AS4 U4装vsftp+pam-mysql终于成功

zyhui

经过翻阅论坛上的帖子以及数次的失败，终于成功了，现总结一下，如有问题请指出

系统环境：redhat as 4 u4
          Vsftp系统自带
          Mysql系统自带
          pam_mysql-0.7RC1.tar.gz
1、        安装好系统自带的vsftp和mysql,设置mysql的root密码为
mysqladmin -u root password 新密码
2、        创建mysql数据库

create database ftpd;
use ftpd;
create table user(name char(20) binary,passwd char(20) binary);
insert into user (name,passwd) values ('test1','12345');
insert into user (name,passwd) values ('test2','54321');
grant select on ftpd.user to ftpd@localhost identified by '123456';
flush privileges;
quit

3、        安装pam_mysql
tar xzvf pam_mysql-0.7RC1.tar.gz
cd pam_mysql-0.7RC1
./configure --with-openssl
make
make install
（之后检查一下pam.mysql.so是否在/lib/security/下，如果不是可以从/usr/local/lib考过来）

4、        修改/etc/pam.d/vsftpd
vi /etc/pam.d/vsftpd
auth required /lib/security/pam_mysql.so user=ftpd passwd=123456 host=localhost db=ftpd table=user usercolumn=name passwdcolumn=passwd crypt=0

account required /lib/security/pam_mysql.so user=ftpd passwd=123456 host=localhost db=ftpd table=user usercolumn=name passwdcolumn=passwd crypt=0


5、        修改/etc/vsftpd/vsftpd.conf
pam_service_name=vsftpd
tcp_wrappers=YES
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
anon_upload_enable=YES
anon_mkdir_write_enable=YES
anon_other_write_enable=YES
chroot_local_user=YES
guest_enable=YES
guest_username=ftp
listen=YES
listen_port=21
pasv_enable=YES
pasv_min_port=30000
pasv_max_port=30999
anon_world_readable_only=NO
virtual_use_local_privs=YES

测试---登录test1密码12345成功


另外有个问题想问一下，我想实现每个FTP用户都有并且锁定在自己的文件夹，怎么实现？

[ 本帖最后由 zyhui 于 2007-8-3 14:40 编辑 ]

wyckwemail

你好,我在centos 4中安装
pam_mysql-0.7RC1]# ./configure --with-openssl
checking pam_appl.h usability... no
checking pam_appl.h presence... yes
configure: WARNING: pam_appl.h: present but cannot be compiled
configure: WARNING: pam_appl.h:     check for missing prerequisite headers?
configure: WARNING: pam_appl.h: see the Autoconf documentation
configure: WARNING: pam_appl.h:     section "Present But Cannot Be Compiled"
configure: WARNING: pam_appl.h: proceeding with the preprocessor's result
configure: WARNING: pam_appl.h: in the future, the compiler will take precedence
configure: WARNING:     ## ------------------------------------ ##
configure: WARNING:     ## Report this to the pam_mysql lists.  ##
configure: WARNING:     ## ------------------------------------ ##
checking for pam_appl.h... yes
checking pam_modules.h usability... no
configure: error: Cannot find pam headers. Please check if your system is ready for pam module development.
出错了,这是怎么回事?
能帮我解决吗?
谢谢!

wangschang

configure: error: Cannot find pam headers. Please check if your system is ready for pam module development.

liudan818

安装配套的开发工具包,3楼正解.
configure: error: Cannot find pam headers. Please check if your system is ready for pam module development.

xxnygxk

不错~

100心

了解下。

dalanzhu1982

应该是可以锁定的，就是不能切换目录。