| # Server Config |
| anonymous_enable=NO |
| local_enable=YES |
| write_enable=YES |
| local_umask=022 |
| dirmessage_enable=YES |
| |
| # Security and User auth |
| chroot_local_user=YES |
| pam_service_name=vsftpd_virtual |
| virtual_use_local_privs=YES |
| chmod_enable=NO |
| user_config_dir=/etc/vsftpd/user_conf |
| user_sub_token=$USER |
| #local_root=/srv/$USER |
| local_root=/srv/ |
| userlist_enable=NO |
| allow_writeable_chroot=YES |
| |
| # Logging |
| log_ftp_protocol=YES |
| xferlog_enable=YES |
| xferlog_std_format=YES |
| #xferlog_file=/dev/stdout |
| syslog_enable=NO |
| dual_log_enable=YES |
| |
| # Remap all login users to this username |
| guest_enable=YES |
| guest_username=ftp |
| hide_ids=YES |
| |
| # Networking |
| connect_from_port_20=NO |
| listen=YES |
| tcp_wrappers=YES |
| pasv_min_port=${FTPS_PASV_MIN} |
| pasv_max_port=${FTPS_PASV_MAX} |
| |
| # SSL |
| ssl_enable=Yes |
| require_ssl_reuse=NO |
| force_local_data_ssl=YES |
| force_local_logins_ssl=YES |
| ssl_ciphers=HIGH |
| allow_anon_ssl=NO |
| |
| ssl_tlsv1=YES |
| ssl_sslv2=YES |
| ssl_sslv3=YES |
| rsa_cert_file=/etc/ssl/private/ftp.crt |
| rsa_private_key_file=/etc/ssl/private/ftp.key |
| |
| require_cert=YES |
| ssl_request_cert=YES |
| ca_certs_file=/etc/ssl/private/dfc.crt |
| |
| write_enable=YES |
| pasv_address=${IPFILESERVER} |