| TamasBakai | d38feb6 | 2019-02-28 09:06:19 +0000 | [diff] [blame] | 1 | # Server Config |
| 2 | anonymous_enable=NO |
| 3 | local_enable=YES |
| 4 | write_enable=YES |
| 5 | local_umask=022 |
| 6 | dirmessage_enable=YES |
| 7 | |
| 8 | # Security and User auth |
| 9 | chroot_local_user=YES |
| 10 | pam_service_name=vsftpd_virtual |
| 11 | virtual_use_local_privs=YES |
| 12 | chmod_enable=NO |
| 13 | user_config_dir=/etc/vsftpd/user_conf |
| 14 | user_sub_token=$USER |
| 15 | #local_root=/srv/$USER |
| 16 | local_root=/srv/ |
| 17 | userlist_enable=NO |
| 18 | allow_writeable_chroot=YES |
| 19 | |
| 20 | # Logging |
| 21 | log_ftp_protocol=YES |
| 22 | xferlog_enable=YES |
| 23 | xferlog_std_format=YES |
| 24 | #xferlog_file=/dev/stdout |
| 25 | syslog_enable=NO |
| 26 | dual_log_enable=YES |
| 27 | |
| 28 | # Remap all login users to this username |
| 29 | guest_enable=YES |
| 30 | guest_username=ftp |
| 31 | hide_ids=YES |
| 32 | |
| 33 | # Networking |
| 34 | connect_from_port_20=NO |
| 35 | listen=YES |
| 36 | tcp_wrappers=YES |
| TamasBakai | e781c7c | 2019-07-11 11:26:20 +0000 | [diff] [blame] | 37 | pasv_min_port=${FTPS_PASV_MIN} |
| 38 | pasv_max_port=${FTPS_PASV_MAX} |
| TamasBakai | d38feb6 | 2019-02-28 09:06:19 +0000 | [diff] [blame] | 39 | |
| 40 | # SSL |
| 41 | ssl_enable=Yes |
| 42 | require_ssl_reuse=NO |
| 43 | force_local_data_ssl=YES |
| 44 | force_local_logins_ssl=YES |
| 45 | ssl_ciphers=HIGH |
| 46 | allow_anon_ssl=NO |
| 47 | |
| 48 | ssl_tlsv1=YES |
| 49 | ssl_sslv2=YES |
| 50 | ssl_sslv3=YES |
| 51 | rsa_cert_file=/etc/ssl/private/ftp.crt |
| 52 | rsa_private_key_file=/etc/ssl/private/ftp.key |
| 53 | |
| 54 | require_cert=YES |
| 55 | ssl_request_cert=YES |
| 56 | ca_certs_file=/etc/ssl/private/dfc.crt |
| 57 | |
| TamasBakai | e781c7c | 2019-07-11 11:26:20 +0000 | [diff] [blame] | 58 | write_enable=YES |
| 59 | pasv_address=${IPFILESERVER} |