- 论坛徽章:
- 0
|
本帖最后由 路人呵呵 于 2013-08-31 17:30 编辑
我的 vsftpd.conf 配置如下:- write_enable=YES
- local_umask=022
- listen=YES
- userlist_enable=YES
- tcp_wrappers=YES
- max_clients=20
- max_per_ip=10
- anon_max_rate=120000
- local_enable=YES
- anonymous_enable=NO
- anon_max_rate=120000
- anon_upload_enable=NO
- anon_mkdir_write_enable=NO
- anon_other_write_enable=NO
- anon_world_readable_only=YES
- userlist_enable=YES
- userlist_deny=NO
- guest_enable=YES
- guest_username=virtual_user
- virtual_use_local_privs=YES
- pam_service_name=vsftpd
- local_root=/ftp_files/ftp_data/
- chroot_local_user=YES
- dirmessage_enable=YES
- ftpd_banner=Welcome to blah FTP service.FTP服务运行正常
- connect_from_port_20=YES
- hide_ids=YES
- ascii_download_enable=NO
- xferlog_enable=YES
- xferlog_std_format=YES
- xferlog_file=/var/log/xferlog
- dual_log_enable=YES
- vsftpd_log_file=/var/log/vsftpd.log
复制代码 user_list文件配置:
test250
lol
virtual_user
pam.d/vsftpd 的配置:- auth sufficient /lib64/security/pam_userdb.so db=/etc/vsftpd/virtual_user_account
- account sufficient /lib64/security/pam_userdb.so db=/etc/vsftpd/virtual_user_account
- session optional pam_keyinit.so force revoke
- auth required pam_listfile.so item=user sense=deny file=/etc/vsftpd/ftpusers onerr=succeed
- auth required pam_shells.so
- auth include password-auth
- account include password-auth
- session required pam_loginuid.so
- session include password-auth
- ~
复制代码 虚拟用户的用户以下列表生成:- 其中:[code][root@yong vsftpd]# more account.txt
- ap
- ap2013
- adc
- adc2013
- grank
- grank2013
- lisi
- lisi2013
复制代码 [/code]
vsftpd 版本
vsftpd-2.2.2-11.el6.x86_64
pam版本:
pam-devel-1.1.1-10.el6_2.1.x86_64
pam_krb5-2.3.11-9.el6.x86_64
pam_passwdqc-1.0.5-6.el6.x86_64
fprintd-pam-0.1-20.git04fd09cfa.el6.x86_64
gnome-keyring-pam-2.28.2-7.el6.x86_64
spamassassin-3.3.1-2.el6.x86_64
pam-1.1.1-10.el6_2.1.x86_64
系统版本:
Red Hat Enterprise Linux Server release 6.3 (Santiago)
Linux 2.6.39-200.24.1.el6uek.x86_64 #1 SMP Sat Jun 23 02:39:07 EDT 2012 x86_64 x86_64 x86_64 GNU/Linux
在 ssh下测试登录:
[root@yong ~]# ftp 192.168.163.100
Connected to 192.168.163.100 (192.168.163.100).
220 Welcome to blah FTP service.FTP服务运行正常
Name (192.168.163.100:root): lol
331 Please specify the password.
Password:
230-欢迎来到英雄联盟!
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
[root@yong ~]# ftp 192.168.163.100
Connected to 192.168.163.100 (192.168.163.100).
220 Welcome to blah FTP service.FTP服务运行正常
Name (192.168.163.100:root): ap
530 Permission denied.
Login failed.
求大神指导,顺便纠正下vsftpd.conf哪些不合理的地方?
|
|