quit
221 Goodbye.

Sind ca. 5,5 MB/Sekunde obwohl ich über Router und DSL dran bin.

Meine proftpd.conf für diesen Test:

Code:
RequireValidShell       Off
User                    www
Group                   www
AllowForeignAddress     On
UseReverseDNS           Off
IdentLookups            Off
Port                    21
RequireValidShell       Off
SQLAuthenticate         users* groups*
SQLAuthTypes            Backend  Empty
SQLConnectInfo          ftp@localhost:3306 *** *** PERSESSION
SQLDefaultGID           502
SQLDefaultUID           502
SQLHomedirOnDemand      On
SQLUserInfo             benutzer loginname passwort NULL NULL concat('/www',verzeichnis) NULL
SQLGroupInfo            gruppen name ID mitglieder


Meine Datenbank dazu:

Code:
USE ftp;

DROP TABLE IF EXISTS `benutzer`;
CREATE TABLE `benutzer` (
  `ID` int(11) unsigned NOT NULL default '0',
  `Beschreibung` varchar(30) default NULL,
  `loginname` varchar(32) NOT NULL default '',
  `passwort` varchar(16) NOT NULL default '',
  `Shell` varchar(255) default NULL,
  `verzeichnis` varchar(255) NOT NULL default '/',
  `Anmerkung` text,
  PRIMARY KEY  (`loginname`,`ID`)
) TYPE=MyISAM COMMENT='FTP-Benutzer für den FTP Server';

INSERT INTO `benutzer` (`ID`, `Beschreibung`, `loginname`, `passwort`, `Shell`, `verzeichnis`, `Anmerkung`) VALUES("0", "Admin", "********", "********", NULL, "/vhosts/ftp", NULL);
INSERT INTO `benutzer` (`ID`, `Beschreibung`, `loginname`, `passwort`, `Shell`, `verzeichnis`, `Anmerkung`) VALUES("1", "Anonymous", "anonymous", "", NULL, "/vhosts/ftp/21", "Anonymer Zugang");

DROP TABLE IF EXISTS `gruppen`;
CREATE TABLE `gruppen` (
  `ID` tinyint(3) unsigned NOT NULL auto_increment,
  `name` varchar(16) NOT NULL default '',
  `mitglieder` text,
  UNIQUE KEY `ID` (`ID`,`name`)
) TYPE=MyISAM COMMENT='FTP-Benutzergruppen für den FTP-Server';

Normalerweise arbeite ich noch mit Gruppen, was aber für das Beispiel egal ist.


Powered by SMF 1.1.2 | SMF © 2006-2007, Simple Machines LLC