proFTPd

A place to ask all newbie questions and not get flamed, though you will get beaten down if you post a newbieish question outside of these walls.
Post Reply
xPRimNT
Newbie
Posts: 8
Joined: Sun Oct 22, 2006 4:35 pm

proFTPd

Post by xPRimNT »

Hi everyone,

I'm just wondering if someone with MCE 1.3 or Home 4.1 would mind posting their /etc/proftpd/proftpd.conf.

I'm trying to make a couple comparisons, and I don't like the proftpd.conf.sample.

I've had previous Home and MCE .confs that I left as is, and they worked fine! Now, I'm trying to go from scratch and just want to see a few lines.


I searched the forums, as well as the web, but I'm looking for the .conf that comes with gentoox, not the standard proftpd one.

Thanks in advance, sorry for being noobish!

xP
exboxxed
Newbie
Posts: 6
Joined: Fri Feb 09, 2007 7:59 pm

Post by exboxxed »

You may want to give this a try. Much of the info can be used directly with Gentoox. There's a section on how to configure anonymous access if you're looking for an example conf. You'll probably be using proftpd in standalone mode, but the doc also shows how to configure with inetd/xinetd.

I no longer have Gentoox running on my Xbox, so I can't recall if you will need to change the user and group. I'm sure you can easily figure this out, but if you need to check you can run these commands:

cat /etc/passwd
cat /etc/group

If ftp is listed then you can probably use that for your user and group. It may also be either nobody or proftpd.

Here's the link to the docs http://gentoo-wiki.com/HOWTO_ProFTPD

Good luck.
xPRimNT
Newbie
Posts: 8
Joined: Sun Oct 22, 2006 4:35 pm

Post by xPRimNT »

Ya, I've seen plenty of example conf's that configure for anonymous access. I've been using that as an example in the meantime, but I'm still having trouble getting it exactly how I want.

My trouble is configuring my users to allow writing to the server. All the settings I have tell me it is, including my proftpd.conf and everything on webmin. Everything is set for read/write access, but when I log on, I don't have permission to modify anything...

That's why I figured a glance at someone's "stock" proftpd.conf from gentoox would give me some clues as to where I'm going wrong.

I've tried letting read/write access to each user's home, read/write to a central ftp, everything. I know I'm just missing something simple, but it's ... annoying me!

Thanks for your reply, I'll look into that one to see if it gives me any clues as to what I'm doing wrong.

(PS. I meant Home 6.1 in my OP, not 4.1. I was tired.)

xP
Timmo
Novice
Posts: 44
Joined: Sun Nov 09, 2003 9:35 am
Location: Midlands UK
Contact:

Post by Timmo »

# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.

ServerName "ProFTPD Default Installation"
ServerType standalone
DefaultServer on
RequireValidShell off
AuthPAM off
AuthPAMConfig ftp
# Port 21 is the standard FTP port.
Port 21

# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022

# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd).
MaxInstances 30

# Set the user and group under which the server will run.
User proftpd
Group proftpd

# Normally, we want files to be overwriteable.
<Directory />
AllowOverwrite on
</Directory>

and one from my linkstation server

Code: Select all

#
# /etc/proftpd.conf -- This is a basic ProFTPD configuration file.
# To really apply changes reload proftpd after modifications.
# 

ServerName			"Debian"
ServerType			standalone
DeferWelcome			off

MultilineRFC2228		on
DefaultServer			on
ShowSymlinks			on

TimeoutNoTransfer		600
TimeoutStalled			600
TimeoutIdle			1200

DisplayLogin                    welcome.msg
DisplayFirstChdir               .message
ListOptions                	"-l"

DenyFilter			\*.*/

# Uncomment this if you are using NIS or LDAP to retrieve passwords:
#PersistentPasswd		off

# Uncomment this if you would use TLS module:
#TLSEngine 			on

# Uncomment this if you would use quota module:
#Quotas				on

# Uncomment this if you would use ratio module:
#Ratios				on

# Port 21 is the standard FTP port.
Port				21

# To prevent DoS attacks, set the maximum number of child processes
# to 30.  If you need to allow more than 30 concurrent connections
# at once, simply increase this value.  Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances			30

# Set the user and group that the server normally runs at.
User				nobody
Group				nogroup

# Umask 022 is a good standard umask to prevent new files and dirs
# (second parm) from being group and world writable.
Umask				022  022
# Normally, we want files to be overwriteable.
AllowOverwrite			on

# Delay engine reduces impact of the so-called Timing Attack described in
# http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02
# It is on by default. 
#DelayEngine 			off

# A basic anonymous configuration, no upload directories.

# <Anonymous ~ftp>
#   User				ftp
#   Group				nogroup
#   # We want clients to be able to login with "anonymous" as well as "ftp"
#   UserAlias			anonymous ftp
#   # Cosmetic changes, all files belongs to ftp user
#   DirFakeUser	on ftp
#   DirFakeGroup on ftp
# 
#   RequireValidShell		off
# 
#   # Limit the maximum number of anonymous logins
#   MaxClients			10
# 
#   # We want 'welcome.msg' displayed at login, and '.message' displayed
#   # in each newly chdired directory.
#   DisplayLogin			welcome.msg
#   DisplayFirstChdir		.message
# 
#   # Limit WRITE everywhere in the anonymous chroot
#   <Directory *>
#     <Limit WRITE>
#       DenyAll
#     </Limit>
#   </Directory>
# 
#   # Uncomment this if you're brave.
#   # <Directory incoming>
#   #   # Umask 022 is a good standard umask to prevent new files and dirs
#   #   # (second parm) from being group and world writable.
#   #   Umask				022  022
#   #            <Limit READ WRITE>
#   #            DenyAll
#   #            </Limit>
#   #            <Limit STOR>
#   #            AllowAll
#   #            </Limit>
#   # </Directory>
# 
# </Anonymous>
I wrote this!
xPRimNT
Newbie
Posts: 8
Joined: Sun Oct 22, 2006 4:35 pm

Post by xPRimNT »

Thanks Timmo,

I'm honestly not sure what was wrong with the way it was set up. Everything was identical to the .conf posted, but it still wouldn't give write access to anyone. Permissions and owners were all correct, yet still nothing.

Anyway, I ended up re-emerging proFTPd, and for whatever reason it ended up fixing the problem. Thanks again for the .conf's to go off of!

xP
Post Reply